npm had a security meltdown, here are some steps that might be worth considering for the short, mid and long-term https://gist.github.com/yoshuawuyts/230364f2f3f745f922f4 …
Disclaimer: I'm by no means a security expert. These just seem like sensible things to be doing. Suggestions are more than welcome!
-
-
@yoshuawuyts One thought: during development I recommend using VM sandbox. Makes it safer to try new versions/packages out with impunity. -
@chromakode that's very reasonable advice - but wonder what the added value is if you don't audit all your packages - 1 more reply
New conversation -
-
-
@yoshuawuyts concerned that greenkeeper and updtr may make the situation worse. Installs the latest versions of each package for test.Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.