Y
Hacker News
new
|
ask
|
show
|
jobs
by
knowaveragejoe
4200 days ago
Huh?
1 comments
panhandlr
4200 days ago
In today's climate I would be extremely weary of npm installing any core bitcoin tech without a serious line by line audit of the source.
link
taylorwc
4200 days ago
Why would this be more true of npm than any other package manager for any scripting language?
link
elif
4200 days ago
I would guess his paranoia is more general than directed at npm directly. However, it's a fair point that NPM allows anyone to push projects with no oversight, whereas many other package manager inventories are maintained and curated.
link