Stop using version ranges. | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		smrtinsert on Jan 10, 2022 \| parent \| context \| favorite \| on: Dev corrupts NPM libs 'colors' and 'faker', breaki... Stop using version ranges.

Bolkan on Jan 10, 2022 | [–]

But that woukd make injecting actual malware much more difficult.

arvinsim on Jan 10, 2022 | [–]

npm install defaults to using version ranges in package.json

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact