Also add it to ~/.npmrc!
So, I do this because it's universally recommended, but why does it help?
Can't they just jam the malware into the package itself? It runs with the same permissions on my machine (in unit tests, node servers, etc).
alt Hacker News
So, I do this because it's universally recommended, but why does it help?
Can't they just jam the malware into the package itself? It runs with the same permissions on my machine (in unit tests, node servers, etc).