FRESH
Hacker News
Home
Aube – Node.js package manager in Rust
9 points by brianzelip
by giancarlostoro
0 subcomment
Interesting has a 24hr cooldown before trusting package updates and a no-trust option for trusting downgrades given all the npm hacks and issues lately, smart move. I wonder if there's better ways to protect against this.
Hacker News