Glad to see npm has a security holding package for save-dev (it’s what you end up installing if you forget the dashes before the --save-dev flag) :)
(And here’s hoping, despite what it says on the site, that they never give that package to anyone.)
@aral almost 100 packages depending on it