Rui Carmo
Not completely unexpected if you’ve been tracking npm as a company, and definitely a good thing in terms of continuity and workflow.
A bit worrying if you’re into conspiracy theories, granted, but at least now we can be reasonably certain that there will be susbtantial improvements in end-to-end security and transparency, even if JavaScript dependency management is still a dumpster fire.
Best take on this so far? Jessie Frazelle tweeted:
Great to see that npm will finally have some adult supervision!