Forem

npm

Node Package Manager

Posts

đź‘‹ Sign in for the ability to sort posts by relevant, latest, or top.
Setting GitHub as a trusted publisher for npm
Cover image for Setting GitHub as a trusted publisher for npm
_steve_fenton_ profile

Setting GitHub as a trusted publisher for npm

#webdev #node #npm #github
1
Comments
2 min read
Malicious `axios@1.14.1` Published: Exfiltrated CI/CD Secrets; Pin Dependency Versions to Mitigate
maricode profile

Malicious `axios@1.14.1` Published: Exfiltrated CI/CD Secrets; Pin Dependency Versions to Mitigate

#security #npm #axios #cicd
Comments
12 min read
npm Publish Without Tokens
jurijtokarski profile

npm Publish Without Tokens

#cicd #github #npm #security
Comments
3 min read
Debugging Node.js in Docker and Kubernetes Without Restarting
iwtxokhtd83 profile

Debugging Node.js in Docker and Kubernetes Without Restarting

#javascript #node #npm
Comments
6 min read
Building a Reusable React Knowledge Graph Component: OKVE v0.3.0
bikidev profile

Building a Reusable React Knowledge Graph Component: OKVE v0.3.0

#opensource #react #npm
Comments
1 min read
7 Bugs That Taught Us How to Build Better Diagnostic Tools
iwtxokhtd83 profile

7 Bugs That Taught Us How to Build Better Diagnostic Tools

#javascript #node #npm
1
Comments
8 min read
Beyond the Event Loop: Tracking Slow I/O in Production Node.js
iwtxokhtd83 profile

Beyond the Event Loop: Tracking Slow I/O in Production Node.js

#javascript #npm #node
Comments
8 min read
Validando CNPJ de forma definitiva: Conheça a cnpj-universal (JS/TS)
leandrogazoli profile

Validando CNPJ de forma definitiva: Conheça a cnpj-universal (JS/TS)

#javascript #typescript #nestjs #npm
Comments
2 min read
The Axios Supply Chain Attack Explained — npm's Biggest Security Breach in 2026
ishaaan profile

The Axios Supply Chain Attack Explained — npm's Biggest Security Breach in 2026

#security #javascript #npm #supplychainattack
Comments
16 min read
20 one-shot prompts that turn Kanban into an autonomous coding machine
Cover image for 20 one-shot prompts that turn Kanban into an autonomous coding machine
tonythehacker profile

20 one-shot prompts that turn Kanban into an autonomous coding machine

#ai #automation #community #npm
1
Comments
11 min read
Paste your package.json, see which dependencies are CRITICAL supply chain risks
piiiico profile
Pico

Paste your package.json, see which dependencies are CRITICAL supply chain risks

#security #npm #supplychain #devtools
Comments
2 min read
Axios Was Compromised. Here's What It Means for Your Repo.
Cover image for Axios Was Compromised. Here's What It Means for Your Repo.
devradarguard profile

Axios Was Compromised. Here's What It Means for Your Repo.

#security #npm #supplychain #opensource
Comments
3 min read
npm package commitment scores: zod has 139M weekly downloads and one maintainer
piiiico profile
Pico

npm package commitment scores: zod has 139M weekly downloads and one maintainer

#security #npm #opensource #webdev
Comments
4 min read
I audited 10 common npm packages. Three came back CRITICAL. One was just attacked last week.
piiiico profile
Pico

I audited 10 common npm packages. Three came back CRITICAL. One was just attacked last week.

#npm #security #supplychain #mcp
Comments
3 min read
The Axios Attack Proved npm audit Is Broken. Here's What Would Have Caught It
poolcamacho profile

The Axios Attack Proved npm audit Is Broken. Here's What Would Have Caught It

#npm #security #javascript #opensource
1
Comments
6 min read
đź‘‹ Sign in for the ability to sort posts by relevant, latest, or top.