Npm registry sets stage for more secure package publishing
Source: Theregister
Published:
<p>GitHub's npm package registry has rolled out a publishing approval step to prevent the distribution of compromised packages before they can poison the software supply chain.</p> <p>Modern software development relies on imported bundles of code known as packages (and sometimes libraries or modules