North Korean hackers intensify their efforts against blockchain and Web3 developers, using nearly 200 malicious npm packages ...
A major JavaScript supply-chain attack has compromised hundreds of software packages — including at least 10 used widely ...
Charlie Eriksen, a researcher at Aikido, identified the infected libraries and confirmed each detection manually to minimize ...
Shai Hulud malware has infected hundreds of NPM libraries, including major ENS and crypto packages, triggering a JavaScript security crisis.
Tens of thousands of developers using weak credentials to secure their npm accounts inadvertently put more than half of the npm packages (JavaScript libraries and tools) at risk of getting hijacked ...
Rebounding from some unwanted publicity and developer angst, npm Inc. has simplified the process of using its enterprise-oriented JavaScript package manager in the cloud. npm Enterprise is now ...
GitHub, the developer repository owned by Microsoft, made a little deal of its own this morning when it bought JavaScript packaging vendor npm for an undisclosed amount. As GitHub CEO Nat Friedman ...
Concerned users can set up their own backup system if they don’t trust the steps NPM Inc. has taken to prevent problems The NPM registry of JavaScript packages has become a critical cog in the ...
The team behind npm, the biggest package manager for JavaScript libraries, has issued a security alert yesterday, advising all users to update to the latest version (6.13.4) to prevent "binary ...
Is the public NPM JavaScript package registry going away? NPM, the company behind the popular online repository of Node.js and JavaScript code, insists it will remain, despite a recent rumor to the ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results
Feedback