Forem

npm

Node Package Manager

Posts

👋 Sign in for the ability to sort posts by relevant, latest, or top.
Attempt to stop npm postinstall scripts from stealing your secrets
asmyshlyaev177 profile
Alex

Attempt to stop npm postinstall scripts from stealing your secrets

#npm #supplychainattack #shaihulud
1
Comments
4 min read
npm Is on Fire: Why the Architecture Is the Product
vivian-voss profile

npm Is on Fire: Why the Architecture Is the Product

#npm #supplychain #security #freebsd
Comments
10 min read
attw script in CopilotKit codebase.
ramunarasinga-11 profile

attw script in CopilotKit codebase.

#attw #opensource #copilotkit #npm
Comments
3 min read
42 @tanstack/* Packages Were Compromised on npm: What Happened, How It Works, and What You Must Do Right Now
Cover image for 42 @tanstack/* Packages Were Compromised on npm: What Happened, How It Works, and What You Must Do Right Now
devcodehub99 profile

42 @tanstack/* Packages Were Compromised on npm: What Happened, How It Works, and What You Must Do Right Now

#javascript #security #npm #webdev
Comments
10 min read
The TanStack npm Attack Shows Why pnpm 11 Matters
Cover image for The TanStack npm Attack Shows Why pnpm 11 Matters
audreyhal profile

The TanStack npm Attack Shows Why pnpm 11 Matters

#cicd #javascript #npm #security
2
Comments
3 min read
LibKill: Scan Your Machine for Compromised npm, pip, and Bun Packages
Cover image for LibKill: Scan Your Machine for Compromised npm, pip, and Bun Packages
firfircelik profile

LibKill: Scan Your Machine for Compromised npm, pip, and Bun Packages

#security #npm #ai #programming
Comments
3 min read
I got tired of calculating commercial lease billing by hand, so I built a tool
jaco_siu_748a48197d7f91e9 profile
Coco

I got tired of calculating commercial lease billing by hand, so I built a tool

#realestate #javascript #npm #proptech
Comments
2 min read
The Worm in the Registry
Cover image for The Worm in the Registry
vektor_memory_43f51a32376 profile

The Worm in the Registry

#ai #cybersecurity #npm #github
2
Comments
10 min read
Sonner vs. robot-toast: When "Invisible" UI Isn't Enough
pratham_kumar_8cc837c51ed profile

Sonner vs. robot-toast: When "Invisible" UI Isn't Enough

#javascript #webdev #npm #opensource
1
Comments
1 min read
TanStack Was Not the Whole Story: Mini Shai-Hulud Was an npm/PyPI Supply-Chain Worm
trknhr profile

TanStack Was Not the Whole Story: Mini Shai-Hulud Was an npm/PyPI Supply-Chain Worm

#security #npm #pypi #githubactions
6
Comments 1
8 min read
Automate Social Media Image Generation with n8n + RenderPix
Cover image for Automate Social Media Image Generation with n8n + RenderPix
ozgurs profile

Automate Social Media Image Generation with n8n + RenderPix

#n8n #automation #npm #node
Comments
6 min read
I Built My Own Config Format for Node.js That Separates Server and Client Secrets
kanishq9 profile

I Built My Own Config Format for Node.js That Separates Server and Client Secrets

#node #npm #security #opensource
1
Comments 2
5 min read
Supply chain npm vs PyPI: I compared both simulations and the most dangerous vector isn't what everyone thinks
Cover image for Supply chain npm vs PyPI: I compared both simulations and the most dangerous vector isn't what everyone thinks
jtorchia profile

Supply chain npm vs PyPI: I compared both simulations and the most dangerous vector isn't what everyone thinks

#english #npm #node #devops
Comments
9 min read
Supply chain en npm vs PyPI: comparé mis dos simulaciones y el vector más peligroso no es el que todos creen
Cover image for Supply chain en npm vs PyPI: comparé mis dos simulaciones y el vector más peligroso no es el que todos creen
jtorchia profile

Supply chain en npm vs PyPI: comparé mis dos simulaciones y el vector más peligroso no es el que todos creen

#spanish #espanol #npm #node
Comments
10 min read
Stop Shipping Broken Env Configs — I Built a Fix
rohan_mirjankar profile

Stop Shipping Broken Env Configs — I Built a Fix

#npm #javascript #node #webdev
Comments
2 min read
👋 Sign in for the ability to sort posts by relevant, latest, or top.