Yes, none of npm's lifecycle hooks. You're just pulling bytes over the wire.

bdcravens • today at 2:47 PM • 1 reply • view on HN

runtime_terror • today at 3:01 PM

Except now you're making http calls to remote servers that could be compromised.

➕ show 3 replies

alt Hacker News