By asgarth on Skatehive
I was planning to post about some upcoming PeakD updates today, but a couple hours ago I saw this post and went down a completely different rabbit hole: https://x.com/karpathy/status/2038849654423798197 Long story short: there was a nasty package incident around axios, and once I understood the general shape of the problem my first thought was not "great, another security post". It was: "I really do not want to manually check a bunch of folders for this kind of thing ever again." That is the part that always gets annoying. The part where you start jumping between repos, old side projects, random scripts, frontend experiments, half-abandoned bots, and whatever else you have sitting in your workspace, trying to answer one simple question: Is this thing anywhere in my projects or not? So I made a small skill for it I added a new skill called npm-scan to my skills repo: repository: https://github.com/asgarth/skills skill folder: https://github.com/asgarth/skills/tree/main/skills/npm-scan T