NPM lockfiles can be a security blindspot for injecting malicious modules in PRs

https://snyk.io/blog/why-npm-lockfiles-can-be-a-security-blindspot-for-injecting-malicious-modules/

Submitted December 26, 2019 at 11:57PM by alwayslunch