DEV Community

npm

Node Package Manager

Posts

👋 Sign in for the ability to sort posts by relevant, latest, or top.
Desenvolvendo aplicações web com Node.js: do primeiro servidor ao seu próprio roteador de URLs
moprius profile

Desenvolvendo aplicações web com Node.js: do primeiro servidor ao seu próprio roteador de URLs

#javascript #webdev #node #npm
Comments
13 min read
Attempt to stop npm postinstall scripts from stealing your secrets
asmyshlyaev177 profile
Alex

Attempt to stop npm postinstall scripts from stealing your secrets

#npm #supplychainattack #shaihulud
1
Comments
4 min read
npm Is on Fire: Why the Architecture Is the Product
vivian-voss profile

npm Is on Fire: Why the Architecture Is the Product

#npm #supplychain #security #freebsd
Comments
10 min read
attw script in CopilotKit codebase.
ramunarasinga-11 profile

attw script in CopilotKit codebase.

#attw #opensource #copilotkit #npm
Comments
3 min read
42 @tanstack/* Packages Were Compromised on npm: What Happened, How It Works, and What You Must Do Right Now
devcodehub99 profile

42 @tanstack/* Packages Were Compromised on npm: What Happened, How It Works, and What You Must Do Right Now

#javascript #security #npm #webdev
Comments
10 min read
The TanStack npm Attack Shows Why pnpm 11 Matters
audreyhal profile

The TanStack npm Attack Shows Why pnpm 11 Matters

#cicd #javascript #npm #security
2
Comments
3 min read
LibKill: Scan Your Machine for Compromised npm, pip, and Bun Packages
firfircelik profile

LibKill: Scan Your Machine for Compromised npm, pip, and Bun Packages

#security #npm #ai #programming
Comments
3 min read
I got tired of calculating commercial lease billing by hand, so I built a tool
jaco_siu_748a48197d7f91e9 profile
Coco

I got tired of calculating commercial lease billing by hand, so I built a tool

#realestate #javascript #npm #proptech
Comments
2 min read
The Worm in the Registry
vektor_memory_43f51a32376 profile

The Worm in the Registry

#ai #cybersecurity #npm #github
2
Comments
10 min read
TanStack Was Not the Whole Story: Mini Shai-Hulud Was an npm/PyPI Supply-Chain Worm
trknhr profile

TanStack Was Not the Whole Story: Mini Shai-Hulud Was an npm/PyPI Supply-Chain Worm

#security #npm #pypi #githubactions
6
Comments 1
8 min read
I Built My Own Config Format for Node.js That Separates Server and Client Secrets
kanishq9 profile

I Built My Own Config Format for Node.js That Separates Server and Client Secrets

#node #npm #security #opensource
1
Comments 2
5 min read
Supply chain en npm vs PyPI: comparé mis dos simulaciones y el vector más peligroso no es el que todos creen
jtorchia profile

Supply chain en npm vs PyPI: comparé mis dos simulaciones y el vector más peligroso no es el que todos creen

#spanish #espanol #npm #node
Comments
10 min read
Supply chain npm vs PyPI: I compared both simulations and the most dangerous vector isn't what everyone thinks
jtorchia profile

Supply chain npm vs PyPI: I compared both simulations and the most dangerous vector isn't what everyone thinks

#english #npm #node #devops
Comments
9 min read
Stop Shipping Broken Env Configs — I Built a Fix
rohan_mirjankar profile

Stop Shipping Broken Env Configs — I Built a Fix

#npm #javascript #node #webdev
Comments
2 min read
Add Real Business Trust Signals to Claude Desktop in 60 Seconds
piiiico profile
Pico

Add Real Business Trust Signals to Claude Desktop in 60 Seconds

#npm #security #javascript #supplychain
Comments
2 min read
👋 Sign in for the ability to sort posts by relevant, latest, or top.