• tourist@lemmy.world
    link
    fedilink
    arrow-up
    109
    arrow-down
    1
    ·
    1 month ago

    arbitrary npm package:

    • last updated 4 years ago
    • sole developer legit dead and buried
    • 47 dependencies
    • 608 critical vulnerabilities
    • condemned by the United Nations

    Still has 7 million weekly downloads

    • MadMadBunny
      link
      fedilink
      arrow-up
      32
      arrow-down
      2
      ·
      1 month ago

      Please mark this as NSFL.

      Seriously, who the fuck starts a conversation like this, I just sat down!!