InfoWorld

Beyond NPM: What you need to know about JSR

Here's how the JavaScript Registry evolves makes building, sharing, and using JavaScript packages simpler and more secure ...
CSOonline

Developer sabotages own npm module prompting open-source supply chain security questions

The node-ipc developer attempt to protest Russia's attack on Ukraine has the unintended consequence of casting more doubt in software supply chain integrity. The developer of a popular JavaScript ...
adtmag.com

New in Node.js: Certified Modules, Free Orgs Collaboration Tool

New developments in the popular Node.js ecosystem include curated Certified Modules from NodeSource and a free version of the Orgs collaboration tool from npm Inc. Node.js is an open source, ...
Infosecurity-magazine.com

#Infosec17 Dangers and Dependencies of Open Source Modules Detailed

Open source modules can contain major security problems, and are often relied upon by thousands of dependents. Speaking on the subject ‘Node.js – Could a few lines of code “F” it all up’ in the ...