“dependencies” Archive
- Another JS Registry—Seriously?! · · videos, jsr, javascript
- How npm Install Scripts Can Be Weaponized: A Real-World Example of a Harmful npm Package · · npm, examples, security
- Introducing JSR—the JavaScript Registry · · jsr, deno, javascript
- Why Does “is-number” Package Have 59M Weekly Downloads? · · npm
- Choosing the Right Node.js Package Manager in 2024: A Comparative Guide · · guides, nodejs, comparisons
- JSR: What We Know So Far About Deno’s New JavaScript Package Registry · · jsr, deno, javascript
- Node.js Community Debate Intensifies over Enabling Corepack by Default and Potentially Unbundling npm · · nodejs, npm, yarn, pnpm
- Malicious npm Package Masquerades as Noblox.js, Targeting Roblox Users for Data Theft · · npm, security
- Modern JavaScript Library Starter · · npm, libraries
- Deceptive Deprecation: The Truth About npm Deprecated Packages · · security, npm, research
- Installing Google Fonts as npm Packages · · tooling, google, fonts
- I Replaced npm, Yarn, and nvm With pnpm · · npm, yarn, pnpm, nvm
- A Complete Guide to pnpm · · guides, pnpm
- How to Use npm Packages Outside of Node · · how-tos, npm, javascript
- Secret Scanning Scans Public npm Packages · · github, npm, security
- How We Optimized Package Imports in Next.js · · nextjs, optimization, case-studies
- SSH Keys Stolen by Stream of Malicious PyPI and npm Packages · · security, ssh, npm
- Honey, I Shrunk the npm Package · · npm, compression
- Upgrading Frontend Dependencies With Confidence · · maintenance, testing, regressions, playwright
- Bun Hype: How We Learned Nothing from Yarn · · bun, yarn, history
- My Experience Modernizing Packages to ESM · · modernization, modules
- A Comprehensive Beginner’s Guide to npm: Simplifying Package Management · · guides, npm
- Identify Unused npm Packages in Your Project · · npm, maintenance
- The Massive Bug at the Heart of the npm Ecosystem · · npm, security
- npm Won’t Publish Packages Containing the Word “keygen” · · discussions, npm
- Before Your Next Frontend Pull Request, Use This Checklist · · checklists, performance, compression, accessibility, legibility, naming
- Building a Frontend Framework—Reactivity and Composability With Zero Dependencies · · frameworks, reactivity
- Deno vs. Node: No One Is Ready for the Move · · deno, nodejs, comparisons
- The Landscape of npm Packages for CLI Apps · · nodejs, npm, command-line
- Unlocking Security Updates for Transitive Dependencies With npm · · npm, security, maintenance
- New npm Features for Secure Publishing and Safe Consumption · · npm, security
- npm Security: Preventing Supply Chain Attacks · · npm, security
- Use “npm query” and jq to Dig into Your Dependencies · · videos, npm, auditing
- Phylum Detects Active Typosquatting Campaign Targeting npm Developers · · npm, security
- depngn · · packages, npm, nodejs
- Dependabot Unlocks Transitive Dependencies for npm Projects · · npm, security
- 4 Ways to Minimize Your Dependencies in Node.js · · nodejs, npm
- JavaScript Bugs Aplenty in Node.js Ecosystem—Found Automatically · · studies, nodejs, javascript, security, quality
- Optimizing Node.js Dependencies in AWS Lambda · · nodejs, aws, optimization
- Alternatives to Installing npm Packages Globally · · npm
- Don’t Sink Your Website With Third Parties · · embed-code, performance
- Snyk Finds 200+ Malicious npm Packages, Including Cobalt Strike Dependency Confusion Attacks · · javascript, npm, security
- Lerna Has Gone—Which Monorepo Is Right for a Node.js Backend Now? · · monorepos, comparisons, nodejs
- How to Respond to Growing Supply Chain Security Risks? · · how-tos, security, nodejs, npm
- Update Node Dependencies Automatically, Selectively, or Incrementally · · nodejs, npm, yarn
- What’s Really Going On Inside Your node_modules Folder? · · nodejs, npm
- Understanding Dependencies Inside Your package.json · · nodejs, npm, yarn
- How to Fix Your Security Vulnerabilities With npm Override · · how-tos, security, npm
- The Basics of package.json · · nodejs, npm, yarn
- How to Keep Your Repo Package Dependencies Up to Date Automatically · · how-tos, tooling
- Why You Should Check in Your Node Dependencies · · nodejs
- Ain’t No Party Like a Third Party · · embed-code, security
- Open Source Insights · · websites, open-source, security, licensing
- Package Size Checker · tools, exploration, auditing, debugging