DEV Community

npm

Node Package Manager

Posts

👋 Sign in for the ability to sort posts by relevant, latest, or top.
guard-install now scans GitHub repos before you run them
nithindj192 profile

guard-install now scans GitHub repos before you run them

#npm #node #riskanalysis
Comments
1 min read
Proof-of-Commitment Internals: How the Scoring Algorithm Works
piiiico profile
Pico

Proof-of-Commitment Internals: How the Scoring Algorithm Works

#npm #security #javascript #supplychain
1
Comments
6 min read
Spotify Verified for Human Artists: What It Signals for Code, Content, and My Own Blog
jtorchia profile

Spotify Verified for Human Artists: What It Signals for Code, Content, and My Own Blog

#english #npm #claudecode #developertools
1
Comments
8 min read
hashfree: Clean URL Section Navigation Without the #
joshteflon profile

hashfree: Clean URL Section Navigation Without the #

#npm #webdev #javascript #typescript
4
Comments
2 min read
npm installs packages blindly — I built a CLI to fix that
nithindj192 profile

npm installs packages blindly — I built a CLI to fix that

#showdev #cli #npm #security
Comments
1 min read
Hono Has 34M Weekly Downloads and One Maintainer
piiiico profile
Pico

Hono Has 34M Weekly Downloads and One Maintainer

#javascript #webdev #security #npm
Comments
3 min read
Four MCP packages, four ways the supply chain shifted in two weeks of npm monitoring
michael_onyekwere profile

Four MCP packages, four ways the supply chain shifted in two weeks of npm monitoring

#security #supplychain #mcp #npm
Comments
7 min read
You've probably never heard of these npm packages. They're in your production app.
piiiico profile
Pico

You've probably never heard of these npm packages. They're in your production app.

#npm #security #javascript #webdev
Comments
3 min read
Hardening npm dependency security
alexocallaghan profile

Hardening npm dependency security

#security #node #webdev #npm
Comments
4 min read
Three npm Disasters That Were Predictable (And What the Signals Looked Like)
piiiico profile
Pico

Three npm Disasters That Were Predictable (And What the Signals Looked Like)

#npm #security #javascript #opensource
1
Comments
6 min read
I audited 25 top npm packages with a zero-install CLI. Here's who passes.
piiiico profile
Pico

I audited 25 top npm packages with a zero-install CLI. Here's who passes.

#npm #security #javascript #opensource
1
Comments
4 min read
When GitHub Actions Goes Silent: The Pending-Forever Bug I Hit Shipping My MCP Server to npm
achiya-automation profile

When GitHub Actions Goes Silent: The Pending-Forever Bug I Hit Shipping My MCP Server to npm

#github #ci #npm #devops
Comments
5 min read
AI Hallucinated Dependencies Are the New Supply Chain Attack: How to Stop Them
toniantunovic profile

AI Hallucinated Dependencies Are the New Supply Chain Attack: How to Stop Them

#supplychainsecurity #aicode #npm #security
Comments
8 min read
Publish your npm package using Changesets and GitHub actions
tsevdos profile

Publish your npm package using Changesets and GitHub actions

#npm #package #changesets #github
Comments
4 min read
How to Automate OTP Extraction and Email Testing in n8n with Disposable Inboxes
devnplay profile

How to Automate OTP Extraction and Email Testing in n8n with Disposable Inboxes

#tooling #npm #webdev #productivity
Comments
3 min read
👋 Sign in for the ability to sort posts by relevant, latest, or top.