Use a blacklist for bad packages

This addresses the primary concern in https://github.com/jsdelivr/jsdelivr/issues/13136
2016-08-25 12:47:13 -06:00
parent a494d93272
commit e8b0857f11
4 changed files with 9 additions and 1 deletions
--- a/package.json
+++ b/package.json
@ -36,7 +36,7 @@
    "json-loader": "^0.5.4",
    "markdown-loader": "^0.1.7",
    "morgan": "^1.7.0",
-    "npm-http-server": "^3.4.0",
+    "npm-http-server": "^3.6.0",
    "on-finished": "^2.3.0",
    "postcss-loader": "^0.9.1",
    "react": "^15.1.0",