The origin of this conversation:
Infected node module - what now?
The question arise on what to do, to rid a computer of a node module that is identified as infected.
Specific to the case the answer given by @DamnedScholar
( The event-stream incident and the Atom team's response)
Continuation of the conversation
On the package that was identified, I have deleted the
node_modules/ directory. Only for the effected package.
Opening Atom, the package is now reported as not working properly. Executing
npm install on a system that does not have
node globally installed, is of no help. Executing
npm install from the Atom
..\atom\bin directory does not produce any results either.
Executing an update of dependencies from inside Atom, does not update the package to replace the
node_modules/ directory and the node modules.
apm install process-palette does have a result. BUT now is the question - which version of the
event-stream package is loaded? A pre-packaged version or the current version from NPM?