In case you haven't seen, AI-written comments were recently banned here

https://news.ycombinator.com/item?id=47340079

> At that point, “npm install” feels less like importing a library and more like executing a supply chain

Which is why pre and post install scripts should never had been added.