You must log in or register to comment.
Counter question: what part of npm is not vulnerable to attacks?
your nickname (almost) fits the question xD.
On a more serious note, not all is doom and gloom in NPM, they have improved a lot during these past years.