Is it still safe to run npm as root? #17614

varnav · 2017-07-05T04:50:29Z

I've found some old issue (#294), and looks like that in version 0.3.0 some security mechanisms were implemented, that make npm to be safe (or maybe even safer) if run as root.
Is it still true today? Is running as root safe? Is it recommended?

Nicholaiii · 2017-07-07T10:26:29Z

Running npm as root is in my opinion always undesirable. Same goes even more for node, which in some cases have to be run as root, if installed as root.

varnav · 2017-07-07T10:28:24Z

Note: npm >=0.3 is safer when using sudo.

npm-robot · 2017-07-10T22:29:35Z

We're closing this support issue as it has gone three days without activity. The npm CLI team itself does not provide support via this issue tracker, but we are happy when users help each other here. In our experience once a support issue goes dormant it's unlikely to get further activity. If you're still having problems, you may be better served by joining package.community and asking your question there.

For more information about our new issue aging policies and why we've instituted them please see our blog post.

zkat added the support label Jul 6, 2017

npm-robot added the bot-closed label Jul 10, 2017

npm-robot closed this as completed Jul 10, 2017

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Is it still safe to run npm as root? #17614

Is it still safe to run npm as root? #17614

varnav commented Jul 5, 2017

Nicholaiii commented Jul 7, 2017

varnav commented Jul 7, 2017

npm-robot commented Jul 10, 2017

Is it still safe to run npm as root? #17614

Is it still safe to run npm as root? #17614

Comments

varnav commented Jul 5, 2017

Nicholaiii commented Jul 7, 2017

varnav commented Jul 7, 2017

npm-robot commented Jul 10, 2017