Building a Secure and Clean Local Hugo Environment with Docker

I sat down to write a blog post about something else, but I ended up fighting dependency hell instead. You know the feeling. You open your IDE to write a simple article, and you remember that your personal site uses npm 🫠 (yes, I know, the original sin is mine). Suddenly, you remember the news: malicious preinstall scripts, supply chain attacks, and worms targeting developers. You look at your node_modules folder and realize you can’t in good conscience just “run the code” on your machine anymore. I mean, do I really trust the entire dependency tree of a static site theme?