npm weekly #229: đHappy New Year from npm! Security stats, Privacy Policy update and more.
npm Security 2019 in Review
With 2019 now in the rearview mirror, npmâs VP of Security, Adam Baldwin, has pulled together some interesting stats from 2019 to share. Did you know that the npm security team prevented $13 million in cryptocurrency from going to attackers in 2019 by catching the Komodo Agama wallet backdoor? Or that our behavioral analysis API generated 1.4 million run-time reports last year? Check out all the fun facts here.
Node+JS Interactive videos are live!
Miss Darcy Clarke and Ruy Adornoâs Node+JS Interactiveâs presentations, or want to relive the moment? The recordings are now available: Darcyâs âBeyond npm Installâ and Ruyâs âCLI Tools for All the Things.â Enjoy!
Arborist news
In case you missed it, there was a prerelease of Arborist on 12/31. Arborist is the engine thatâll do all the management of your node_modules folder in npm v7. There is still more work to be done before you should use it, but watch this space for continued updates!
Updates to our Privacy Policy
Weâve updated our Privacy Policy in compliance with the new California Consumer Privacy Act (CCPA). Learn more >>
Open RFC Meetings â join the conversation
Our Open RFC meetings have returned, with the most recent call held yesterday (Wednesday, January 8). You can review the recording and notes here, along with those from our previous meetings.
Mark your calendar for our next meeting: Wednesday, January 22 at 11am PT/2pm ET. Add your topics to be considered for discussion (and watch this space for the agenda and meeting details).
Recommended projects: MEVN-CLI & teachcode
We have two projects to share with you this week:
MEVN-CLI is a CLI tool for getting started with the MEVN (MongoDB Express.js VueJS Node.js) stack. It offers a super-simple boilerplate template and utilities for building a MEVN stack-based web app.
teachcode is a tool that helps develop and improve the userâs programming skills by walking them through the basic constructs of the programming language of their choice.
Both projects were created utilizing npm Teams. Learn more about npm Teams and how it can help your organization build amazing things.
Webinars, tech talks and more, oh my!
Miss out on any of our tech talks or webinars recently? Have no fear! You can watch the recordings here. đ
Build Amazing Things, Together
Need private packages and/or team management tools? Check out npm Pro and npm Teams. Both tools empower developers to utilize private packages and collaborate, either working with contributors on Open Source projects (Pro), or working as a team on mission-critical applications (Teams).
Learn more about our suite of solutions here.
