DEV Community

Discussion on: npm package discovered to have bitcoin-stealing backdoor

View post
Collapse
 
awwsmm profile image
Andrew (he/him)

Apparently React has something like 1800 dependencies. How can anyone expect to know everything going into their code when we've reached a state like that?

Collapse
 
bennypowers profile image
Benny Powers ๐Ÿ‡ฎ๐Ÿ‡ฑ๐Ÿ‡จ๐Ÿ‡ฆ • Edited

unpkg.com/@polymer/lit-element@0.6...

{
  "dependencies": {
    "lit-html": "0.13.0"
  }
}

unpkg.com/lit-html@0.13.0/package....

{
  "dependencies": {}
}

For more:

bennypowers image

Let's Build Web Components! Part 5: LitElement

Benny Powers

#webcomponents#functional#lithtml#javascript
Collapse
 
ben profile image
Ben Halpern

Great blog post from the left-pad saga