From Dev.to Community
Tech Articles
Curated developer articles, tutorials, and guides — auto-updated hourly
Kazu6d ago • 5 min read
Shipping a Go CLI to Every Ecosystem: GitHub Releases, Homebrew, and npm
The Problem: Great Tools Die in Obscurity You can build the fastest, most useful CLI tool...
#cli#github#go#npm
0 0
SEN LLC5d ago • 8 min read
npm audit --json Is Unreadable. I Wrote a Formatter With Zero Dependencies.
npm audit --json Is Unreadable. I Wrote a Formatter With Zero Dependencies. npm audit has...
#typescript#npm#security#tutorial
3 0
Yatin Davra6d ago • 2 min read
How to Create Multi-Page TIFF Files in Node.js (Without ImageMagick)
If you've ever tried to create a multi-page TIFF in Node.js, you know the pain. Most solutions...
#node#javascript#webdev#npm
0 0
Nigel Douglas6d ago • 3 min read
58% of engineers spend 11+ hours per month validating AI code
AI-assisted development is very much the norm at this point. I’ve written at length about how AI...
#npm#python#devops#ai
4 2
Francesco Di Donato5d ago • 11 min read
How I Turned 4 Sites and a Shared Lib Into One pnpm Workspace
Before the monorepo, my local ~/Workspace/didof/ looked like a cork board of unrelated projects: fou...
#webdev#ai#tutorial#npm
1 0
Marco Crupi6d ago • 8 min read
The Best Notification Libraries for React Native in 2026: Which One Should You Choose?
Notifications in React Native look simple—right up until you have to rely on them in a real...
#react#reactnative#opensource#npm
5 0
Juan Torchia3d ago • 6 min read
pnpm vs npm vs yarn vs bun: The Real Comparison Nobody Gives You in 2025
I used all four in real projects. One wrecked a monorepo at 3am. Another saved my ass in production....
#english#technology#pnpm#npm
0 0
Steve FentonApr 13, 2026 • 2 min read
Setting GitHub as a trusted publisher for npm
So, stuff happened and npm has been updated to reduce the volume of stuff happening. In a world of.....
#webdev#node#npm#github
1 0
Xihe 曦和6d ago • 2 min read
My AI told me to pip install a package that doesn't exist. Turns out someone already weaponized that.
Tags: #ai #npm #security Account: xihe GitHub login on dev.to Title: My AI told me to pip...
#ai#npm#security#testing
0 0
The Crypto DonkeyApr 13, 2026 • 10 min read
I audited the top 50 npm packages. Almost none ship with supply-chain attestations!
TL;DR I checked the 50 most-downloaded npm packages last week to see how many ship with...
#webdev#javascript#security#npm
0 0
LazyDev_OH6d ago • 6 min read
axios npm Supply Chain Attack (March 31, 2026) — What Happened and How to Check Your Lock File Right Now
On March 31, 2026, malicious versions of axios — a package with 70M+ weekly downloads — were...
#security#npm#javascript#webdev
1 0
Bill Tu11h ago • 4 min read
Did Your Fix Actually Work? Comparing Profiling Reports Before and After
You found the bug. heavyComputation at /app/server.js:42 was consuming 62% of CPU. You refactored it...
#javascript#npm#node#eventloop
0 0
Vincenzo Rubino7h ago • 6 min read
The Hidden Cost of AI Coding Agents: Every Tool Is Fetching the Same Data
AI coding agents are wasting massive amounts of bandwidth, energy, and tokens fetching the same pack...
#ai#api#npm#python
0 0
Pico3d ago • 4 min read
I audited every npm package with >10M weekly downloads. Here is the risk map.
The question nobody asks Your CI/CD pipeline runs npm audit on every push. It checks for...
#security#npm#javascript#devops
0 0
Deveshwar Jaiswal1d ago • 2 min read
Bun replaced 4 tools in my stack — here's what actually held up and what didn't
Vishwakarma is the divine architect in Vedic tradition. He doesn't fight battles or write laws. He.....
#bunjs#npm#webdev#programming
0 0
Monde kim4d ago • 1 min read
Launching gh-dep-risk: a GitHub CLI extension for npm dependency PR review
A GitHub CLI extension that summarizes npm dependency pull request risk without adding a server or w...
#github#cli#security#npm
0 0
Marco Crupi6d ago • 7 min read
Le migliori librerie di notifiche per React Native nel 2026: quale scegliere?
Le notifiche in React Native sembrano semplici, finché non inizi a usarle davvero. Inviare una...
#reactnative#react#opensource#npm
0 0
Pico3d ago • 3 min read
esbuild has 190M weekly downloads and one maintainer — I audited 25 top npm packages
I audited 25 top npm packages with a zero-install CLI. Here's who passes. npx...
#npm#security#javascript#devops
0 0
Malthus AMETEPE4d ago • 1 min read
thusdev-fetch atteint 256 téléchargements npm en 2 jours !
In just 2 days, thusdev-fetch has already reached 256 downloads on npm 👉 What is it? An open-sourc...
#node#javascript#opensource#npm
3 0
Serdar Salim4d ago • 1 min read
npm run dev
Each time I wanted to run an app in my local dev I used to open a terminal, open the folder of the.....
#npm#productivity#showdev#tooling
1 0
Pico6d ago • 4 min read
axios Was Attacked. npm audit Showed Zero Issues. Here's What Behavioral Scoring Showed.
On April 1st, axios (101M weekly downloads) was compromised. npm audit reported nothing. Here's what...
#security#javascript#npm#devops
0 0
Pico2d ago • 2 min read
Your package.json only shows 20 dependencies. Your lock file has 487. I built a scanner for the other 467.
I built lock file support into proof-of-commitment. Now you can scan all 400+ transitive dependencie...
#npm#security#node#javascript
0 0
Pico2d ago • 9 min read
How Commit Scores npm Packages: The Methodology Behind getcommit.dev/audit
How Commit Scores npm Packages: The Methodology Behind getcommit.dev/audit On April 1st,...
#javascript#npm#security#opensource
0 0
Pico4d ago • 3 min read
I audited 25 top npm packages with a zero-install CLI. Here's who passes.
I audited 25 top npm packages with a zero-install CLI. Here's who passes. npx...
#npm#javascript#security#opensource
0 0