undefined | Better HN

0 pointsdrdaeman10y ago0 comments

Sacrasm aside, saying "node.js" strongly implies use of npm, and that means pulling a lot (think deps-of-deps-of-deps) of potentially unaudited code off the network, without much authentication.

Not something one would fancy for a tool that handles sensitive data.

0 comments

1 comments · 1 top-level

icedchai10y ago

I was only being slightly sarcastic. I installed an app with a relatively small number of dependencies, and was shocked to see my node_modules directory contained over 100,000 files.

j / k navigate · click thread line to collapse