Answer by JBallin for What measures have been taken to prevent something like...
npm made it harder to unpublish packagesThe incident occurred because the maintainer of left-pad was able to unpublish the package, despite the community’s dependency on it.Shortly after the incident...
View ArticleWhat measures have been taken to prevent something like the left-pad incident...
In 2016, the maintainer of the left-pad package unpublished it from NPM, leaving millions of builds broken before NPM stepped in and un-unpublished the package themselves before too much chaos could...
View Article