Y
Hacker News
new
|
ask
|
show
|
jobs
by
p91paul
276 days ago
The guy is actually the maintainer of those packages. So whoever got his credentials became able to perform releases on those packages. NPM itself does not build any package, it's just a place where people can publish stuff