Skip to content
Navigation menu
Search
Powered by Algolia
Search
Log in
Create account
DEV Community
Close
npm
Follow
Hide
Node Package Manager
Posts
Left menu
👋
Sign in
for the ability to sort posts by
relevant
,
latest
, or
top
.
Right menu
npm v12 flips install-time to closed-by-default
Leo
Leo
Leo
Follow
Jul 9
npm v12 flips install-time to closed-by-default
#
npm
#
supplychain
#
security
#
2fa
Comments
Add Comment
3 min read
PolinRider keeps expanding, and the postinstall still lands on your runner
Leo
Leo
Leo
Follow
Jul 8
PolinRider keeps expanding, and the postinstall still lands on your runner
#
supplychain
#
security
#
npm
#
maliciouspackages
Comments
Add Comment
3 min read
10 Useless NPM Packages You Didn't Know You Needed
Konark Sharma
Konark Sharma
Konark Sharma
Follow
Jul 8
10 Useless NPM Packages You Didn't Know You Needed
#
webdev
#
npm
#
node
#
javascript
6
reactions
Comments
1
comment
6 min read
MCP supply chain attacks are coming — here's how to prepare
Edison Flores
Edison Flores
Edison Flores
Follow
Jul 7
MCP supply chain attacks are coming — here's how to prepare
#
mcp
#
security
#
supplychain
#
npm
Comments
Add Comment
2 min read
AI Coding agent memory
Sheikh Zeeshan Allauddin
Sheikh Zeeshan Allauddin
Sheikh Zeeshan Allauddin
Follow
Jul 7
AI Coding agent memory
#
ai
#
productivity
#
claude
#
npm
1
reaction
Comments
1
comment
4 min read
Scarab Diagnostic Field Test #038 - pnpm GitHub Actions Setup State Boundary
Scarab Systems
Scarab Systems
Scarab Systems
Follow
Jul 7
Scarab Diagnostic Field Test #038 - pnpm GitHub Actions Setup State Boundary
#
discuss
#
npm
#
ai
#
githubactions
2
reactions
Comments
Add Comment
6 min read
The two-Reacts bug: when packages aren't singletons
r9v
r9v
r9v
Follow
Jul 2
The two-Reacts bug: when packages aren't singletons
#
react
#
javascript
#
node
#
npm
Comments
Add Comment
6 min read
pnpm just saved my day
hero50
hero50
hero50
Follow
Jul 2
pnpm just saved my day
#
webdev
#
npm
#
javascript
#
pnpm
1
reaction
Comments
Add Comment
1 min read
A hands-free npm publish pipeline for SignalK plugins
Bryan Clark
Bryan Clark
Bryan Clark
Follow
Jun 30
A hands-free npm publish pipeline for SignalK plugins
#
signalk
#
npm
#
oidc
#
trustedpublishing
Comments
Add Comment
8 min read
A Linux RAT in your npm install: what phi sees before it runs
Prosper Maxwell
Prosper Maxwell
Prosper Maxwell
Follow
Jun 30
A Linux RAT in your npm install: what phi sees before it runs
#
npm
#
security
#
devops
#
node
Comments
Add Comment
3 min read
Preserving Context When Moving from ChatGPT to Codex CLI
Viacheslav Bogdanov
Viacheslav Bogdanov
Viacheslav Bogdanov
Follow
Jun 30
Preserving Context When Moving from ChatGPT to Codex CLI
#
openai
#
npm
#
ai
#
cli
1
reaction
Comments
Add Comment
3 min read
CI is the wrong place to first hear about your npm dependencies
Leo
Leo
Leo
Follow
Jun 29
CI is the wrong place to first hear about your npm dependencies
#
supplychain
#
shiftleft
#
node
#
npm
Comments
Add Comment
3 min read
These tools provide the engineering substrate required to meet the rigorous safety and economic constraints of production environments.
David C Cavalcante
David C Cavalcante
David C Cavalcante
Follow
Jun 29
These tools provide the engineering substrate required to meet the rigorous safety and economic constraints of production environments.
#
github
#
npm
#
typescript
1
reaction
Comments
Add Comment
2 min read
Engineering production AI infrastructure requires moving beyond heuristic guesswork toward deterministic, verifiable logic
David C Cavalcante
David C Cavalcante
David C Cavalcante
Follow
Jun 29
Engineering production AI infrastructure requires moving beyond heuristic guesswork toward deterministic, verifiable logic
#
github
#
npm
#
typescript
1
reaction
Comments
Add Comment
2 min read
ContextVault: Own Your AI Context Across Models, Agents, and Time
Mohammad Ali Abdul Wahed
Mohammad Ali Abdul Wahed
Mohammad Ali Abdul Wahed
Follow
Jun 27
ContextVault: Own Your AI Context Across Models, Agents, and Time
#
ai
#
opensource
#
npm
#
programming
Comments
Add Comment
9 min read
👋
Sign in
for the ability to sort posts by
relevant
,
latest
, or
top
.
We're a place where coders share, stay up-to-date and grow their careers.
Log in
Create account