frontpage.
newsnewestaskshowjobs

Made with ♥ by @iamnishanth

Open Source @Github

fp.

Open in hackernews

What tools do you use to monitor for NPM and other dependency vulnerabilities?

2•tiagom87•3h ago
Following the npm hack, I think this is an attack vector that will get more popular in the short term. What tools beside npm audit and dependabot, do you use to monitor for dependency security vulnerabilities?

Comments

patrick4urcloud•2h ago
Hello, We add a check in npm packages in kexa.io .

see https://medium.com/@contact_52772/malicious-npm-packages-aut... .

For futur we can add a call to an open source api to list the ban packages. Thank you, Patrick

palmfacehn•2h ago
My strategy has been to limit my exposure to the larger NPM/Node.js ecosystem. I'll use it only in limited cases where a front-end dependency is required.

How Is This Teen Able to Revisit Every Day of Her Past?

https://www.popularmechanics.com/science/a65992236/teen-hyperthymesia-memory-condition/
1•ColinWright•1m ago•0 comments

Thank You, DataFusion: Queries in Rust, Without the Pain

https://pierrezemb.fr/posts/thank-you-datafusion/
1•aquariusDue•3m ago•0 comments

Firebase for MCP Servers

https://www.contexaai.com/
1•rupesh_raj29•5m ago•0 comments

Show HN: Extension that blocks captions in LinkedIn

https://chromewebstore.google.com/detail/clear-linkedin/obcoinofdabjgolebklpeooecghanhel
1•javierbuilds•10m ago•0 comments

Microhs – Haskell subset which can target microcontrollers

https://github.com/augustss/MicroHs
1•yehoshuapw•14m ago•0 comments

Scientists tap 'secret' fresh water under the ocean

https://apnews.com/article/freshwater-expedition-ai-501-cape-cod-5d62cae0f040d369b16d8400202f0a88
2•geox•15m ago•0 comments

The rewilding milestone Earth has passed

https://www.bbc.com/future/article/20250909-the-rewilding-milestone-earth-has-already-passed
2•mpweiher•17m ago•0 comments

Large Language Mode(ration)

https://ashley.rolfmore.com/large-language-mode-ration/
1•mooreds•19m ago•0 comments

The 16th Ebola Virus Disease Outbreak in Democratic Republic of the Congo

https://virological.org/t/the-16th-ebola-virus-disease-outbreak-in-bulape-health-zone-kasai-democ...
2•mooreds•20m ago•0 comments

If I hear "design pattern" one more time, I'll go mad

https://purplesyringa.moe/blog/if-i-hear-design-pattern-one-more-time-ill-go-mad/
1•signa11•20m ago•1 comments

Redefining Worth After Loss

https://notes.jeddacp.com/redefining-worth-after-loss/
1•enemyz0r•21m ago•0 comments

Ask HN: How to be free from Generalized Anxiety Disorder?

1•shivajikobardan•21m ago•0 comments

Auth Migration Hell: Why Your Next Identity Project Might Keep You Up at Night

https://securityboulevard.com/2025/09/auth-migration-hell-why-your-next-identity-project-might-ke...
1•mooreds•22m ago•0 comments

A chip 10,000x more energy efficient than GPU – Trevor McCourt, Extropic [video]

https://www.youtube.com/watch?v=uzxTDzvZy1o
1•DHolzer•23m ago•1 comments

No Alpha Left in Public Markets

https://www.apolloacademy.com/no-alpha-left-in-public-markets/
1•akyuu•25m ago•0 comments

Trump offered to let detained Korean workers stay, but almost all heading home

https://www.reuters.com/business/retail-consumer/trump-offered-let-detained-korean-workers-stay-u...
2•nabla9•27m ago•0 comments

No-cost, multicloud Data Transfer Essentials for EU and U.K. customers

https://cloud.google.com/blog/products/networking/new-for-the-uk-and-eu-no-cost-multicloud-data-t...
1•fastest963•28m ago•0 comments

"We saved 1 hour/day on data analysis"

1•Anis_FA•34m ago•0 comments

Atlassian to end Data Center (on-prem) support by 2029. What can you do?

https://nextcloud.com/blog/event/confluence-open-source-alternative/
1•lorinab•39m ago•0 comments

Bending Spoons Buys Video Platform Vimeo for $1.38B

https://petapixel.com/2025/09/10/bending-spoons-buys-video-platform-vimeo-for-1-38-billion/
2•signa11•40m ago•0 comments

Mobile Trackers Your Ad Blocker Doesn't Know About

https://jamesoclaire.com/2025/09/11/mobile-trackers-your-ad-blocker-doesnt-know-about/
3•ddxv•40m ago•1 comments

All You Need Is MCP – LLMs Solving a DEF Con CTF Finals Challenge

https://wilgibbs.com/blog/defcon-finals-mcp/
1•notmine1337•42m ago•0 comments

When Startups Ask for Free Security Work

3•hdue•44m ago•0 comments

Defold makes a big step towards first-class Teal support

https://defold.com/2025/09/11/Towards-First-Class-Teal-Support/
1•vlaaad•45m ago•0 comments

BCacheFS is being disabled in the openSUSE kernels 6.17+

https://lwn.net/ml/all/9032de2a-03a7-4f9e-9c8a-8bd81c5d1fc5@suse.cz/
19•6581•47m ago•6 comments

I created waveFiller – an animated bucket fill effect for the HTML 5 canvas

https://github.com/devland/waveFiller
1•devland•50m ago•0 comments

Handling multi team sprint dependencies with Monday dev

1•angelicasavvy•51m ago•0 comments

How to harness skills that AI can't automate

https://www.figma.com/blog/how-to-harness-skills-that-ai-cant-automate/
1•nkko•52m ago•0 comments

Automating sprint retros with Monday dev, any tips?

1•angelicasavvy•53m ago•0 comments

Reshaped is now open source

https://reshaped.so/blog/reshaped-oss
2•michaelmior•56m ago•0 comments