Pinboard (dandv)
https://pinboard.in/u:dandv/public/
recent bookmarks from dandvNPM & left-pad: Have We Forgotten How To Program? - David Haney2022-06-19T22:14:45+00:00
https://www.davidhaney.io/npm-left-pad-have-we-forgotten-how-to-program/
dandvprogramming against dependencies NPM bloathttps://pinboard.in/https://pinboard.in/u:dandv/b:4819e5853f90/npm Blog Archive: Package install scripts vulnerability2021-02-26T08:14:45+00:00
https://blog.npmjs.org/post/141702881055/package-install-scripts-vulnerability
dandvprevent open-source supply-chain attack security against NPMhttps://pinboard.in/https://pinboard.in/u:dandv/b:39bb8039eb27/ELI5: Why is npm a “broken” system security wise, compared to other package managers? : node2021-02-26T07:54:47+00:00
https://www.reddit.com/r/node/comments/a1ysm2/eli5_why_is_npm_a_broken_system_security_wise/
dandvsecurity open-source supply chain attack against NPMhttps://pinboard.in/https://pinboard.in/u:dandv/b:41a0f656ce3d/Hunting Malicious npm Packages | Decipher2020-04-13T05:00:14+00:00
https://duo.com/decipher/hunting-malicious-npm-packages
dandvagainst NPM securityhttps://pinboard.in/https://pinboard.in/u:dandv/b:bc2cd79dcf05/2018: Malicious code found in npm package event-stream downloaded 8 million times in the past 2.5 months | Snyk2020-04-13T04:48:51+00:00
https://snyk.io/blog/malicious-code-found-in-npm-package-event-stream/
dandvagainst NPM security incident hack cryptohttps://pinboard.in/https://pinboard.in/u:dandv/b:42c3f38e0f03/Is GitHub Package Registry the npm Killer? | Okta Developer2020-04-13T04:38:37+00:00
http://disq.us/p/28ks7ob
dandvDascalescu against NPM securityhttps://pinboard.in/https://pinboard.in/u:dandv/b:6a54acd0d5fb/The npm Blog — Plot to steal cryptocurrency foiled by the npm...2019-06-06T22:39:46+00:00
https://blog.npmjs.org/post/185397814280/plot-to-steal-cryptocurrency-foiled-by-the-npm
dandvhack security incident against NPMhttps://pinboard.in/https://pinboard.in/u:dandv/b:0d868892731d/pnpm does module hard/sym linking better than Yarn2018-12-25T02:11:38+00:00
https://medium.com/pnpm/pnpm-vs-yarn-monorepo-node-modules-6c025d50b9bd
dandvpnpm against yarn npmhttps://pinboard.in/https://pinboard.in/u:dandv/b:0c4689a5daf7/2016: I've Just Liberated My Modules | Hacker News2018-09-16T02:27:23+00:00
https://news.ycombinator.com/item?id=11340510
dandvsecurity exploit against kik NPMhttps://pinboard.in/https://pinboard.in/u:dandv/b:a2f1eaaf5369/I’m harvesting credit card numbers and passwords from your site. Here’s how.2018-07-17T02:44:50+00:00
https://hackernoon.com/im-harvesting-credit-card-numbers-and-passwords-from-your-site-here-s-how-9a8cb347c5b5
dandvJavaScript code injection attack hack security against npm open-source cool stealhttps://pinboard.in/https://pinboard.in/u:dandv/b:548775f9676b/joaojeronimo/rimrafall: npm install could be dangerous2017-06-14T05:35:34+00:00
https://github.com/joaojeronimo/rimrafall
dandv`]]>Node.JS security against NPMhttps://pinboard.in/https://pinboard.in/u:dandv/b:950933c1dc6f/Yarn: A new package manager for JavaScript | Engineering Blog | Facebook Code2016-10-14T01:07:29+00:00
https://code.facebook.com/posts/1840075619545360
dandvyarn against npm alternative Node.jshttps://pinboard.in/https://pinboard.in/u:dandv/b:6e43e8f105e9/Small modules: it’s not quite that simple — Medium2016-08-15T22:59:18+00:00
https://medium.com/@Rich_Harris/small-modules-it-s-not-quite-that-simple-3ca532d65de4#.fv8xbpzh7
dandvagainst npm small moduleshttps://pinboard.in/https://pinboard.in/u:dandv/b:e6f54f2c0b98/merge bower into npm, why aren't we using npm? · Issue #1520 · bower/bower2015-08-09T09:37:27+00:00
https://github.com/bower/bower/issues/1520
dandvnpm against bowerhttps://pinboard.in/https://pinboard.in/u:dandv/b:04e23bf6d72c/Why use Bower when there is npm? - Quora2015-06-23T09:01:09+00:00
https://www.quora.com/Why-use-Bower-when-there-is-npm
dandvnpm against bowerhttps://pinboard.in/https://pinboard.in/u:dandv/b:85c1e766e3f5/Why we should stop using Grunt & Gulp2015-06-04T13:22:00+00:00
http://blog.keithcirkel.co.uk/why-we-should-stop-using-grunt/
dandvnpm against grunt gulphttps://pinboard.in/https://pinboard.in/u:dandv/b:343417d1771d/Why my team uses npm instead of bower — Medium2015-03-03T11:23:18+00:00
https://medium.com/@nickheiner/why-my-team-uses-npm-instead-of-bower-eecfe1b9afcb
dandvnpm against bowerhttps://pinboard.in/https://pinboard.in/u:dandv/b:ece7e92442b4/Why I Hate NPM - Jongleberry2014-03-13T17:03:38+00:00
http://jongleberry.com/why-i-hate-npm.html
dandvagainst npm Node.jshttps://pinboard.in/https://pinboard.in/u:dandv/b:9a5aed09df7c/Node.JS npm modules for CSV handling2013-04-29T07:35:35+00:00
https://www.npmjs.com/search?q=csv
dandvCSV module npm against Node.jshttps://pinboard.in/https://pinboard.in/u:dandv/b:d85db20dcd11/NPM modules are a pile of mess - can't rate, can't comment, can't favorite2013-04-29T00:03:00+00:00
https://github.com/isaacs/npm-www/issues/298
dandvagainst npm modules rating comments Node.jshttps://pinboard.in/https://pinboard.in/u:dandv/b:855d1bbe4b19/