home.social
Sign in Create account

#npmjs — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #npmjs, aggregated by home.social.

  1. 𝕂𝚞𝚋𝚒𝚔ℙ𝚒𝚡𝚎𝚕 @[email protected] ·

    «Passwortsafe Bitwarden — Kommandozeilen-Client trojanisiert:
    Das Bitwarden-Security-Team bestätigt, dass kurzzeitig eine bösartige Version des Kommandozeilen-Client ausgeliefert wurde.»

    Jetzt war @bitwarden daran und das per NPM. Wieviel mal wird dies und ähnliches noch auftauchen? NPM ist leider mittlerweile das Einfallstor für viele Sicherheitslücken.

    🔐 heise.de/news/Passwortsafe-Bit

    #npm #bitwarden #javascript #hacking #passwort #js #npmjs #itsicherheit #it #web #webdev #sicherheit

    #npm #bitwarden #javascript #hacking #passwort #js
  2. Owen Beresford @channelOwen ·

    I'm having issues with build tooling, so needing to do slash and burn dev development.

    Have deployed a rate limitor on ? I have only deployed ~ 400 packages *today* to a single IP, so i should be inside reasonable usage.
    My package-lock say packages are installed, but the files aren't present.

    I would be downloading less packages if I have a way to remove dev-dep without `rm-rf`

    #msft #npmjs
  3. Owen Beresford @[email protected] ·

    I'm having issues with build tooling, so needing to do slash and burn dev development.

    Have #MSFT deployed a rate limitor on #NPMJS? I have only deployed ~ 400 packages *today* to a single IP, so i should be inside reasonable usage.
    My package-lock say packages are installed, but the files aren't present.

    I would be downloading less packages if I have a way to remove dev-dep without `rm-rf`

    #msft #npmjs
  4. Mr.Fox @[email protected] ·

    Guys!
    If you want to make a #crossplatform #app, and you don't know what's framework should I use?
    Just use #Tauri and don't waste your time on #electronjs, #flatten or other stuff.
    Tauri is light and too easy.
    Check out the Tauri site:
    #rust #rustlang #javascript #typescript #npmjs #npm #cargo #programming #program #code #hacker #hack #gui #uidesign #ui #uxdesign #ux
    tauri.app/

    #crossplatform #app #tauri #electronjs #flatten #rust
  5. Kaan Barmore-Genc @kaan ·

    Totally unrelated: I wonder how many people using libheif-js through heic-decode and heic-convert on are actually violating 's license, because heic-decode and heic-convert are not LGPL licensed even though libheif-js is, and most people probably use them without digging through the licenses of the dependencies.

    #libheif #npmjs
  6. Mark Gardner @[email protected] ·

    @Perl There’s something to be said for putting a small speed bump in front of #developers before they can post #software to a well-indexed central repository: “One In Two New #npm Packages Is #SEO #Spam Right Now” blog.sandworm.dev/one-in-two-n

    How to start with #Perl’s #CPAN via #PAUSE:
    1) Read cpan.org/modules/04pause.html
    2) Visit pause.perl.org

    #JavaScript #Node #NodeJs #NpmJs #Yarn #MetaCPAN

    #developers #software #npm #seo #spam #perl