top | item 46038887

(no title)

benjifri | 3 months ago

This is like saying "use MacOS and you won't get viruses" in the 2000s

discuss

koito17|3 months ago

Bun disables post-install scripts by default and one can explicitly opt-in to trusting dependencies in the package.json file. One can also delay installing updated dependencies through keys like `minimumReleaseAge`. Bun is a drop-in replacement for the npm CLI and, unlike pnpm, has goals beyond performance and storage efficiency.

Not sure what your analogy is trying to imply.

salomonk_mur|3 months ago

Which was for the most part true.

latchkey|3 months ago

The suggestion was to use pnpm, and I'm suggesting something I prefer more than pnpm.

hiccuphippo|3 months ago

Except trying it out takes a minute and costs nothing.

hexasquid|3 months ago

"Rewrite it in rust"