Skip to content
Better HN
Top
Best
Ask
Show
New
Jobs
Search
⌘K
0 points
panhandlr
11y ago
0 comments
Save
Share
In today's climate I would be extremely weary of npm installing any core bitcoin tech without a serious line by line audit of the source.
0 comments
2 comments · 1 top-level
top
newest
oldest
taylorwc
11y ago
· 1 in thread
Why would this be more true of npm than any other package manager for any scripting language?
elif
11y ago
I would guess his paranoia is more general than directed at npm directly. However, it's a fair point that NPM allows anyone to push projects with no oversight, whereas many other package manager inventories are maintained and curated.
j
/
k
navigate · click thread line to collapse
