Recently, security researchers Socket found 10 packages on npm targeting software developers, specifically those who use the ...
An active campaign named 'PhantomRaven' is targeting developers with dozens of malicious npm packages that steal authentication tokens, CI/CD secrets, and GitHub credentials.
The North Korean threat actor linked to the Contagious Interview campaign has been observed merging some of the functionality ...
Version 1.3 of the Bun JavaScript runtime and toolkit has landed, pushing forward the project's goal to consolidate ...
Looking to unlock deeper data-driven insights or to build more intelligent business process automations? These popular tools ...
Harper announced it will open source its core technology, a composable full-stack web application platform-aiming to support wider Node.js developer adoption of its platform, drive innovation at the ...
Ten malicious packages mimicking legitimate software projects in the npm registry download an information-stealing component ...
The npm packages were available since July, have elaborately obfuscated malicious routines, and rely on a fake CAPTCHA to ...
Supply chain security company Safety has discovered a trojan in NPM that masqueraded as Anthropic’s popular Claude Code AI ...
Learn how Chrome DevTools MCP transforms web development with dynamic features like live JavaScript execution & precision ...
The North Korean threat actor behind the Contagious Interview campaign has started combining features from two of its malware ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results
Feedback