Another JavaScript package in the npm registry - the installer for PureScript - has been tampered with, leading project maintainers to revise their software to purge the malicious code. After a week of reports of unexpected behavior, software developer and PureScript contributor Harry Garrood on Friday published his account of the affair. The installer, invoked by typing npm i -g purescript from t