“npm” Archive
- Using Vite to Rebuild Local Dependencies in an npm Workspace · · vite, dependencies
- Building an npm Package Compatible With ESM and CJS in 2024 · · dependencies, modules
- Node.js TSC Confirms: No Intention to Remove npm from Distribution · · nodejs
- How npm Install Scripts Can Be Weaponized: A Real-World Example of a Harmful npm Package · · dependencies, examples, security
- Why Does “is-number” Package Have 59M Weekly Downloads? · · dependencies
- Node.js Community Debate Intensifies over Enabling Corepack by Default and Potentially Unbundling npm · · nodejs, yarn, pnpm, dependencies
- Malicious npm Package Masquerades as Noblox.js, Targeting Roblox Users for Data Theft · · dependencies, security
- GitHub, npm Registry Abused to Host SSH Key-Stealing Malware · · github, security, open-source
- Modern JavaScript Library Starter · · dependencies, libraries
- Deceptive Deprecation: The Truth About npm Deprecated Packages · · security, dependencies, research
- npm in Review: A 2023 Retrospective on Growth, Security, and Quirky Facts · · retrospectives
- When “Everything” Becomes Too Much: The npm Package Chaos of 2024 · · open-source
- I Replaced npm, Yarn, and nvm With pnpm · · dependencies, yarn, pnpm, nvm
- How to Use npm Packages Outside of Node · · how-tos, dependencies, javascript
- image-dimensions · · packages, images
- Secret Scanning Scans Public npm Packages · · github, dependencies, security
- TypeScript Monorepo With npm Workspaces · · monorepos, typescript, architecture
- SSH Keys Stolen by Stream of Malicious PyPI and npm Packages · · security, ssh, dependencies
- Honey, I Shrunk the npm Package · · dependencies, compression
- npm Provenance General Availability · · github, provenance, security
- Sophisticated, Highly-Targeted Attacks Continue to Plague npm · · security
- Publishing With npm Provenance from Private Source Repositories Is No Longer Supported · · github, provenance, security, open-source
- Social Engineering Campaign Targeting Tech Employees Spreading Through npm Malware · · security
- A Comprehensive Beginner’s Guide to npm: Simplifying Package Management · · guides, dependencies
- Identify Unused npm Packages in Your Project · · dependencies, maintenance
- The Massive Bug at the Heart of the npm Ecosystem · · dependencies, security
- Create React UI Lib: Component Library Speedrun · · typescript, react, components
- npm Won’t Publish Packages Containing the Word “keygen” · · discussions, dependencies
- Comparing the Best Node.js Version Managers: nvm, Volta, and asdf · · nodejs, nvm
- npm vs. Yarn vs. pnpm · · yarn, pnpm, comparisons
- Generating Provenance Statements · · provenance, security
- Introducing npm Package Provenance · · github, provenance, security, open-source
- Dissecting npm Malware: Five Packages and Their Evil Install Scripts · · security
- One in Two New npm Packages Is SEO Spam Right Now · · seo
- The Landscape of npm Packages for CLI Apps · · nodejs, dependencies, command-line
- Automatic npm Publishing With GitHub Actions and npm Granular Tokens · · github, automation
- Why We Added package.json Support to Deno · · deno, support, nodejs
- Speeding Up the JavaScript Ecosystem—npm Scripts · · javascript, performance, bundling
- Unlocking Security Updates for Transitive Dependencies With npm · · dependencies, security, maintenance
- Lockfile Trick: Package an npm Project With Nix in 20 Lines · · tips-and-tricks
- New npm Features for Secure Publishing and Safe Consumption · · security, dependencies
- npm Security: Preventing Supply Chain Attacks · · dependencies, security
- How to Build, Test, and Publish a TypeScript npm Package in 2022 · · how-tos, typescript
- Use “npm query” and jq to Dig into Your Dependencies · · videos, dependencies, auditing
- Phylum Detects Active Typosquatting Campaign Targeting npm Developers · · dependencies, security
- depngn · · packages, nodejs, dependencies
- Best Practices for Creating a Modern npm Package · · best-practices
- Dependabot Unlocks Transitive Dependencies for npm Projects · · dependencies, security
- 4 Ways to Minimize Your Dependencies in Node.js · · nodejs, dependencies
- Installing and Running Node.js Bin Scripts · · nodejs
- Introducing the New npm Dependency Selector Syntax · · introductions
- Introducing Even More Security Enhancements to npm · · security
- css-browser-support · · packages, css, user-agents, support
- Imagemin Guard · · packages, images, compression, performance, jpeg, png, gif, webp, avif
- Alternatives to Installing npm Packages Globally · · dependencies
- You May Not Need a Bundler for Your npm Library · · bundling
- npm Security Update: Attack Campaign Using Stolen OAuth Tokens · · security, version-control, github
- What npm Can Learn from Go ·
- Snyk Finds 200+ Malicious npm Packages, Including Cobalt Strike Dependency Confusion Attacks · · javascript, dependencies, security
- 4 Reasons to Avoid Using “npm link” ·
- How to Respond to Growing Supply Chain Security Risks? · · how-tos, security, dependencies, nodejs
- Update Node Dependencies Automatically, Selectively, or Incrementally · · nodejs, dependencies, yarn
- What’s Really Going On Inside Your node_modules Folder? · · nodejs, dependencies
- Understanding Dependencies Inside Your package.json · · nodejs, dependencies, yarn
- How to Fix Your Security Vulnerabilities With npm Override · · how-tos, security, dependencies
- The Basics of package.json · · fundamentals, nodejs, dependencies, yarn
- pkg.land · · websites, packages
- GitHub’s Commitment to npm Ecosystem Security · · github, security
- Yarn vs. npm: Everything You Need to Know · · yarn, comparisons
- Common npm Mistakes Every Developer Should Avoid · · mistakes
- npm Security Best Practices · · security, best-practices
- Simple Monorepos Via npm Workspaces and TypeScript Project References · · monorepos, typescript
- timefind · · packages, history
- NPM Global Audit · · packages, security, quality, auditing
- npm, Yarn, and pnpm Command Converter · tools, exploration, conversion, yarn, pnpm, command-line