Business Insider

GitHub is acquiring NPM, a small startup that provides a crucial service to 12 million developers

You're currently following this author! Want to unfollow? Unsubscribe via the link in your email. Follow Rosalie Chan Every time Rosalie publishes a story, you’ll get an alert straight to your inbox!
Nature

The oncogenic fusion protein nucleophosmin–anaplastic lymphoma kinase (NPM–ALK) induces two distinct malignant phenotypes in a murine retroviral transplantation model

A t(2;5) (p23;q35) chromosomal translocation can be found in a high percentage of anaplastic large-cell lymphomas (ALCL). This genetic abnormality leads to the expression of the NPM–ALK fusion protein ...
Redmond Magazine

GitHub Expands Copilot to Teams, Strengthens npm Security and Adds Enterprise Usage Tools

GitHub rolled out several updates this week aimed at developer collaboration, open source security and enterprise billing. At the center is a new public preview of the GitHub Copilot app for Microsoft ...
CSOonline

Massive npm supply chain attack hits 18 popular packages with 2B weekly downloads

Malware hidden in widely used libraries like chalk and debug hijacked crypto transactions via browser APIs, exposing deep flaws in the open-source trust model. A massive supply chain attack ...
InfoWorld

Did your npm pipeline break today? Check your ‘classic’ tokens

A spate of supply chain attacks forces GitHub’s npm to revoke ‘classic’ tokens. Despite this, larger worries about developer ...
Bleeping Computer

Unofficial Postmark MCP npm silently stole users' emails

A npm package copying the official ‘postmark-mcp’ project on GitHub turned bad with the latest update that added a single line of code to exfiltrate all its users' email communication. Published by a ...
CSOonline

Malicious code in the Node.js npm registry shakes open source trust model

Bad actors using typo-squatting place 39 malicious packages in npm that went undetected for two weeks. How should the open source community respond? Software development relies heavily on trust, ...