Bug: packages are disappearing from the official npm repo.
Fact : anybody can create a package in the official npm repo.
So, I believe that for a few hour if a very important package disappeared, then it would have been very easy to take control of any node js server that runs software that depends on the original, lost, package.
Npm is not so secure, right?
@ratamacue whoo, this, combined with the attack scenario described in https://hackernoon.com/im-harvesting-credit-card-numbers-and-passwords-from-your-site-here-s-how-9a8cb347c5b5, this is pretty freaky.
I have a sense we are going to deal with some security fuckery, and it is going to be hard to explain.