stux @stux

**securityaffairs** @securityaffairs@infosec.exchange · 4h

securityaffairs @securityaffairs@infosec.exchange

#North #Korea-linked actors spread #XORIndex #malware via 67 malicious #npm packages
https://securityaffairs.com/179950/hacking/north-korea-linked-actors-spread-xorindex-malware-via-67-malicious-npm-packages.html
#securityaffairs #hacking

Security Affairs · 4hNorth Korea-linked actors spread XORIndex malware via 67 malicious npm packagesNorth Korea-linked hackers uploaded 67 malicious npm packages with XORIndex malware, hitting 17K+ downloads in ongoing supply chain attacks.

**dtanzer** @dtanzer@social.devteams.at · 7h *

7h *

dtanzer @dtanzer@social.devteams.at

Digging into strangely different behaviour of #pnpm vs #npm. Stupid busy work - don't like.
I never understood why people use pnpm anyway...

**Anil** @nil@mastodon.sg · 1d

Anil @nil@mastodon.sg

FYI, npmjs blocks new accounts from using mozmail (Firefox relay) as an email address. Luckily, they don't block you from changing your email to mozmail, once you register.

#npm #Microsoft #FirefoxRelay

Replied in thread

**BLACKVOID ️** @blackvoid@mastodon.social · 2d

BLACKVOID ️ @blackvoid@mastodon.social

@jhx almost 90 across 5 docker hosts. #ghost #plex #vaultwarden, #mattermost #freshrss #postgres #mysql #shellngn #midnightcommander #sonarr #radarr #grafana #influx #nginx #npm #adguard to name a few

**洪民憙 (Hong Minhee)** @hongminhee@hollo.social · 2d

洪民憙 (Hong Minhee) @hongminhee@hollo.social

Introducing #Upyo!

A simple, cross-runtime email library that works seamlessly on #Deno, #Node.js, #Bun, and edge functions. Zero dependencies, unified API, and excellent testability with built-in mock transport.

Switch between #SMTP, #Mailgun, #SendGrid without changing your code. Available on #JSR & #npm!

https://upyo.org/

upyo.orgUpyoA simple and cross-runtime library for sending email messages using SMTP and various email providers

**Qiita - 人気の記事** @qiita@rss-mstdn.studiofreesia.com · 2d

Qiita - 人気の記事 @qiita@rss-mstdn.studiofreesia.com

Windows での Claude Code利用が WSL不要になったので試してみた（ローカルインストールで試す）
https://qiita.com/youtoy/items/cee5b3cb3e8b438eec41?utm_campaign=popular_items&utm_medium=feed&utm_source=popular_items

QiitaWindows での Claude Code利用が WSL不要になったので試してみた（ローカルインストールで試す） - Qiitaはじめに以下でポストしていた件ですこれまで、Windows で Claude Code を使う場合は WSL との組み合わせが必要だったりしたのが、Windows で直接扱えるようになったらしいので、さっそく試してみました。（X のタイムラインに、そのような情...

#qiita #Windows #Node_js

**urig** @urig@mastodon.online · 4d

urig @urig@mastodon.online

I'm on the hunt for a #TextToSql package for #Node. That is, an #npm package that takes an #SQL database, analyzes its structure, and can then transform natural language input into a query, run it, and bring me back the results.

Although it's #Python and so not relevant for me, I've found a very impressive solution in the form of VannaAI (https://github.com/vanna-ai/vanna).

Their core is available in PyPI under MIT and the code looks clean and shin!

**Lukas Kahwe Smith** @lsmith@mastodon.green · 5d

Lukas Kahwe Smith @lsmith@mastodon.green

When contributing to #PHP #OSS dependencies, I usually used "composer --prefer-source" to get the dependencies installed as git repos.This way, when I make modifications, I can test them inside a larger codebase immediately while easily being able to check my changes and commit+push them upstream.

What is the process for #JavaScript? Is there a similar pattern with #NPM? Or what is the approach JavaScript OSS contributors take?

**mastodon.raddemo.host** @admin@mastodon.raddemo.host · Jul 8

Jul 8

mastodon.raddemo.host @admin@mastodon.raddemo.host

How to Install #Directus on #AlmaLinux #VPS

Here's a step-by-step guide detailing how to install Directus on AlmaLinux VPS.
What is Directus?
Directus is an open-source #headless #CMS and data platform that allows you to manage and interact with your database through a RESTful API or GraphQL API. It provides a modern, user-friendly admin interface for ...
Continued https://blog.radwebhosting.com/how-to-install-directus-on-almalinux-vps/?utm_source=mastodon&utm_medium=social&utm_campaign=mastodon.raddemo.host #selfhosted #cmsapps #selfhosting #nodejs #letsencrypt #npm #installguide #postgresql #vpsguide

RadWeb, LLC · Jul 8How To Install Directus On AlmaLinux VPS - VPS Hosting Blog | Dedicated Servers | Reseller HostingHere's a step-by-step guide detailing how to install Directus on AlmaLinux VPS.

**Luke Nelson** @luc122c@social.nelson.zone · Jul 8

Jul 8

Luke Nelson @luc122c@social.nelson.zone

Who are the 5 people a week downloading this? https://www.npmjs.com/package/babel-plugin-glowup-vibes

npmbabel-plugin-glowup-vibesbabel plugin to transpile internet slang into valid javascript. Latest version: 2.0.0, last published: 5 months ago. Start using babel-plugin-glowup-vibes in your project by running `npm i babel-plugin-glowup-vibes`. There are 1 other projects in the npm registry using babel-plugin-glowup-vibes.

#npm #webdev #javascript

**Nube Colectiva** @nubecolectiva@mastodon.social · Jul 8

Jul 8

Nube Colectiva @nubecolectiva@mastodon.social

List of NPM Commands !
Zoom: https://nubecolectiva.com/comunidad/flyers/list-commands-npm/

Lista de Comandos NPM !
Zoom: https://nubecolectiva.com/comunidad/flyers/lista-comandos-npm/

#programming #coding #programación #webdevelopment #devs #softwaredevelopment #npm #nodejs

Continued thread

**Nick Escobar** @nickesc@infosec.exchange · Jul 8

Jul 8

Nick Escobar @nickesc@infosec.exchange

Install 'steploop', with npm:
https://www.npmjs.com/package/steploop

npmsteploopa foundation for building loops that execute at a consistent, specified rate. Latest version: 1.0.1, last published: 2 hours ago. Start using steploop in your project by running `npm i steploop`. There are no other projects in the npm registry using steploop.

#steploop #typescript #javascript

Continued thread

**Nick Escobar** @nickesc@infosec.exchange · Jul 8

Jul 8

Nick Escobar @nickesc@infosec.exchange

To see ‘steploop’ in action, visit the demo page.

Demo page: https://nickesc.github.io/steploop/

nickesc.github.iosteploop Demodemo for nickesc/steploop

#steploop #typescript #javascript

**Nick Escobar** @nickesc@infosec.exchange · Jul 8

Jul 8

Nick Escobar @nickesc@infosec.exchange

Today, I released 'steploop', a TypeScript/JavaScript package that provides a fully-featured main-loop which acts as a strong foundation for building loops that execute at a consistent, specified rate. It is inspired by game engine main-loops like Godot's MainLoop or Unity's Update() loop.

Source code: https://github.com/nickesc/steploop

a foundation for building loops that execute at a consistent, specified rate - nickesc/steploop

GitHubGitHub - nickesc/steploop: a foundation for building loops that execute at a consistent, specified ratea foundation for building loops that execute at a consistent, specified rate - nickesc/steploop

#steploop #typescript #javascript

**Wouter Lindenhof** @DevWouter@mastodon.social · Jul 7

Jul 7

Wouter Lindenhof @DevWouter@mastodon.social

I hate the #npm website. Just spend a good 20 minutes trying to login because they want you to login with a username but the registration was done with email (which what is what gets autofilled since it is stored in my password manager). After four password resets (and receiving a too_many_requests) I finally noticed the issue.

Seriously, if you associate a username with email that hard you either allow both or inform if the user check if the login contains an username.