npm

#npm

56 articles tagged
Mini Shai‑Hulud Hijacks @antv npm Packages via Compromised Maintainer Account
Vulnerabilities

Mini Shai‑Hulud Hijacks @antv npm Packages via Compromised Maintainer Account

5/19/2026
Copycat Shai‑Hulud Worm Infects Another npm Package, Raising GDPR and CCPA Compliance Alarm
Vulnerabilities

Copycat Shai‑Hulud Worm Infects Another npm Package, Raising GDPR and CCPA Compliance Alarm

5/18/2026
npm Supply Chain Attack Exposes Millions of Applications: Can Package Managers Do Better?
Vulnerabilities

npm Supply Chain Attack Exposes Millions of Applications: Can Package Managers Do Better?

5/16/2026
OpenAI Responds to TanStack npm Supply Chain Compromise – Required Actions and Timeline
Vulnerabilities

OpenAI Responds to TanStack npm Supply Chain Compromise – Required Actions and Timeline

5/15/2026
Stealer Backdoor Found in Node-IPC Versions Targeting Developer Secrets
Security

Stealer Backdoor Found in Node-IPC Versions Targeting Developer Secrets

5/15/2026
OpenClaw Had a Rough Week — OpenClaw Blog
Security

OpenClaw Had a Rough Week — OpenClaw Blog

5/8/2026
Ongoing Supply Chain Attacks Worm into SAP npm Packages
Vulnerabilities

Ongoing Supply Chain Attacks Worm into SAP npm Packages

5/1/2026
npmx Alpha Release: Community-Driven Alternative Browser for npm Registry
Dev

npmx Alpha Release: Community-Driven Alternative Browser for npm Registry

4/29/2026
Security

The Fragile Foundations: How Binary Package Ecosystems Undermine Software Supply Chain Security

4/26/2026
npm Supply Chain Worm Compromises Developer Environments, Steals Secrets and Spreads Like Wildfire
Vulnerabilities

npm Supply Chain Worm Compromises Developer Environments, Steals Secrets and Spreads Like Wildfire

4/23/2026
Vulnerabilities

Supply Chain Compromise Impacts Axios Node Package Manager

4/21/2026
Anthropic Exposes Claude Code Source via npm Source Map File
Vulnerabilities

Anthropic Exposes Claude Code Source via npm Source Map File

4/7/2026
Axios npm Package Compromised in Supply Chain Attack
Vulnerabilities

Axios npm Package Compromised in Supply Chain Attack

4/3/2026

Popular Tags

#AI (3628)#Security (1322)#Open Source (958)#privacy (857)#Hardware (844)#Apple (761)#Remote Code Execution (752)#API (742)#Microsoft (685)#Windows (683)#regulation (653)#Infrastructure (649)#Reddit (622)#Cloud (580)#Trends (571)#Cybersecurity (551)#Linux (536)#Gaming (498)#Business (481)#Performance (458)#Vulnerabilities (445)#Supply Chain (423)#OpenAI (390)#Android (370)#Developer Tools (366)#Machine Learning (364)#Automation (363)#Rust (361)#Samsung (359)#Battery (334)#Azure (331)#LLMs (325)#Nvidia (324)#Authentication (319)#DevOps (305)#Patch (295)#Anthropic (294)#Developer (293)#China (293)#AMD (289)#Productivity (288)#GPU (271)#LLM (271)#Camera (269)#iOS (263)#Intel (262)#Linux kernel (261)#mobile (249)#Patch Management (248)#Cloudflare (247)