Live Roundups Editor's Desk Insights Executive Ops Weather About 🔍

Home UK News World News Politics Business/Finance Technology Science Health Sport Entertainment Roundups Editor's Desk Insights Digest Weather About

Home › Knowledge Base › harden NPM

harden NPM

No mentions found

This entity hasn't been tracked yet, or Iris is still building its knowledge base.

Related Articles from SNS

Npm registry sets stage for more secure package publishing

The Register 19d ago

Show HN: DepsGuard – one command to harden NPM/pnpm/yarn/bun/uv configs

I kept seeing every npm/pnpm/yarn/bun/uv supply chain post end with the same advice (set a minimum release age, turn off install scripts), and while I know cooldowns are "controversial", they do work. But even if you convince people that they should set cooldowns, it seems many don't end up following through, not sure why, maybe because it means hand-editing five config files in five formats with five different time units, or perhaps the "it won't happen to me" syndrome (or "I'll do it...

Hacker News 9d ago

The ways we contain Claude across products

Get the developer newsletter Product updates, how-tos, community spotlights, and more. Delivered monthly to your inbox. Twelve months ago, we'd have rejected out of hand the idea of granting Claude access sufficient to take down an internal Anthropic service.

Hacker News 6d ago

Sovereign News Station

Self-hosted. No tracking. No ads. Independent news intelligence powered by sovereign infrastructure.

Daily briefing to your inbox:

Subscribed. Welcome aboard.

Home Live Analysis Trending Analytics Operations RSS Feed About

Sovereign News Station — Independent news intelligence · Self-hosted · No tracking