Articles by Tag #npm
Browse our collection of articles on various topics related to IT technologies. Dive in and explore something new!
5 Underrated NPM Packages You’re Not Using (But Should Be)
The world of NPM is vast. With over 2 million packages available, it’s easy to gravitate towards the...
Stop npm i-ing Blind: How I Catch Malicious Packages Before They Hit Production
Stop npm i-ing Blind: Catch Malicious Packages Before They Hit Production Most developers...
Is Your OpenAI Bill Giving You Nightmares? I Built a Tool to Help
Let's be honest: playing with large language models is amazing, but seeing that OpenAI API bill at...
🚀 Building ascii-vibes: My Journey to Creating My Own ASCII & Emoji Banner Module
⚡ From Concept to Console: The Birth of ascii-vibes Every dev who’s ever worked on CLI apps knows...
🚀 FNPM Just Became Invisible (In the Good Way): Transparent Alias, Better Tests & a Smoother Experience
There are moments when you stop, look at your terminal, and think: “Why does something as simple as...
The hidden costs in your package.json
How do you choose what goes in your package.json? Is it based on what the team’s used...
🛠️ Hacktoberfest 2025 — 17 Pull Requests in One Day, for the Love of Clean Code 😅🤖🧠
Experience report from Boly38 on an intense open source contribution day: 17 PRs focused on security,...
Surviving pnpm + React Native: How I Finally Stopped Metro from Screaming About `@babel/runtime`
Do-Not-Stop is a continuously evolving Web3 frontend playground — built with Vite, React, TypeScript,...
🚨 I Almost Got Hacked: A Sophisticated Job Scam Targeting Developers
How a fake job offer nearly installed malware on my machine through a malicious npm package. A cautionary tale about supply chain attacks.
Sha1-Hulud Attack: What Happened & How to Clean Your GitHub Safely
If your GitHub repos were suddenly hit with unknown commits, modified README files, or a weird new...
Node.js - Security Audit via Github Action to augment PR's
🎯 pnpm-audit v3 (v3.1.0): A Thoughtful Step Forward in Open Source Security As a developer who cares...
5 Awesome Shadcn Extensions That Will Enhance Your Project 🔥🎨
1. Shadcn Form 🧰 Create forms with Shadcn, react-hook-form and zod within...
express-error-toolkit — the One NPM Package to Handle All Express Errors
As a full-stack developer, I’ve spent countless hours building robust backend applications with...
Understanding ^ and ~ in package.json Dependencies
If you've worked with Node.js and package.json, you’ve probably noticed that some dependencies have...
I Was Given a “Job Assignment” That Installed Malware
A fake Web3 recruiter used a take-home Node.js assignment to spread a file-exfiltration backdoor targeting developers’ SSH keys, .env files, and crypto wallets.
31 npm packages you can replace with Node.js APIs
Introduction When I started working at Lingo.dev, I noticed that some our dependencies...
Write Cypress Commands Once, Use Everywhere: Building a Reusable NPM Package
We already know that cypress allow us to create commands that can be used in different tests, but...
Beyond Enums and Arrays: Why Bitwise Flags Are Your Next TypeScript Tool
Hi there! Have you ever built a service with a lot of conditional flags? For example, can user read,...
🚨If You Have an npm Package, Read This Before November 2025
In case you missed it, GitHub just announced a major security update for npm that will start rolling...
How to Create and Publish Your First NPM Package
Publishing your first NPM package feels like a rite of passage for JavaScript developers. Whether...
Pacote de dados
Assim como eu muitos usam esses pacotes de dados mas muitas vezes não sabemos as diferenças e...
The Friendly Guide: "Why WSL is Eating My C: Drive (and How to Get it Back)"
If you've ever used the Windows Subsystem for Linux (WSL) with tools like Docker or Node.js, you may...
Angular Library Linking Made Easy: Paths, Workspaces, and Symlinks
Managing local libraries and path references in Angular projects has evolved significantly with the...
Stop Struggling with Axios! My First NPM Package "axios-fluent" Solves 3 Major Pain Points
Introduction Do you experience this every time you write HTTP requests? //...
Your response to the Shai-Hulud supply chain attack
I am sure you have heard about the recent supply chain attack on npm packages. Many news outlets and...
Optimizing Vue.js Component Library Bundle Size: A Real-World Case Study
How I reduced my Vue component library from 388KB to 124KB (68% reduction) and solved dependency...
Releasing My First Open-Source CLI Tool: Lessons from Publishing Repository-Context-Packager
As a developer, releasing your first open-source project is an exciting milestone. It transforms code...
Data package
Just like me, many people use these package managers, but often we don't know the differences and...
NPM = Wild Wild West: It's Time to Stop the Madness
For decades, the JavaScript ecosystem has been a welcoming, innovative space where anyone can...
Publishing Your First NPM Package: A Real-World Guide That Actually Helps
You know that moment when you’ve written the same utility function for the third time across...