recentpopularlog in

mcherm : node.js   8

I’m harvesting credit card numbers and passwords from your site. Here’s how.
It would be easy to inject malicious code into people's web pages by writing an evil library with useful effects and making it popular on npm.
security  webdevelopment  node.js  via:reddit 
january 2018 by mcherm
After governance breakdown, Node.js leaders fight for its survival | ZDNet
1/3 of node.js board members resigned (and forked the project) when the board wouldn't jettison a member.
opensource  management  node.js  socialcomputing 
august 2017 by mcherm
"fs" unpublished and restored
A useless package is removed; breaks lots of stuff. Because NPM (Node Package Manager) is a poorly managed and designed mess.
node.js  via:reddit 
september 2016 by mcherm
I Peeked Into My Node_Modules Directory And You Won’t Believe What Happened Next — friendship .js — Medium
A collection of horror stories about what node package manager installs. Regrettably, it is all made up.
programming  via:reddit  node.js 
august 2016 by mcherm
Rage-quit: Coder unpublished 17 lines of JavaScript and “broke the Internet” | Ars Technica
Upset over a kerfuffle on the use of a trademarked name, a developer pulled out all his modules from the NPM repository. One was a 17-line function that was used ALL over the place.
ArsTechnica  via:ArsTechnica  node.js  trademark 
march 2016 by mcherm
Micropackages and Open Source Trust Scaling | Armin Ronacher's Thoughts and Writings
Node.js imports lots of REALLY TINY modules (like often just a single line of code). This has significant overhead and it also poses a security risk.
packaging  node.js  programming  via:HackerNews 
march 2016 by mcherm
Try It Quiet - Giving a Technical Talk Without Saying a Word
He had a talk at a conference (on node.js). Rather than argue with microsoft developers about whether node.js had any actually "new" feature, he just coded for an hour in front of them... all without saying a single word. Some hated it, others loved it.
presentation  via:HackerNews  node.js 
july 2012 by mcherm

Copy this bookmark:

to read