On 01/08/2019 05:33 PM, Dave Howorth wrote:
On Sun, 6 Jan 2019 12:32:53 +0000 Dave Howorth <dave@howorth.org.uk> wrote:
On Sat, 5 Jan 2019 23:07:23 +0000 Dave Howorth <dave@howorth.org.uk> wrote:
... I gathered that the best way to install it was to install the other components from the openSUSE repositories, including npm
So I've been playing and now have another question.
https://docs.npmjs.com/downloading-and-installing-node-js-and-npm says npm should preferably be installed using a node version manager, to avoid permission problems.
But the openSUSE package installs it so that it uses /usr/local/lib as its base directory, which does indeed lead to permissions problems (the need to run as root to use the -g option on npm)
So does anybody use npm on openSUSE? What's the best way to resolve this? Is there a rationale for the openSUSE packaging choice published somewhere?
Sorry Dave, I can't help you with the permissions issue, but be aware of vulnerabilities with node.js and friends such as: https://www.cvedetails.com/vulnerability-list/vendor_id-12113/product_id-307... (which seem to pop up on a fairly regular basis with the package) I know you use good practices, but I can recall several articles of late where that alone wouldn't save you with node.js. -- David C. Rankin, J.D.,P.E. -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org