Comment by mrguyorama
3 months ago
Why would NPM do anything about it? NPM has been a great source of distributing malware for like a decade now, and none of you have stopped using it.
Why in the world would they NEED to stop? It apparently doesn't harm their "business"
Dozens of businesses have been built to try fixing the npm security problem. There's clearly money in it, even if MS were to charge an access fee for security features.