The Frightening State of Security Around NPM Package Management

I take GitHub’s new security vulnerability notifications seriously, and try to patch my apps whenever something comes up.