The Hacker News

Malicious npm Package Posing as OpenClaw Installer Deploys RAT, Steals macOS Credentials

Malicious npm package '@openclaw-ai/openclawai' downloaded 178 times installs GhostLoader RAT, stealing credentials and crypto wallets.
Techzine Europe

New npm browser npmx addresses shortcomings of npmjs

An initiative within the JavaScript community is attempting to offer an alternative to the way developers view npm packages via the web. The project is ...

Founder Builds 11-Member AI Team Running 24/7 for Under $300 a Month

Palyan AI's open-source Nervous System framework manages autonomous AI agents handling outreach, coaching, legal, real ...
InfoWorld

Why local-first matters for JavaScript

Every developer should be paying attention to the local-first architecture movement and what it means for JavaScript. Here’s ...

npmx package browser released as alpha to fix pain of using npmjs

Project initiated by Nuxt lead Daniel Roe attracts wide support thanks to multiple issues with the official interface ...

npmx.dev: New website for npm package search

The open-source project npmx is used for fast searching of npm packages. It focuses on UX, displays vulnerability warnings, and offers a dark mode.
GitHub

Additional ESLint's rules for Node.js

node/no-extraneous-import disallow import declarations which import extraneous modules ⭐️ node/no-extraneous-require disallow require() expressions which import extraneous modules ⭐️ ...
GitHub

SAP-archive/node-rfc

Asynchronous, non-blocking SAP NetWeaver RFC SDK client and server bindings for Node.js. Direct consumption of ABAP business logic from Node.js and extending ABAP eco-system with Node.js capabilities, ...