This is a good reminder that npm's package-lock is very stable and will prevent
attackers replacing packages in existing projects:
https://docs.npmjs.com/files/package-lock.json
/status/949824670018293760
A static archive of Markus Tacker's tweets. Follow me on Mastodon: @[email protected].
This is a good reminder that npm's package-lock is very stable and will prevent
attackers replacing packages in existing projects:
https://docs.npmjs.com/files/package-lock.json
/status/949824670018293760