31·
4 days agoThat sounds more like bad practices from the community. It definitely has ways to use exact versions. Not the least of which the lock file. Or the shrinkwrap file which public packages should be using.
LurkingLuddite
- 0 Posts
- 8 Comments
Joined 3 months ago
Cake day: February 4th, 2026
You are not logged in. If you use a Fediverse account that is able to follow users, you can follow this user.
Genuine question. How is NPM more vulnerable than other repos? Haven’t similar supply chain attacks succeeded at least as well as this one through GitHub itself and even Linux package repos?
105·13 days agoWhy? The pros know how to breach systems. The real question is what are you going to do with the breach?
Today is the lazy man’s game. This kid just played with fire and got burned. Nothing more.
11·18 days agoToo bad for both of you, there’s already a term: ripoff.
As someone who also drinks … don’t. It is terrible for your cardio and definitely contributes to feeling like death, because your heart is recovering from some toxicity if you’ve drank within 24 hours or maybe more.
Other than that, other people have good advice. The ‘zone 2’ stuff is probably most relevant if you’re already semi-fit.
Other than that, all I can say is, the first ~5 minutes of any heavy cardio are going to suck, roughly for ever. Even in good shape, it takes the body a good long moment to warm up. I’m sure a proper warmup could reduce the, “I’m dying” feeling down to a, “yep, this is work”, but if you drank within a day, the feeling will be very easy to get regardless.
At least use your fucking brain and call them rallies. They are not protests. Nearly at all…
Not really. It’s not nearly enough cells to have any kind of consciousness as we know it. A few neurons learning to play a game is a far cry from tying a being into a simulation of hell.
I wouldn’t say pulling in higher versions is unsafe unless an attack like this succeeds. Otherwise it’s only an annoyance.