The Register on MSN

GitHub moves to tighten npm security amid phishing, malware plague

Hundreds of compromised packages pulled as registry shifts to 2FA and trusted publishing GitHub, which owns the npm registry ...
Cyber Daily

GitHub to address npm supply chain as CISA warns of spreading Shai-Halud worm

Popular code repository to take action against hackers targeting popular JavaScript code packages to spread malware.

GitHub details upcoming changes to improve security in wake of Shai-Hulud worm in npm ecosystem

In response to the recent supply chain attack in the JavaScript package manager npm, GitHub has made a few changes that will ...
Krebs on Security

Self-Replicating Worm Hits 180+ Software Packages

The novel malware strain is being dubbed Shai-Hulud — after the name for the giant sandworms in Frank Herbert’s Dune novel ...
InfoWorld

Python has overtaken JavaScript on GitHub

Python has overtaken JavaScript as the most popular language on GitHub, while the use of Jupyter Notebooks also has skyrocketed on the site. The rise of both underscore the surge in data science, ...
SD Times

GitHub acquires JavaScript package manager provider npm

Value stream management involves people in the organization to examine workflows and other processes to ensure they are deriving the maximum value from their efforts while eliminating waste — of ...
Business Insider

The 10 most popular programming languages, according to Microsoft-owned GitHub's annual survey of developers

Open source development tool GitHub released its annual ranking of programming languages. JavaScript claimed the top spot, a position its held since 2014. Most languages remained stagnant, with ...
IT World Canada

Github acquires npm to aid JavaScript developers

The Microsoft-owned Github this week announced that is has acquired npm, a company with a large registry of JavaScript packages. Nat Friedman, Github’s chief executive officer, who made the ...