Heykuki News
Top
New
Best
Ask
Show
Jobs
Toggle theme
Login
Top
New
Best
Ask
Show
Jobs
511.
▲
Gathering weak npm credentials
(github.com/ChALkeR)
10 points
petethomas
9 years ago
discuss
512.
▲
Gathering weak npm credentials
(github.com/ChALkeR)
5 points
steve_taylor
9 years ago
1 comment
513.
▲
How I obtained publish access to 13% of npm packages (including popular ones)
(github.com/chalker)
5 points
ChALkeR
9 years ago
discuss
514.
▲
Gathering weak npm credentials
(github.com/ChALkeR)
4 points
JBiserkov
9 years ago
discuss
515.
▲
Gathering weak npm credentials
(github.com/ChALkeR)
3 points
gburt
9 years ago
discuss
516.
▲
NPM debug and chalk packages compromised
(aikido.dev)
1372 points
universesquid
9 months ago
757 comments
517.
▲
Postmortem: TanStack NPM supply-chain compromise
(tanstack.com)
1097 points
varunsharma07
a month ago
465 comments
518.
▲
Malicious npm packages detected across Red Hat Cloud Services
(github.com/RedHatInsights)
773 points
kurmiashish
7 days ago
453 comments
519.
▲
A one-line package broke `npm create-react-app`
(github.com/then)
599 points
tessela
6 years ago
459 comments
520.
▲
DuckDB NPM packages 1.3.3 and 1.29.2 compromised with malware
(github.com/duckdb)
395 points
tosh
9 months ago
283 comments
521.
▲
Post Mortem: axios NPM supply chain compromise
(github.com/axios)
291 points
JeanMeche
2 months ago
142 comments
522.
▲
Ledger's NPM account has been hacked
(github.com/LedgerHQ)
248 points
meehow
2 years ago
118 comments
523.
▲
You too can run malware from NPM (I mean without consequences)
(github.com/naugtur)
195 points
naugtur
9 months ago
114 comments
524.
▲
Install NPM dependencies that run in browser without Browserify, Webpack
(github.com/pikapkg)
170 points
darrinm
7 years ago
25 comments
525.
▲
Standard JS: npm install funding
(github.com/standard)
168 points
ndrake
7 years ago
123 comments
526.
▲
npm (Node's package manager) leaks all user password hashes and salts
(gist.github.com)
151 points
jashkenas
14 years ago
79 comments
527.
▲
Embedded malware in RC (NPM package)
(github.com/advisories)
140 points
hjek
5 years ago
114 comments
528.
▲
Show HN: Thanks – See which NPM dependencies are seeking donations
(github.com/feross)
138 points
feross
8 years ago
21 comments
529.
▲
NPM package event-source-polyfill compromised by political activists
(github.com/Yaffle)
124 points
ramesh31
4 years ago
241 comments
530.
▲
Npm install could be dangerous
(github.com/joaojeronimo)
122 points
joaojeronimo
11 years ago
97 comments
531.
▲
Tell HN: npm breach
118 points
alexghr
4 years ago
3 comments
532.
▲
Bun adds pnpm-style isolated installation mode
(github.com/oven-sh)
114 points
nateb2022
a year ago
16 comments
533.
▲
Dum: An NPM scripts runner written in Rust
(github.com/egoist)
112 points
vvoyer
4 years ago
90 comments
534.
▲
Unpublishing npm package breaks the internet
(github.com/azer)
104 points
camwest
10 years ago
1 comment
535.
▲
Show HN: Kikked – check if any of your NPM repos is trademarked
(github.com/parro-it)
98 points
parro-it
10 years ago
87 comments
536.
▲
Show HN: I'm 15 years old, and I released my first NPM module: Wizardry
(diy.github.com)
98 points
remixz
14 years ago
86 comments
537.
▲
Response to Nodejitsu NPM Trademark
(gist.github.com)
69 points
voidfiles
12 years ago
21 comments
538.
▲
Show HN: npm install actual-malware
(github.com/qpwo)
55 points
lhmiles
4 years ago
13 comments
539.
▲
An NPM package to check if a number is equal to 13
(github.com/jezen)
53 points
dawkins
8 years ago
14 comments
540.
▲
Requiring NPM modules in the browser console
(gist.github.com)
53 points
kristiandupont
12 years ago
5 comments
More