DEV Community

npm

Node Package Manager

Posts

👋 Sign in for the ability to sort posts by relevant, latest, or top.
Malicious npm Packages Disguised as Strapi Plugins Enable Data Exfiltration and Remote Code Execution
kornilovconstru profile

Malicious npm Packages Disguised as Strapi Plugins Enable Data Exfiltration and Remote Code Execution

#npm #strapi #malware #exfiltration
Comments
7 min read
Supply Chain Security measures
0xkoji profile
0xkoji

Supply Chain Security measures

#security #npm #uv #githubactions
Comments
1 min read
Shipping a Go CLI to Every Ecosystem: GitHub Releases, Homebrew, and npm
_402ccbd6e5cb02871506 profile
Kazu

Shipping a Go CLI to Every Ecosystem: GitHub Releases, Homebrew, and npm

#cli #github #go #npm
Comments
5 min read
The Axios/npm Incident & Why AI Won’t Replace Devs
cyberjanitor profile

The Axios/npm Incident & Why AI Won’t Replace Devs

#ai #javascript #npm #security
Comments
1 min read
I built an npm malware scanner and found 21 malicious packages in 24 hours
yurithecoder profile

I built an npm malware scanner and found 21 malicious packages in 24 hours

#security #npm #javascript #opensource
Comments 1
1 min read
How the axios@1.14.1 supply chain attack worked (and how to protect yourself)
bigjenkie profile

How the axios@1.14.1 supply chain attack worked (and how to protect yourself)

#javascript #opensource #security #npm
Comments
4 min read
What the Axios npm Compromise Means for MCP Server Maintainers
michael_onyekwere profile

What the Axios npm Compromise Means for MCP Server Maintainers

#security #mcp #npm #supplychain
Comments
4 min read
How to Finally (and Iteratively) Kill Every Last 'npm audit'
tonymet profile

How to Finally (and Iteratively) Kill Every Last 'npm audit'

#security #automation #npm #node
Comments
3 min read
.me
suign profile
Sui Gn

.me

#showdev #javascript #npm #typescript
4
Comments
6 min read
The Axios Incident Was an Execution Failure. Here Is the Architecture That Prevents It.
skipmid profile

The Axios Incident Was an Execution Failure. Here Is the Architecture That Prevents It.

#npm #axios #openclaw #devsec
Comments
2 min read
How I Would Have Stopped the March 2026 Axios Supply Chain Attack (Free Tool Inside)
0n profile
0n

How I Would Have Stopped the March 2026 Axios Supply Chain Attack (Free Tool Inside)

#security #npm #ai #opensource
Comments
2 min read
I Built a CLI That Shows the Real Cost of Your node_modules (Size + Security + Age)
profiterole profile

I Built a CLI That Shows the Real Cost of Your node_modules (Size + Security + Age)

#node #npm #javascript #security
Comments
3 min read
I built a tiny hook to solve the missing navigation guard in Next.js App Router
rl0425 profile
Gichan

I built a tiny hook to solve the missing navigation guard in Next.js App Router

#react #nextjs #typescript #npm
1
Comments
3 min read
How a sandwich defeats North Korea's hackers (and the US couldn't for 70 years)
brennhill profile

How a sandwich defeats North Korea's hackers (and the US couldn't for 70 years)

#security #npm #opensource #ai
Comments
5 min read
هجوم سلسلة الإمداد على axios@1.14.1: ماذا تفعل الآن؟
yusuf_khalidd profile

هجوم سلسلة الإمداد على axios@1.14.1: ماذا تفعل الآن؟

#javascript #node #npm #security
Comments
2 min read
👋 Sign in for the ability to sort posts by relevant, latest, or top.