Ask HN: How can I make NPM more secure?

		Ask HN: How can I make NPM more secure?
		2 points by d-d on Sept 25, 2019 \| hide \| past \| favorite \| 1 comment
		IIRC a system-deleting bug made its way into a popular NPM package months ago, and I've also heard it's trivial to add rogue dependencies deep in the tree. How can I protect myself against things like this while using NPM?

Don't run as root && Test in sandboxed environment