Would be great if npm->github->microsoft partnered up with https://socket.dev to... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		porsager on March 30, 2023 \| parent \| context \| favorite \| on: 50% of new NPM packages are spam Would be great if npm->github->microsoft partnered up with https://socket.dev to get a crude filter and take down any obvious malicious/spam packages.

feross on March 31, 2023 [–]

Speaking as CEO at https://socket.dev, we’d love to partner with GitHub on an initiative like this.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact