alt Hacker News> Running npm install is not negligence.
I beg to differ and look forward to running my own fiefdom where interpreter/JIT languages are banned in all forms.
Replies
sethaurus • last Sunday at 10:38 PM
Do you really mean this literally? Even the Linux kernel contains tens of thousands of lines of Python, and more lines of shell. Is that undesirable?
It has nothing to do with interpreters or JIT, it has nothing to do with npm at all. All package managers have the insane security model of "arbitrary code execution with no constraints".