News

Techzine Europe

Supply chain hack affects billions of npm downloads

On September 8, several popular npm packages were compromised after a successful phishing attack on a maintainer account.
GitHub

Windows – install method keeps flipping (unknown ↔︎ npm-global) despite native install; want stable native setup

Warns of mismatch (config expects native, currently running npm-global). Then it flips config to global, tries npm view, and fails (code 1, empty stderr). Manual npm ...
adtmag.com

Visual Studio Code Update Overloads npm Service, Forces Version Rollback

Microsoft said its Visual Studio Code 1.7 release overloaded the npmjs.org JavaScript package management service for Node.js, forcing a rollback to version 1.6.1. (Update: After this article was ...