Yet npm isn't using them allowing this RAT to work. It is not secure by default. It requires every app to manually opt in to being secure. This opt in approach to security puts desktop Linux decades behind in regards to security. Not ahead.
replyLinux is not making anything less secure than other OSs.
replyIn fact it even gives the user more security tools.
So I fail to reason on you singling out Linux here.
Take for example iOS and Android. All apps are sandboxed by default. You can't make a program that just steals all of your credentials like you can on desktop Linux. Having security tools means nothing if they aren't being used.
replyNo one is running npm in Android or iOS.
replyA more apt comparison is vs Windows and macOS.
And Linux offer more than these two with regards to security.
They aren't because Node haven't developed a Node app for them. Desktop Linux does not offer more security than macOS. macOS has proper security around stuff like apps using the mic and camera.
replyAndroid is running Linux...
replyAnd they added a lot of code to make it safe for users to install and use apps in general.
reply