Y
Hacker News
new
|
ask
|
show
|
jobs
by
bodash
227 days ago
shamless plug but here's a list of things you could follow to mitigate risks from npm:
https://github.com/bodadotsh/npm-security-best-practices