HK
Heykuki News
Top
New
Best
Ask
Show
Jobs
Toggle theme
Top
New
Best
Ask
Show
Jobs
Request
511.
▲
Postmortem: TanStack NPM supply-chain compromise
tanstack.com
465 comments
a month ago
varunsharma07
1097 points
512.
▲
Malicious npm packages detected across Red Hat Cloud Services
github.com/RedHatInsights
454 comments
23 days ago
kurmiashish
775 points
513.
▲
A one-line package broke `npm create-react-app`
github.com/then
459 comments
6 years ago
tessela
599 points
514.
▲
DuckDB NPM packages 1.3.3 and 1.29.2 compromised with malware
github.com/duckdb
283 comments
9 months ago
tosh
395 points
515.
▲
Post Mortem: axios NPM supply chain compromise
github.com/axios
142 comments
3 months ago
JeanMeche
291 points
516.
▲
Ledger's NPM account has been hacked
github.com/LedgerHQ
118 comments
3 years ago
meehow
248 points
517.
▲
You too can run malware from NPM (I mean without consequences)
github.com/naugtur
114 comments
9 months ago
naugtur
195 points
518.
▲
Install NPM dependencies that run in browser without Browserify, Webpack
github.com/pikapkg
25 comments
7 years ago
darrinm
170 points
519.
▲
Standard JS: npm install funding
github.com/standard
123 comments
7 years ago
ndrake
168 points
520.
▲
npm (Node's package manager) leaks all user password hashes and salts
gist.github.com
79 comments
14 years ago
jashkenas
151 points
521.
▲
Embedded malware in RC (NPM package)
github.com/advisories
114 comments
5 years ago
hjek
140 points
522.
▲
Show HN: Thanks – See which NPM dependencies are seeking donations
github.com/feross
21 comments
8 years ago
feross
138 points
523.
▲
NPM package event-source-polyfill compromised by political activists
github.com/Yaffle
241 comments
4 years ago
ramesh31
124 points
524.
▲
Npm install could be dangerous
github.com/joaojeronimo
97 comments
11 years ago
joaojeronimo
122 points
525.
▲
Tell HN: npm breach
3 comments
4 years ago
alexghr
118 points
526.
▲
Bun adds pnpm-style isolated installation mode
github.com/oven-sh
16 comments
a year ago
nateb2022
114 points
527.
▲
Dum: An NPM scripts runner written in Rust
github.com/egoist
90 comments
4 years ago
vvoyer
112 points
528.
▲
Unpublishing npm package breaks the internet
github.com/azer
1 comment
10 years ago
camwest
104 points
529.
▲
Show HN: Kikked – check if any of your NPM repos is trademarked
github.com/parro-it
87 comments
10 years ago
parro-it
98 points
530.
▲
Show HN: I'm 15 years old, and I released my first NPM module: Wizardry
diy.github.com
86 comments
14 years ago
remixz
98 points
531.
▲
Response to Nodejitsu NPM Trademark
gist.github.com
21 comments
12 years ago
voidfiles
69 points
532.
▲
Show HN: npm install actual-malware
github.com/qpwo
13 comments
4 years ago
lhmiles
55 points
533.
▲
An NPM package to check if a number is equal to 13
github.com/jezen
14 comments
8 years ago
dawkins
53 points
534.
▲
Requiring NPM modules in the browser console
gist.github.com
5 comments
12 years ago
kristiandupont
53 points
535.
▲
Claude Code full source code leaked on NPM
github.com/chatgptprojects
3 comments
3 months ago
dheerajmp
47 points
536.
▲
Show HN: DepsGuard – One command to harden NPM/pnpm/yarn/bun/uv configs
github.com/arnica
7 comments
23 days ago
eranation
40 points
537.
▲
Compromised NPM packages of ua-parser-JS (0.7.29, 0.8.0, 1.0.0)
github.com/faisalman
6 comments
5 years ago
nop_slide
38 points
538.
▲
Popular NPM module node-ipc added malware targeting Russian developers
gist.github.com
5 comments
4 years ago
zimmund
37 points
539.
▲
NPM packages with most dependencies
gist.github.com
22 comments
8 years ago
supermdguy
36 points
540.
▲
NPM fired staff for discussing workplace conditions
gist.github.com
4 comments
7 years ago
chasontherobot
26 points
More