Forem

npm

Node Package Manager

Posts

👋 Sign in for the ability to sort posts by relevant, latest, or top.
Supply Chain Security: 4 Commands That Would Have Stopped the axios and litellm Attacks
askclaw profile

Supply Chain Security: 4 Commands That Would Have Stopped the axios and litellm Attacks

#security #javascript #npm #devops
Comments
5 min read
How to Protect JavaScript Projects Against Supply Chain Attacks
oler profile

How to Protect JavaScript Projects Against Supply Chain Attacks

#security #javascript #npm #devops
Comments
2 min read
Made a new software: BetterYoutube Desktop!
itspixelatd profile

Made a new software: BetterYoutube Desktop!

#electron #npm #webdev #opensource
2
Comments
1 min read
One security alert changed how I think about dependencies
Cover image for One security alert changed how I think about dependencies
siti_aisyahmatzainal_73 profile

One security alert changed how I think about dependencies

#javascript #npm #security #webdev
1
Comments
2 min read
Your npm Package Is Leaking Source Code (And You Probably Don't Know It)
Cover image for Your npm Package Is Leaking Source Code (And You Probably Don't Know It)
alanwest profile

Your npm Package Is Leaking Source Code (And You Probably Don't Know It)

#npm #javascript #security #typescript
Comments
4 min read
Every backend developer has this headache 😩
Cover image for Every backend developer has this headache 😩
poojan69 profile

Every backend developer has this headache 😩

#node #systemdesign #opensource #npm
Comments
2 min read
كيفية عمل هجوم سلسلة التوريد Axios NPM (وكيفية حماية مشاريع API الخاصة بك)
Cover image for كيفية عمل هجوم سلسلة التوريد Axios NPM (وكيفية حماية مشاريع API الخاصة بك)
yusuf_khalidd profile

كيفية عمل هجوم سلسلة التوريد Axios NPM (وكيفية حماية مشاريع API الخاصة بك)

#api #javascript #npm #security
Comments
3 min read
Building an MCP Calculator Server: From Zero to 100 Downloads/Week
yonatan_naor_5642e43447ea profile

Building an MCP Calculator Server: From Zero to 100 Downloads/Week

#mcp #ai #npm #claudeai
1
Comments
3 min read
Axios was compromised for 3 hours - how to find it in your running Kubernetes clusters
toofasttoocurious profile

Axios was compromised for 3 hours - how to find it in your running Kubernetes clusters

#security #kubernetes #npm #supplychain
Comments
5 min read
Claude Code Leak: Lessons in npm Security, TypeScript Analysis, and AI Tool Architecture
orthogonalinfo profile
Max

Claude Code Leak: Lessons in npm Security, TypeScript Analysis, and AI Tool Architecture

#security #npm #typescript #ai
1
Comments
9 min read
npm run dev vs npm start: The Difference That Breaks Your App in Production
hardik-agarwal18 profile

npm run dev vs npm start: The Difference That Breaks Your App in Production

#node #npm #nodemon
Comments
3 min read
genkode — Random ID & String Generator for Node.js
sammitpal profile

genkode — Random ID & String Generator for Node.js

#node #typescript #npm #opensource
Comments
4 min read
The Axios npm Supply Chain Attack (March 2026): A 2-Second Breach Window That Compromised the JavaScript Ecosystem
Cover image for The Axios npm Supply Chain Attack (March 2026): A 2-Second Breach Window That Compromised the JavaScript Ecosystem
yugjadvani profile

The Axios npm Supply Chain Attack (March 2026): A 2-Second Breach Window That Compromised the JavaScript Ecosystem

#javascript #npm #programming #softwareengineering
5
Comments
5 min read
I got tired of guessing semver bumps in PRs, so I built a tool
Cover image for I got tired of guessing semver bumps in PRs, so I built a tool
kyungseopk1m profile

I got tired of guessing semver bumps in PRs, so I built a tool

#typescript #opensource #npm #node
1
Comments
2 min read
[Axios Hacked] How .npmrc Can Protect Your Node.js Projects from Supply Chain Attacks??
Cover image for [Axios Hacked] How .npmrc Can Protect Your Node.js Projects from Supply Chain Attacks??
0x41414141 profile

[Axios Hacked] How .npmrc Can Protect Your Node.js Projects from Supply Chain Attacks??

#discuss #npm #ai #webdev
6
Comments 2
2 min read
👋 Sign in for the ability to sort posts by relevant, latest, or top.