The Register on MSN

GitHub moves to tighten npm security amid phishing, malware plague

Hundreds of compromised packages pulled as registry shifts to 2FA and trusted publishing GitHub, which owns the npm registry ...
GitHub

npm ERR! path /usr/local/lib/node_modules/@google/gemini-cli/node_modules/@lvce-editor/ripgrep,i cant install gemini cli

npm ERR! SyntaxError: The requested module 'node:events' does not provide an export named 'addAbortListener' npm ERR! at ModuleJob._instantiate (node:internal/modules ...
The Hacker News

Malicious npm Packages Exploit Ethereum Smart Contracts to Target Crypto Developers

Cybersecurity researchers have discovered two new malicious packages on the npm registry that make use of smart contracts for the Ethereum blockchain to carry out malicious actions on compromised ...
The Hacker News

Cloudflare Blocks Record-Breaking 11.5 Tbps DDoS Attack

Cloudflare on Tuesday said it automatically mitigated a record-setting volumetric distributed denial-of-service (DDoS) attack that peaked at 11.5 terabits per second (Tbps). "Over the past few weeks, ...
GitHub

Require global npm as a local node module.

Npm is about 25MB in size now, which is quite a heavy dependency for most modules. Luckily, nearly every node.js user has a npm installed globally.