Hackernews posts about NPMX

  1. Features everyone should steal from npmx (nesbitt.io)
    2 points by speckx 14 days ago | discuss
  2. NPM website was down (status.npmjs.org)
    126 points by 18nleung 9 days ago | 61 comments
  3. Official SAP NPM packages compromised to steal credentials (www.bleepingcomputer.com)
    34 points by Brajeshwar 6 days ago | 2 comments
  4. Bitwarden CLI NPM package has been compromised (opensourcemalware.com)
    16 points by 6mile 13 days ago | 1 comments
  5. Mini Shai-Hulud: Bun Payloads Hit SAP NPM Packages (www.stepsecurity.io)
    9 points by likhith190 8 days ago | discuss
  6. Another NPM supply chain worm is tearing through dev environments (www.theregister.com)
    5 points by omer_k 14 days ago | discuss
  7. NPM retires audit endpoint; breaks pnpm audit (github.com)
    4 points by troad 22 days ago | 2 comments
  8. NPM: Putting the Brown in Brownout (ryanbigg.com)
    4 points by ryanbigg 6 days ago | discuss
  9. GPT-Proxy Backdoor in NPM and PyPI Turns Servers into Chinese LLM Relays (www.aikido.dev)
    4 points by lschueller 14 days ago | discuss
  10. Npx codemod AI: make your coding agent great at large migrations (codemod.com)
    3 points by alexbit2019 27 days ago | 1 comments
  11. Someone compromised SAP's NPM packages and used the CI pipeline against itself (safedep.io)
    3 points by birdculture 7 days ago | discuss
  12. TeamPCP Campaign Spreads to NPM via a Hijacked Bitwarden CLI (research.jfrog.com)
    3 points by thefreeman 13 days ago | discuss
  13. Show HN: A tiny macOS app that clears app caches and NPM/Docker/Xcode junk (apps.apple.com)
    2 points by chernikovalexey 16 days ago | 4 comments
  14. The NPM CLI has 65 production dependencies from the NPM registry (github.com)
    2 points by monarchwadia 6 days ago | 3 comments
  15. Intercom-client NPM package and lightning PyPI packages compromised (opensourcemalware.com)
    2 points by 6mile 6 days ago | 1 comments
  16. Bitwarden CLI Backdoored on NPM for 93 Minutes (hackingpassion.com)
    2 points by milkglass 11 days ago | 1 comments
  17. Aube, a fast NPM package manager which is faster than bun(made by jdx aka mise) (aube.en.dev)
    2 points by Imustaskforhelp 2 days ago | discuss
  18. StackGraveyard.dev – Live mortality scores for NPM packages (www.stackgraveyard.dev)
    2 points by tlseternal 3 days ago | discuss
  19. SAP Cap NPM Packages Hit by Supply Chain Attack (socket.dev)
    2 points by salkahfi 7 days ago | discuss
  20. NPM Slop and Wonky Software Supply Chains (simonramstedt.com)
    2 points by rmst 12 days ago | discuss
  21. Show HN: SafeInstall – local install-time guardrails for NPM/pnpm/bun (www.safeinstall.dev)
    2 points by MichaelLabitzke 23 days ago | discuss
  22. Fairwords NPM packages compromised by credential worm stealing tokens and (safedep.io)
    2 points by birdculture 29 days ago | discuss
  23. Show HN: Mdstitch – NPM for Markdown Files (github.com)
    2 points by tannerjames711 29 days ago | discuss
  24. North Korea-linked operators are hunting NPM maintainers behind Fastify, Lodash (anonhaven.com)
    2 points by anonhaven 29 days ago | discuss
  25. Ask HN: Try npx -y sharedmemory/MCP-server
    1 points by Sharedmemory 5 days ago | 3 comments
  26. NPM supply-chain attack is targeting the SAP developer ecosystem (www.aikido.dev)
    1 points by raffael_de 7 days ago | 1 comments
  27. Ensure npx with nvm (floriangosse.com)
    1 points by floriangosse about 11 hours ago | discuss
  28. Show HN: Npx LLM-safe-haven – harden your AI coding agent in 60 seconds (github.com)
    1 points by pleasedodisturb 6 days ago | discuss
  29. MiniRAT: A Go-based macOS RAT delivered via malicious NPM package (www.iru.com)
    1 points by ZeidJ 7 days ago | discuss
  30. I built OWASP-style security skill packs for LLM apps (NPM install) (www.npmjs.com)
    1 points by maruakshay 8 days ago | discuss
More