Former Employee

"How one developer just broke Node, Babel and thousands of projects in 11 lines of JavaScript"

Zowie. Worth a read. Here's an excerpt:


"Programmers were left staring at broken builds and failed installations on Tuesday after someone toppled the Jenga tower of JavaScript. A couple of hours ago, Azer Koçulu unpublished more than 250 of his modules from NPM, which is a popular package manager used by JavaScript projects to install dependencies. Unfortunately, one of those dependencies was left-pad..."


Here's the full article: