|
|
|
|
|
|
by no-name-here
25 days ago
|
|
|
Thanks! > for other package managers For other js package managers.
Sadly such functionality seems far less common for c# (nuget) or rust (cargo). > add Socket Free Firewall when installing npm packages on CI to catch malware It appears that functionality depends on blacklisting malware from being downloaded? But don't the repositories (npm, etc) take down malware once it's identified - is socket actually blacklisting malware faster than npm? That sounds unlikely, but maybe? For the vs code extension from the op post, it seems like it was live for like 18 minutes on the official vs code marketplace, and slightly longer on openvsx as ms sadly doesn't allow vs code clones to use the official marketplace. |
|
|