Great that you highlight the importance of making sure your dependencies are good to use (and there are often many...).
You might also want to check out Bytesafe (docs.bytesafe.dev/getting-started/). Our approach is to combine and scan existing packages for vulnerabilities (and notify you if any are found) and also to work as a dependency firewall to be able block package versions with known vulnerabilities.
For further actions, you may consider blocking this person and/or reporting abuse
We're a place where coders share, stay up-to-date and grow their careers.
Great that you highlight the importance of making sure your dependencies are good to use (and there are often many...).
You might also want to check out Bytesafe (docs.bytesafe.dev/getting-started/). Our approach is to combine and scan existing packages for vulnerabilities (and notify you if any are found) and also to work as a dependency firewall to be able block package versions with known vulnerabilities.