Koi security researchers found that when NPM installs a dependency from a Git repository, configuration files such as a ...
It doesn't do it quite how you think though.
Some results have been hidden because they may be inaccessible to you
Show inaccessible results