"Jer, it sounds like you just hate all package managers."
It just sounds that way because every goddamned one of them I have to interact with lets randos upload arbitrary shit that they didn't even write and then thousands of other people's packages suddenly depend on them.
@sullybiker I think we're saying the same thing: don't download packages from public package repositories, ESPECIALLY not in the process that deploys stuff to your site
@sullybiker I think we're saying the same thing: don't download packages from public package repositories, ESPECIALLY not in the process that deploys stuff to your site