Crista Perlton on January 16th, 2024.
Working with Node.js and npm? While you’ve probably wrestled with npm dependencies already, understanding these alone is just scratching the surface. Have you heard of “dev-only dependencies”? Or how about “lock-files” for that matter? While npm handles dependency and package management, mastering it...
Crista Perlton on January 9th, 2024.
Seen scary vulnerability alerts when you’re coding with npm packages? Worried about the security of your JavaScript apps due to the latest exploit scare? When you build JavaScript apps, you often use npm packages for managing libraries. Keeping these packages safe for production is super important. I’m guessing you probably...
Crista Perlton on December 7th, 2023.
Are you deploying applications to production with packages directly sourced from npmjs.org? This is a common practice for many organizations, with npmjs.org being a popular repository among developers and all. However, with this comes a bunch of stuff you’ll need to watch out for. With npm Packages, your mileage may vary...
Crista Perlton on November 30th, 2023.
Are you using npmjs.org for all your JavaScript packages? Chances are you are, right? It’s pretty common to include them in your dev projects. But when it comes to package licenses, how closely are you really keeping an eye on them? With over 100 packages in any given project, each with its own license, it’s totally...