Skip to content
Navigation menu
Search
Powered by Algolia
Search
Log in
Create account
DEV Community
Close
npm
Follow
Hide
Node Package Manager
Posts
Left menu
đź‘‹
Sign in
for the ability to sort posts by
relevant
,
latest
, or
top
.
Right menu
Supply chain en npm vs PyPI: comparé mis dos simulaciones y el vector más peligroso no es el que todos creen
Juan Torchia
Juan Torchia
Juan Torchia
Follow
May 8
Supply chain en npm vs PyPI: comparé mis dos simulaciones y el vector más peligroso no es el que todos creen
#
spanish
#
espanol
#
npm
#
node
Comments
Add Comment
10 min read
Stop Shipping Broken Env Configs — I Built a Fix
Rohan Mirjankar
Rohan Mirjankar
Rohan Mirjankar
Follow
May 8
Stop Shipping Broken Env Configs — I Built a Fix
#
npm
#
javascript
#
node
#
webdev
1
 reaction
Comments
Add Comment
2 min read
Why Your LLM Agent Forgot What It Did 5 Steps Ago
Saran S
Saran S
Saran S
Follow
for
Dopove
May 8
Why Your LLM Agent Forgot What It Did 5 Steps Ago
#
ai
#
python
#
npm
#
agents
1
 reaction
Comments
1
 comment
4 min read
Why Your AI Coding Agent Keeps Recommending Dead Packages
The BookMaster
The BookMaster
The BookMaster
Follow
Apr 4
Why Your AI Coding Agent Keeps Recommending Dead Packages
#
agents
#
ai
#
npm
#
programming
1
 reaction
Comments
Add Comment
2 min read
AGENTS.md moved AI performance up a model tier. Package trust needs the same.
Pico
Pico
Pico
Follow
May 8
AGENTS.md moved AI performance up a model tier. Package trust needs the same.
#
npm
#
security
#
javascript
#
supplychain
Comments
Add Comment
2 min read
I never expected this response ~robot-toast
Pratham Israni
Pratham Israni
Pratham Israni
Follow
May 8
I never expected this response ~robot-toast
#
javascript
#
webdev
#
opensource
#
npm
Comments
Add Comment
2 min read
Malicious npm Packages Disguised as Strapi Plugins Enable Data Exfiltration and Remote Code Execution
Artyom Kornilov
Artyom Kornilov
Artyom Kornilov
Follow
Apr 4
Malicious npm Packages Disguised as Strapi Plugins Enable Data Exfiltration and Remote Code Execution
#
npm
#
strapi
#
malware
#
exfiltration
Comments
Add Comment
7 min read
The Axios/npm Incident & Why AI Won’t Replace Devs
Cyber Janitor
Cyber Janitor
Cyber Janitor
Follow
Apr 4
The Axios/npm Incident & Why AI Won’t Replace Devs
#
ai
#
javascript
#
npm
#
security
Comments
Add Comment
1 min read
I built an npm malware scanner and found 21 malicious packages in 24 hours
Yuri Borges
Yuri Borges
Yuri Borges
Follow
Apr 3
I built an npm malware scanner and found 21 malicious packages in 24 hours
#
security
#
npm
#
javascript
#
opensource
Comments
1
 comment
1 min read
npm audit no alcanza: simulé un supply chain attack sobre mis dependencias de Node y encontré lo que el scanner no ve
Juan Torchia
Juan Torchia
Juan Torchia
Follow
May 7
npm audit no alcanza: simulé un supply chain attack sobre mis dependencias de Node y encontré lo que el scanner no ve
#
spanish
#
espanol
#
typescript
#
npm
1
 reaction
Comments
Add Comment
10 min read
npm audit isn't enough: I simulated a supply chain attack on my Node dependencies and found what the scanner can't see
Juan Torchia
Juan Torchia
Juan Torchia
Follow
May 7
npm audit isn't enough: I simulated a supply chain attack on my Node dependencies and found what the scanner can't see
#
english
#
typescript
#
npm
#
devops
1
 reaction
Comments
Add Comment
9 min read
How the axios@1.14.1 supply chain attack worked (and how to protect yourself)
bigjenkie
bigjenkie
bigjenkie
Follow
Apr 3
How the axios@1.14.1 supply chain attack worked (and how to protect yourself)
#
javascript
#
opensource
#
security
#
npm
Comments
Add Comment
4 min read
What the Axios npm Compromise Means for MCP Server Maintainers
Michael Kayode Onyekwere
Michael Kayode Onyekwere
Michael Kayode Onyekwere
Follow
Apr 3
What the Axios npm Compromise Means for MCP Server Maintainers
#
security
#
mcp
#
npm
#
supplychain
Comments
Add Comment
4 min read
How to Finally (and Iteratively) Kill Every Last 'npm audit'
Tony Metzidis
Tony Metzidis
Tony Metzidis
Follow
Apr 2
How to Finally (and Iteratively) Kill Every Last 'npm audit'
#
security
#
automation
#
npm
#
node
Comments
Add Comment
3 min read
hashfree: Clean URL Section Navigation Without the #
Joshua Enikele
Joshua Enikele
Joshua Enikele
Follow
May 6
hashfree: Clean URL Section Navigation Without the #
#
npm
#
webdev
#
javascript
#
typescript
7
 reactions
Comments
2
 comments
2 min read
đź‘‹
Sign in
for the ability to sort posts by
relevant
,
latest
, or
top
.
We're a place where coders share, stay up-to-date and grow their careers.
Log in
Create account