Frontend Dogma

“dependencies” Archive

  1. Another JS Registry—Seriously?! · · , ,
  2. How npm Install Scripts Can Be Weaponized: A Real-World Example of a Harmful npm Package · · , ,
  3. Introducing JSR—the JavaScript Registry · · , ,
  4. Why Does “is-number” Package Have 59M Weekly Downloads? · ·
  5. Choosing the Right Node.js Package Manager in 2024: A Comparative Guide · · , ,
  6. JSR: What We Know So Far About Deno’s New JavaScript Package Registry · · , ,
  7. Node.js Community Debate Intensifies over Enabling Corepack by Default and Potentially Unbundling npm · · , , ,
  8. Malicious npm Package Masquerades as Noblox.js, Targeting Roblox Users for Data Theft · · ,
  9. Modern JavaScript Library Starter · · ,
  10. Deceptive Deprecation: The Truth About npm Deprecated Packages · · , ,
  11. Installing Google Fonts as npm Packages · · , ,
  12. I Replaced npm, Yarn, and nvm With pnpm · · , , ,
  13. A Complete Guide to pnpm · · ,
  14. How to Use npm Packages Outside of Node · · , ,
  15. Secret Scanning Scans Public npm Packages · · , ,
  16. How We Optimized Package Imports in Next.js · · , ,
  17. SSH Keys Stolen by Stream of Malicious PyPI and npm Packages · · , ,
  18. Honey, I Shrunk the npm Package · · ,
  19. Upgrading Frontend Dependencies With Confidence · · , , ,
  20. Bun Hype: How We Learned Nothing from Yarn · · , ,
  21. My Experience Modernizing Packages to ESM · · ,
  22. A Comprehensive Beginner’s Guide to npm: Simplifying Package Management · · ,
  23. Identify Unused npm Packages in Your Project · · ,
  24. The Massive Bug at the Heart of the npm Ecosystem · · ,
  25. npm Won’t Publish Packages Containing the Word “keygen” · · ,
  26. Before Your Next Frontend Pull Request, Use This Checklist · · , , , , ,
  27. Building a Frontend Framework—Reactivity and Composability With Zero Dependencies · · ,
  28. Deno vs. Node: No One Is Ready for the Move · · , ,
  29. The Landscape of npm Packages for CLI Apps · · , ,
  30. Unlocking Security Updates for Transitive Dependencies With npm · · , ,
  31. New npm Features for Secure Publishing and Safe Consumption · · ,
  32. npm Security: Preventing Supply Chain Attacks · · ,
  33. Use “npm query” and jq to Dig into Your Dependencies · · , ,
  34. Phylum Detects Active Typosquatting Campaign Targeting npm Developers · · ,
  35. depngn · · , ,
  36. Dependabot Unlocks Transitive Dependencies for npm Projects · · ,
  37. 4 Ways to Minimize Your Dependencies in Node.js · · ,
  38. JavaScript Bugs Aplenty in Node.js Ecosystem—Found Automatically · · , , , ,
  39. Optimizing Node.js Dependencies in AWS Lambda · · , ,
  40. Alternatives to Installing npm Packages Globally · ·
  41. Don’t Sink Your Website With Third Parties · · ,
  42. Snyk Finds 200+ Malicious npm Packages, Including Cobalt Strike Dependency Confusion Attacks · · , ,
  43. Lerna Has Gone—Which Monorepo Is Right for a Node.js Backend Now? · · , ,
  44. How to Respond to Growing Supply Chain Security Risks? · · , , ,
  45. Update Node Dependencies Automatically, Selectively, or Incrementally · · , ,
  46. What’s Really Going On Inside Your node_modules Folder? · · ,
  47. Understanding Dependencies Inside Your package.json · · , ,
  48. How to Fix Your Security Vulnerabilities With npm Override · · , ,
  49. The Basics of package.json · · , ,
  50. How to Keep Your Repo Package Dependencies Up to Date Automatically · · ,
  51. Why You Should Check in Your Node Dependencies · ·
  52. Ain’t No Party Like a Third Party · · ,
  53. Open Source Insights · · , , ,
  54. Package Size Checker · , , ,