Previously, many of us were under the false impression that everything in our code, in our workflows using third party plugins and packages passed muster.Ĭorrection to podcast (also added to transcript on website): I had read that it was a new feature in npm created by Node Security, and was excited about the prospect of knowing more about what was going on under the hood with my npm packages and how that all boded for Web/Software Development and Individual Machine(s) Security. Node Security/npm audit appeared for the first time in my Terminal window in March of last year (2018).
I have spoken or written about this topic before, but feel the need to re-address it.