I am not very sophisticated npm user on MacOS, but I installed bunch of packages... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		g42gregory 3 months ago \| parent \| context \| favorite \| on: NPM debug and chalk packages compromised I am not very sophisticated npm user on MacOS, but I installed bunch of packages for Claude Code development. How do we check if computer has a problem? Do we just run: npm list -g #for global installs npm list #for local installs And check if any packages appear that are on the above list? Thanks!

greatestdevever 3 months ago [–]

How I do it is, run npm list --all then check the completely dependency tree to find out if anywhere I am using the vulnerable package.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact