Reply to post: Re: old skool

Worried about occasional npm malware scares? It's more common than you may think

captain veg Silver badge

Re: old skool

> there's no way to realistically read every line of code and be sure about everything in all things

There is every way to do so. The question is whether that would be less onerous than writing the code yourself.

If you import free third party code into your program without knowing it inside and out, and it turns out to be malevolent, then you were reckless., If it turns out to be buggy, you were negligent. Better to write your own buggy code. At least then you'll have a chance of fixing it.


POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon