npm – Noise

Using Semantic Versioning to Simplify Release Management

Brandon Kindred — Tue, 29 Oct 2024 18:22:46 +0000

Any organization that manages software libraries and applications needs a standardized way to catalog, reference, import, fix bugs and update the versions of those libraries and applications. Semantic Versioning enables developers, testers, and project managers to have a more standardized process for committing code and managing different versions. It’s benefits also extend beyond development teams […]

Bringing npm registry services to GitHub Codespaces

Di Hei — Tue, 13 Feb 2024 18:00:19 +0000

The npm engineering team recently transitioned to using GitHub Codespaces for local development for npm registry services. This shift to Codespaces has substantially reduced the friction of our inner development loop and boosted developer productivity.

The post Bringing npm registry services to GitHub Codespaces appeared first on The GitHub Blog.

Unlocking security updates for transitive dependencies with npm

Bryan Dragon — Thu, 19 Jan 2023 20:24:01 +0000

How Dependabot integrated with npm to address security vulnerabilities on transitive dependencies and increase the likelihood of success for JavaScript security updates by 40%.

Introducing even more security enhancements to npm

Myles Borins — Tue, 26 Jul 2022 16:00:06 +0000

New npm security enhancements include an improved login and publish experience with the npm CLI, connected GitHub and Twitter accounts, and a new CLI command to verify the integrity of packages in npm.

Publishing private npm packages with AWS CodeArtifact

Ryan Sonshine — Fri, 20 Nov 2020 20:29:43 +0000

Learn how to create, publish, and download private npm packages using AWS CodeArtifact, allowing you to share code across your organization without exposing your packages to the public.