> To that end, I wrote a python script which isolates npm inside short-lived docker containers.

Somewhat ironically, docker is just as subject to this type of attack as npm, the main difference being that it (usually) has a narrower blast radius.