Yet npm isn't using them allowing this RAT to work. It is not secure by default. It requires every app to manually opt in to being secure. This opt in approach to security puts desktop Linux decades behind in regards to security. Not ahead.

▲

hu3 11 hours ago | parent [-]

Linux is not making anything less secure than other OSs.

In fact it even gives the user more security tools.

So I fail to reason on you singling out Linux here.

▲

charcircuit 11 hours ago | parent [-]

Take for example iOS and Android. All apps are sandboxed by default. You can't make a program that just steals all of your credentials like you can on desktop Linux. Having security tools means nothing if they aren't being used.

▲

hu3 9 hours ago | parent | next [-]

No one is running npm in Android or iOS.

A more apt comparison is vs Windows and macOS.

And Linux offer more than these two with regards to security.

	▲	charcircuit 4 hours ago \| parent [-]
		They aren't because Node haven't developed a Node app for them. Desktop Linux does not offer more security than macOS. macOS has proper security around stuff like apps using the mic and camera.

▲

PunchyHamster 9 hours ago | parent | prev [-]

Android is running Linux...

	▲	charcircuit 4 hours ago \| parent [-]
		And they added a lot of code to make it safe for users to install and use apps in general.