Forem

npm

Node Package Manager

Posts

đź‘‹ Sign in for the ability to sort posts by relevant, latest, or top.
The Documentation Attack Surface: How npm Libraries Teach Insecure Patterns
ethan_kreloff_4a7339e3d1d profile

The Documentation Attack Surface: How npm Libraries Teach Insecure Patterns

#security #javascript #npm #webdev
Comments
4 min read
I built Material Symbols SVG, an icon library for using Material Symbols as SVG components
Cover image for I built Material Symbols SVG, an icon library for using Material Symbols as SVG components
k-s-h-r profile

I built Material Symbols SVG, an icon library for using Material Symbols as SVG components

#react #npm #typescript #frontend
Comments
5 min read
Why Your AI Coding Agent Keeps Recommending Dead Packages
the_bookmaster profile

Why Your AI Coding Agent Keeps Recommending Dead Packages

#agents #ai #npm #programming
1
Comments
2 min read
Malicious npm Packages Disguised as Strapi Plugins Enable Data Exfiltration and Remote Code Execution
kornilovconstru profile

Malicious npm Packages Disguised as Strapi Plugins Enable Data Exfiltration and Remote Code Execution

#npm #strapi #malware #exfiltration
Comments
7 min read
Supply Chain Security measures
Cover image for Supply Chain Security measures
0xkoji profile
0xkoji

Supply Chain Security measures

#security #npm #uv #githubactions
Comments
1 min read
Shipping a Go CLI to Every Ecosystem: GitHub Releases, Homebrew, and npm
Cover image for Shipping a Go CLI to Every Ecosystem: GitHub Releases, Homebrew, and npm
_402ccbd6e5cb02871506 profile
Kazu

Shipping a Go CLI to Every Ecosystem: GitHub Releases, Homebrew, and npm

#cli #github #go #npm
Comments
5 min read
The Axios/npm Incident & Why AI Won’t Replace Devs
cyberjanitor profile

The Axios/npm Incident & Why AI Won’t Replace Devs

#ai #javascript #npm #security
Comments
1 min read
I built an npm malware scanner and found 21 malicious packages in 24 hours
yurithecoder profile

I built an npm malware scanner and found 21 malicious packages in 24 hours

#security #npm #javascript #opensource
Comments 1
1 min read
How the axios@1.14.1 supply chain attack worked (and how to protect yourself)
bigjenkie profile

How the axios@1.14.1 supply chain attack worked (and how to protect yourself)

#javascript #opensource #security #npm
Comments
4 min read
What the Axios npm Compromise Means for MCP Server Maintainers
michael_onyekwere profile

What the Axios npm Compromise Means for MCP Server Maintainers

#security #mcp #npm #supplychain
Comments
4 min read
How to Finally (and Iteratively) Kill Every Last 'npm audit'
tonymet profile

How to Finally (and Iteratively) Kill Every Last 'npm audit'

#security #automation #npm #node
Comments
3 min read
.me
suign profile
Sui Gn

.me

#showdev #javascript #npm #typescript
4
Comments
6 min read
The Axios Incident Was an Execution Failure. Here Is the Architecture That Prevents It.
skipmid profile

The Axios Incident Was an Execution Failure. Here Is the Architecture That Prevents It.

#npm #axios #openclaw #devsec
Comments
2 min read
How I Would Have Stopped the March 2026 Axios Supply Chain Attack (Free Tool Inside)
0n profile
0n

How I Would Have Stopped the March 2026 Axios Supply Chain Attack (Free Tool Inside)

#security #npm #ai #opensource
Comments
2 min read
I Built a CLI That Shows the Real Cost of Your node_modules (Size + Security + Age)
profiterole profile

I Built a CLI That Shows the Real Cost of Your node_modules (Size + Security + Age)

#node #npm #javascript #security
Comments
3 min read
đź‘‹ Sign in for the ability to sort posts by relevant, latest, or top.