The widely used JavaScript package manager npm is the latest technology to become closely examined by the security community after it was discovered that attackers were using it for malicious purposes. Security company WhiteSource has detected over 1,300 malicious npm packages and has released a threat report detailing its findings. The malware detected was being … continue reading
Cloudflare’s acquisition of Linc, the automation platform that helps front-end developers collaborate, will create seamless integration between Pages and Cloudflare Workers, a serverless execution environment. that allows users to create entirely new applications or augment. Linc offers a straightforward path to building end-to-end applications on Pages with both frontend and backend logic in one bundle. … continue reading
Npm has announced that npm v7.0.0 will ship with the Node.js 15.0.0 release next week. Npm v7.0.0 introduces a number of highly requested features, such as Workspaces, the ability to automatically install peer dependencies, and package-lock v2 and support for yarn.lock Workspaces are a set of features that offer support from managing multiple packages within … continue reading
GitHub has announced plans to acquire npm. Npm is the company behind the Node package manager for the programming language JavaScript, the npm Registry and npm CLI. “npm is a critical part of the JavaScript world. The work of the npm team over the last 10 years, and the contributions of hundreds of thousands of … continue reading
The JavaScript package manage provider npm has found a security vulnerability that can open access to arbitrary files on a user’s system. According to the company, npm versions prior to 6.13.4 made it possible for a globally-installed package to overwrite an existing binary in the target location. Npm is recommending an to update to npm … continue reading
Npm has announced a new tool for independent JavaScript developers. The new npm Pro is designed for developers who do most of their JavaScript development on their own, such as consultants, students, and hobbyists, as well as certain startup and corporate JavaScript developers with side projects. RELATED CONTENT: JavaScript becomes the most in-demand developer technology … continue reading
Uno announced version 2.0 of its open-source platform and a new integration with Xamarin Forms that enables developers to extend existing Xamarin Forms apps to the Web via WebAssembly and Mono. “With the Uno Platform support for Xamarin Forms, enterprises using Xamarin Forms-powered apps gain seamless bridge for their apps to the Web without wasting … continue reading
Npm announced the first major update to npm Enterprise, delivering new security, compliance and developer experience features for working with JavaScript. According to the company, the new release can “provide powerful insights to engineering managers, administrators, and corporate security teams, enabling them to make their JavaScript development more reliable and secure.” For security, administrators can … continue reading
Open source JavaScript developer tools provider npm, Inc. has announced a new solution that will enable enterprises and large organizations to work with its software registry. Npm Enterprise is a managed deployment of the npm registry designed with enterprise-grade security, compliance and access control, the company explained. “Approximately 100% of the world’s enterprises acquire over … continue reading
The developers of this week’s highlighted project say their idea isn’t new, harkening back to a 1970s development paradigm from IBM, but that its support for any JavaScript transpiling language and its ecosystem of existing tools and integrations makes flow-based programming of JavaScript components more accessible. NoFlo is an open-source flow-based programming implementation for JavaScript, … continue reading
Application performance management (APM) is evolving beyond monitoring just the health and performance of an application and expanding to include the network. Network performance management (NPM) is meant to manage and monitor the performance of a computer network. In the latest release of Riverbed’s SteelCentral, it is targeting both APM and NPM with new capabilities. … continue reading
Npm, Inc. has announced the release of the npm@6 package manager. It will feature powerful new security features, such as automatic warnings when developers try to use open source code with known vulnerabilities, and ‘npm audit,’ which is an npm command that allows developers to analyze complex code and pinpoint specific vulnerabilities. A recent npm … continue reading
