To help Angular developers discover companies actively using Angular. To showcase real-world adoption of Angular in production. To support the Angular ecosystem with open, transparent data.

Investigations into the Nx "s1ngularity" NPM supply chain attack have unveiled a massive fallout, with thousands of account ...

Today, we will delve into a highly discussed open-source project on GitHub—htmx, which is quietly changing the rules of front-end development, allowing you to implement modern web interactions with ...

Earlier this week, the Npm package manager suffered what may be its worst security incident to date. Unknown cybercriminals ...

Qix is an open source maintainer account that was compromised by a phishing attack. This allowed attackers to infect 18 popular npm packages with malicious code. Together, these packages are ...

JavaScript packages with billions of downloads were compromised by an unknown threat actor looking to steal cryptocurrency.

Hackers used the secrets stolen in the recent Nx supply chain attack to publish over 6,700 private repositories publicly.

长期以来，Node.js 一直缺乏对 Type 的支持，开发者不得不依赖第三方工具链或使用像 Deno 这样的 Java 运行时替代方案，后者原生支持 Type。然后，从 23.6 版本（于今年 1 月发布）开始，开发者可以在 Node.js ...

Every company striving to create fast, interactive, and user-friendly applications is looking at ReactJS as their go-to front ...

"debug" package attack failed; malicious update detected early, minimal impact. Developers urged to check their installations ...

Choosing font pairings can be tricky, but a good way to shape your decision is to consider the size of your fonts. If the X ...

Threat actors injected malicious code into multiple popular NPM packages after their maintainers fell for a well-crafted ...