Breaking of "colors" and "faker" NPM libraries show that everything isn't right in the FOSS ecosystem ~comp open source Article 948 words 7 votes
StandardJS, a Javacript linter config with 3 million downloads/month starts showing advertisements in users terminals ~comp open source Link 20 votes
npm package "eslint-scope" compromised, npm is invalidating all login tokens created before 2018-07-12 12:30 UTC ~comp security Link 16 votes