News

Developer Tech15h
Package lurking in npm for six years waits to destroy your work
Socket's threat researchers have uncovered a package lurking in npm for six years that awaits a remote command to wipe ...
CSO Online3d
Hackers drop 60 npm bombs in less than two weeks to recon dev machines
All malicious npm packages carried identical payloads for snooping sensitive network information from developers’ systems.
Socket buys Coana to tell you which security alerts you can ignore
In its latest gambit to reduce the noise of unnecessary security alerts, Socket has acquired Coana, a startup founded in 2022 by researchers from Aarhus University in Denmark that tells users which ...
GitHub17d
GraphQL.js
The JavaScript reference implementation for GraphQL, a query language for APIs created by Facebook. See more complete documentation at https://graphql.org/ and https ...
GitHub22d
Import UI5 modules into NodeJS applications, allowing isolation of UI5 components and injection of dependencies to create an isolated test environment.
When importing UI5 modules, there are few things to consider, the two major things that need to be resolved are SAP's Global Context and Dependency Lookup. This tool provides ways to inject both ...