Search
Largest npm attack in crypto history stole less than $50: SEAL
9.9.2025
Hackers broke into the node package manager (NPM) account of a well-known software developer and added malware to popular JavaScript libraries, targeting crypto wallets
Ledger CTO Warns of Large-Scale NPM Supply Chain Attack; Urges Address Checks
8.9.2025
Ledger CTO Charles Guillemet warned Monday that a large-scale software supply chain attack is underway targeting NPM packages used across the JavaScript ecosystem globally. ‘Potentially All Chains’: Ledger CTO Cautions After NPM Developer Account Hacked Ledger‘s Guillemet said on X that a reputable...
Ledger CTO Warns of NPM Supply-Chain Attack Hitting 1B+ Downloads
8.9.2025
According to Guillemet, the malicious code — already pushed into packages with over 1 billion downloads — is designed to silently swap crypto wallet addresses in transactions. That means unsuspecting users could send funds directly to the attacker without realizing it
Crypto users urged to take extreme care as NPM attack hits core JavaScript libraries
8.9.2025
The breach hit core JavaScript libraries such as chalk and strip-ansi, downloaded billions of times each week, raising alarms over the security of open-source software
Crypto users urged to take extreme care as NPM attack injects malware into core JavaScript libraries
8.9.2025
The breach hit core JavaScript libraries like chalk and strip-ansi, downloaded billions of times each week, raising alarms over the security of open-source software
XRP Ledger Bug Patched After 'Serious' Flaw Spotted in XRPL Library
23.4.2025
The issue only affects versions of Node Package Manager (NPM), a site where developers share reusable code for projects
Report: Lazarus Group Exploits Github, NPM Packages in Cryptocurrency Malware Campaign
13.2.2025
A state-aligned cyber collective from North Korea has compromised Github repositories and NPM modules with stealthy malicious code to pilfer digital currencies, per a Securityscorecard STRIKE Team analysis. Security Researchers Warn of Rising Open-Source Malware Attacks Linked to Lazarus Group...
Deno představuje JSR – JavaScript Registry
5.3.2024
O Denu jsme psali, je s námi již více jak tři roky. Podobně jako je pro Node.js důležité npm, bude mít Deno svého správce javascriptových modulů s názvem JSR (zkratka JavaScript Registry). JSR…
New Crypto ICOs to Invest in September 22 - Tamadoge, Neptune Mutual, Magic Square
23.9.2022
Read More: New Crypto ICOs to Invest in September 22 - Tamadoge, Neptune Mutual, Magic Square
A Complete Beginner’s Guide to npm
20.1.2022
(This is a sponsored post.)
I remember vividly a period early in my coding career when I began to feel that things were changing away from what I knew, and headed towards a more complex set of tools and …
A Complete Beginner’s Guide to npm originally published on CSS-Tricks. You should...
What the Heck Does “npm” Mean?
20.1.2022
One of the things that makes this new, tooling-heavy era of front-end development so seemingly hard to understand at first is that, while we often call things by a singular name, they tend to be actually comprised of several different …
What the Heck Does “npm” Mean? originally published...
What the Heck is the Command Line?
20.1.2022
Now that we know what npm stands for and have a super general idea of what it does and how it fits into web development, we ought to spend a little bit of time looking at the command line, because …
What the Heck is the Command Line? originally published on CSS-Tricks. You should get...
What the Heck is Node?
20.1.2022
(This is a sponsored post.)
Here’s what you need to know about Node.js (or simply Node) and how it relates to npm right off the bat:
Node is JavaScript, but as a server-side language.
This is possible because of
…
What the Heck is Node? originally published on CSS-Tricks. You should...
What the Heck is a Package Manager?
20.1.2022
If you’re keeping score, so far in this npm guide we’ve developed a general understanding of what npm is—notably, that it stands for Node Package Manager. In the process, we’ve discussed the importance of the command line and how it’s …
What the Heck is a Package Manager?...
How the Heck Do You Install npm?
20.1.2022
Feel like you have a pretty good idea of what a package manager is? We’ve certainly covered a lot of ground getting familiar with all the terms and concepts of package managers, but I’d say it’s high time we actually …
How the Heck Do You Install npm? originally published on CSS-Tricks....
How the Heck Do You Install npm Packages?
20.1.2022
By now, you’re becoming quite knowledgeable with npm! So far, we’ve broken down the three letters in “npm” to gain a better understand of Node and package managers. In the previous chapter, we even installed Node and npm while …
How the Heck Do You Install npm Packages? originally published...
What the Heck Are npm Commands?
20.1.2022
npm is, as you now know, a package manager. But like similar, earlier tools that run tasks in the command line, such as Grunt and Gulp, npm can also run tasks—which is perfect for us because now that …
What the Heck Are npm Commands? originally published on CSS-Tricks. You should get...
How the Heck Do You Install an Existing npm Project?
20.1.2022
(This is a sponsored post.)
We’ve gotten a good overview of how npm works and how to use it to install packages and run commands at this point. Now let’s go a little further and see what it looks …
How the Heck Do You Install an Existing npm Project? originally published on CSS-Tricks....
Collective #669
8.7.2021
Typedream * Access Guide * npm audit: Broken by Design * Using HSL Colors In CSS
The post Collective #669 appeared first on Codrops
Building a Command Line Tool with Nodejs and Fauna
8.7.2021
Command line tools are one of the most popular applications we have today. We use command line tools every day, and they range from git, npm or yarn. Command line tools are very fast and useful for automating applications and …
The post Building a Command Line Tool with Nodejs and Fauna...