State management is one of the difficult parts to manage in modern web applications, there is still no consensus about the best way to handle it.
At position number 4 this week, Microstate.js provides a new solution, that emphasizes the principle of composition.
The story of the week is the compromised eslint-scope package.
In a few words, a package with a “malicious” behavior has been published on NPM, the Node.js Package Manager.
It reminds us that we have to be careful before installing any package from NPM. It may be the price of the amazing freedom and choice of NPM…