DEV Community

npm

Node Package Manager

Posts

đź‘‹ Sign in for the ability to sort posts by relevant, latest, or top.
20 one-shot prompts that turn Kanban into an autonomous coding machine

20 one-shot prompts that turn Kanban into an autonomous coding machine

1
Comments
11 min read
Detecting Event Loop Blocking in Production Node.js — Without Touching Your Code

Detecting Event Loop Blocking in Production Node.js — Without Touching Your Code

2
Comments 1
7 min read
Case Study: How I Dogfood DevRadar Guard on a 954-Dependency Project

Case Study: How I Dogfood DevRadar Guard on a 954-Dependency Project

1
Comments
4 min read
I built an npm malware scanner in Rust because npm audit isn't enough

I built an npm malware scanner in Rust because npm audit isn't enough

3
Comments 4
3 min read
Axios Was Compromised. Here's What It Means for Your Repo.

Axios Was Compromised. Here's What It Means for Your Repo.

Comments
3 min read
A North Korean Backdoor Lived Inside Axios for 3 Hours. Millions of Pipelines Pulled It.

A North Korean Backdoor Lived Inside Axios for 3 Hours. Millions of Pipelines Pulled It.

Comments
8 min read
What Your Linter Can't Catch: The Invisible Unicode Attacks Hitting GitHub

What Your Linter Can't Catch: The Invisible Unicode Attacks Hitting GitHub

1
Comments
4 min read
npm package commitment scores: zod has 139M weekly downloads and one maintainer

npm package commitment scores: zod has 139M weekly downloads and one maintainer

Comments
4 min read
I Built a Lightweight i18n Library for JavaScript — Meet globaly-i18n

I Built a Lightweight i18n Library for JavaScript — Meet globaly-i18n

1
Comments
3 min read
I Haven't Opened the npm Website in Months. Here's How.

I Haven't Opened the npm Website in Months. Here's How.

1
Comments
4 min read
How the Axios Supply Chain Attack Worked - And How to Detect It Earlier

How the Axios Supply Chain Attack Worked - And How to Detect It Earlier

Comments
3 min read
MCP Connector Poisoning: How Compromised npm Packages Hijack Your AI Agent

MCP Connector Poisoning: How Compromised npm Packages Hijack Your AI Agent

Comments 2
5 min read
Axios got compromised. They attacked the human, not code.

Axios got compromised. They attacked the human, not code.

3
Comments
4 min read
npm install puede infectar tu máquina: cómo protegerte

npm install puede infectar tu máquina: cómo protegerte

2
Comments 1
7 min read
I'm 12 and I built a 2KB 0 dependency alternative to CASL!

I'm 12 and I built a 2KB 0 dependency alternative to CASL!

Comments 1
1 min read
đź‘‹ Sign in for the ability to sort posts by relevant, latest, or top.