Hacker News
- Dev corrupts NPM libs 'colors' and 'faker', breaking thousands of apps https://www.bleepingcomputer.com/news/security/dev-corrupts-npm-libs-colors-and-faker-breaking-thousands-of-apps/ 1063 comments
- NPM Was Down https://status.npmjs.org/incidents/cksjqc1w11v5 8 comments
- NPM package is-windows is a one line function but used by 2.5M repos https://twitter.com/caspervonb/status/1139947676546453504 3 comments
- Umask setting is ignored by npm for some directories https://github.com/npm/npm/issues/9359 27 comments
- Deceptive Deprecation: The Truth About npm Deprecated Packages https://blog.aquasec.com/deceptive-deprecation-the-truth-about-npm-deprecated-packages 12 comments javascript
- Weekly news: North Korea malware on npm and Ledger connect-kit crypto heist https://www.nodejs-security.com/blog/north-korea-malware-on-npm-and-ledger-connect-kit-crypto-heist 24 comments node
- SSH keys stolen by stream of malicious PyPI and npm packages https://www.bleepingcomputer.com/news/security/ssh-keys-stolen-by-stream-of-malicious-pypi-and-npm-packages/ 14 comments webdev
- How to Fix Your Security Vulnerabilities with NPM Overrides https://medium.com/me/stats/post/c4b5be0ab4f6 6 comments npm
- Having issues trying to setup a monorepo with NPM workspaces and Typescript https://stackoverflow.com/questions/72055371/npm-workspaces-typescript-unable-to-find-local-modules 6 comments typescript
- Another way to do the same service as bytesafe? Stop npm install on insecure packages https://bytesafe.dev 9 comments node
- Npm run prod doesn't run Vue in production mode after deployment https://preview.redd.it/uipxhhry5fd81.png?width=931&format=png&auto=webp&s=6b6c6c11ef51c85cfd96df2d05a72d6e68be4a0b 2 comments laravel
- Hope nobody needs do to an npm install, because npm.org is down! https://status.npmjs.org 11 comments webdev
- npm audit shows my new react app has 58 vulnerabilities https://overreacted.io/npm-audit-broken-by-design/ 26 comments webdev
- Hey sub! I finally completed my upload component that I posted quite a while ago. (Link to the prev post in comments). Published it on NPM under react-upload-box. Check comments for complete description. Feedbacks are welcome. https://raw.githubusercontent.com/cheersmas/react-upload-box/main/readme-assets/upload.gif 44 comments reactjs
- Npm 7 is now the standard, here is what you'll get https://justfrontendthings.com/post/npm-7-now-standard 81 comments javascript
- We really need to avoid npm fate https://sambleckley.com/writing/npm.html 274 comments rust
- Hosting a free private npm registry with Verdaccio https://medium.com//creating-a-free-private-npm-registry-with-verdaccio-e1becdc542b?source=friends_link&sk=894a6793c05f647396cc51bf1674c838 3 comments node
- GitHub acquired npm https://blog.graphqleditor.com/github-npm/ 20 comments opensource
- A node dev with 1,148 published npm modules including gems like is-fullwidth-codepoint, is-stream and negative-zero on the benefits of writing tiny node modules. https://github.com/sindresorhus/ama/issues/10#issuecomment-117766328 706 comments programming
- Yarn monthly downloads via _npm_ up 1 million since 2019 (why so many people installing yarn via npm?) https://npmcharts.com/compare/yarn 14 comments javascript
- What's going on with npm? https://www.reddit.com/r/outoftheloop/comments/bysoj3/whats_going_on_with_npm/ 59 comments javascript
- React NPM Package: FlipCard https://www.npmjs.com/package/react-png-flipcard 3 comments reactjs
- The npm Registry uses Rust for its CPU-bound bottlenecks https://www.rust-lang.org/static/pdfs/rust-npm-whitepaper.pdf 114 comments programming
- This Week on npm v20190118: ajv@6.7.0 https://js.report/blog/this-week-on-npm-20190118 9 comments javascript
- NPM Recommendation Request - Swipe Text Inside a List to Expose a Button Underneath - My List is Not Full Width https://www.npmjs.com/package/react-native-swipe-list-view 3 comments reactnative
- ⚡️📦 pikapkg.com - A searchable catalog of modern ESM "module" package on npm https://www.pikapkg.com 9 comments javascript
- Dominic's Response To The event-stream NPM Package Hack https://gist.github.com/dominictarr/9fd9c1024c94592bc7268d36b8d83b3a 7 comments node
- How to build an npm worm https://jamie.build/how-to-build-an-npm-worm 7 comments netsec
- Generating an npm package for a gem https://github.com/patricklindsay/wice_grid 7 comments ruby
- My First NPM Package - - A way to see if a user is inside your geofence area. https://www.npmjs.com/package/fencery 3 comments javascript
- Why has there been nearly 3 million installs of is-odd - npm in the last 7 days? https://www.npmjs.com/package/is-odd 413 comments programming
- Botched npm Update Crashes Linux Systems, Forces Users to Reinstall https://www.bleepingcomputer.com/news/linux/botched-npm-update-crashes-linux-systems-forces-users-to-reinstall/ 22 comments webdev
- Do not use NPM 5.7 https://github.com/npm/npm/issues/19883 41 comments webdev
- Today is Leftpad 2.0: pinkie-promise pulled from NPM https://www.reddit.com/r/javascript/comments/7olgo0/today_is_leftpad_20_pinkiepromise_pulled_from_npm/ 28 comments javascript
- List of available 3 letter npm names https://medv.io/list-of-available-three-letter-npm-names/ 12 comments javascript
- npm install @types vs. VS Code ATA? https://www.reddit.com/r/typescript/comments/68x170/npm_install_types_vs_vs_code_ata/ 7 comments typescript
- npm 4 (releasing in 2 days) is splitting the “prepublish” script into “prepublishOnly” and “prepare”. Here’s why and what to do http://iamakulov.com/notes/all/npm-4-prepublish/ 6 comments javascript
- how to require npm modules in the browser console https://gist.github.com/mathisonian/c325dbe02ea4d6880c4e 5 comments javascript
- npm Passes RubyGems in Terms of Module Count http://modulecounts.com/ 8 comments programming
- Choosing Between npm, Bower and component http://flippinawesome.org/2013/08/26/choosing-between-npm-bower-and-component/?utm_source=nodeweekly&utm_medium=email 18 comments javascript