DEV Community

Discussion on: NPM... we all knew this would happen eventually

Collapse
 
ondrejs profile image
Ondrej

This. This has always been issue, it does not matter if we're talking about npm, pip, gems or other. It seems to me that people somehow got used to fact that FOSS == inherently secure. Which is, of course, false.