I Built a Zero-Dependency Security Scanner That Catches What npm audit Misses — 21 Checks, One Command

Your npm install is a loaded gun You run npm install. 847 packages download. Dozens of postinstall scripts fire. You have no idea what just happened. This isn't paranoia — it's history: event-stream