Hacking 20 high-profile dev accounts could compromise half of the npm ecosystem

By Tech Online Things

Securing a handful of developer accounts and vetting a few projects would greatly increase the security of the npm ecosystem of JavaScript libraries.