Heykuki News
Top
New
Best
Ask
Show
Jobs
Toggle theme
Login
Top
New
Best
Ask
Show
Jobs
511.
▲
DuckDB NPM packages 1.3.3 and 1.29.2 compromised with malware
(github.com/duckdb)
395 points
tosh
9 months ago
283 comments
512.
▲
Post Mortem: axios NPM supply chain compromise
(github.com/axios)
291 points
JeanMeche
2 months ago
142 comments
513.
▲
Ledger's NPM account has been hacked
(github.com/LedgerHQ)
248 points
meehow
2 years ago
118 comments
514.
▲
You too can run malware from NPM (I mean without consequences)
(github.com/naugtur)
195 points
naugtur
9 months ago
114 comments
515.
▲
Install NPM dependencies that run in browser without Browserify, Webpack
(github.com/pikapkg)
170 points
darrinm
7 years ago
25 comments
516.
▲
Standard JS: npm install funding
(github.com/standard)
168 points
ndrake
7 years ago
123 comments
517.
▲
npm (Node's package manager) leaks all user password hashes and salts
(gist.github.com)
151 points
jashkenas
14 years ago
79 comments
518.
▲
Embedded malware in RC (NPM package)
(github.com/advisories)
140 points
hjek
5 years ago
114 comments
519.
▲
Show HN: Thanks – See which NPM dependencies are seeking donations
(github.com/feross)
138 points
feross
8 years ago
21 comments
520.
▲
NPM package event-source-polyfill compromised by political activists
(github.com/Yaffle)
124 points
ramesh31
4 years ago
241 comments
521.
▲
Npm install could be dangerous
(github.com/joaojeronimo)
122 points
joaojeronimo
11 years ago
97 comments
522.
▲
Tell HN: npm breach
118 points
alexghr
4 years ago
3 comments
523.
▲
Bun adds pnpm-style isolated installation mode
(github.com/oven-sh)
114 points
nateb2022
a year ago
16 comments
524.
▲
Dum: An NPM scripts runner written in Rust
(github.com/egoist)
112 points
vvoyer
4 years ago
90 comments
525.
▲
Unpublishing npm package breaks the internet
(github.com/azer)
104 points
camwest
10 years ago
1 comment
526.
▲
Show HN: Kikked – check if any of your NPM repos is trademarked
(github.com/parro-it)
98 points
parro-it
10 years ago
87 comments
527.
▲
Show HN: I'm 15 years old, and I released my first NPM module: Wizardry
(diy.github.com)
98 points
remixz
14 years ago
86 comments
528.
▲
Response to Nodejitsu NPM Trademark
(gist.github.com)
69 points
voidfiles
12 years ago
21 comments
529.
▲
Show HN: npm install actual-malware
(github.com/qpwo)
55 points
lhmiles
4 years ago
13 comments
530.
▲
An NPM package to check if a number is equal to 13
(github.com/jezen)
53 points
dawkins
8 years ago
14 comments
531.
▲
Requiring NPM modules in the browser console
(gist.github.com)
53 points
kristiandupont
12 years ago
5 comments
532.
▲
Claude Code full source code leaked on NPM
(github.com/chatgptprojects)
47 points
dheerajmp
2 months ago
3 comments
533.
▲
Show HN: DepsGuard – One command to harden NPM/pnpm/yarn/bun/uv configs
(github.com/arnica)
40 points
eranation
5 days ago
6 comments
534.
▲
Compromised NPM packages of ua-parser-JS (0.7.29, 0.8.0, 1.0.0)
(github.com/faisalman)
38 points
nop_slide
5 years ago
6 comments
535.
▲
Popular NPM module node-ipc added malware targeting Russian developers
(gist.github.com)
37 points
zimmund
4 years ago
5 comments
536.
▲
NPM packages with most dependencies
(gist.github.com)
36 points
supermdguy
8 years ago
22 comments
537.
▲
NPM fired staff for discussing workplace conditions
(gist.github.com)
26 points
chasontherobot
7 years ago
4 comments
538.
▲
NodeOS – Operating system powered by npm
(github.com/NodeOS)
25 points
diggan
12 years ago
7 comments
539.
▲
Let's fix NPM with IPM – Immutable Package Manager
(github.com/ipmjs)
24 points
reimertz
10 years ago
8 comments
540.
▲
NPM package deletes all files when detects Russian IP
(github.com/vuejs)
22 points
rossmohax
4 years ago
9 comments
More