Skip to main content
Scour
Browse
Getting Started
Login
Sign Up
You are offline. Trying to reconnect...
Copied to clipboard
Unable to share or copy to clipboard
Package Managers
📦 Package Managers
npm, pnpm, cargo, bun, dependency management
Filter Results
Timeframe
Fresh
Past Hour
Today
This Week
This Month
Feeds to Scour
Subscribed
All
Scoured
817
posts in
9.3
ms
What to Expect from the RPM 6.1
Package
Manager
🧹
Linters
Content type:
Blog
linuxtoday.com
·
2d
2 days ago
Actions for What to Expect from the RPM 6.1 Package Manager
docs(release): fix sequential patch numbering · openclaw/openclaw@fb9dc86
🦀
Rust
Content type:
Code
github.com
·
5h
5 hours ago
Actions for docs(release): fix sequential patch numbering · openclaw/openclaw@fb9dc86
I made a browser puzzle site for playing more Pips-style logic puzzles after the daily
🧪
Vitest
pips2.com
·
3d
3 days ago
·
r/SideProject
Actions for I made a browser puzzle site for playing more Pips-style logic puzzles after the daily
someone actually leaked the Miasma supply chain attack toolkit source code on github
🌱
Open Source
safedep.io
·
1d
1 day ago
·
Hacker News
,
r/programming
Actions for someone actually leaked the Miasma supply chain attack toolkit source code on github
Malware Insights: Miasma Campaign
🟨
JavaScript
cookie.engineer
·
2d
2 days ago
·
Hacker News
Actions for Malware Insights: Miasma Campaign
A
package
manager
for AI assets (and why the
lock
file is per-user)
🔧
Dev Tooling
Content type:
Blog
sleuth-io.github.io
·
5d
5 days ago
·
Hacker News
Actions for A package manager for AI assets (and why the lock file is per-user)
DWP trials
PIP
changes affecting thousands of claimants
✅
Taskwarrior
Content type:
News
independent.co.uk
·
2d
2 days ago
Actions for DWP trials PIP changes affecting thousands of claimants
New IronWorm Malware Hits 36
Packages
In
npm
Supply-Chain Attack
🌱
Open Source
it.slashdot.org
·
6d
6 days ago
Actions for New IronWorm Malware Hits 36 Packages In npm Supply-Chain Attack
PIP
bill for 16-24s to SOAR to £9BILLION a year in fresh blow to economy as almost a million youths set to claim by 2040
🌱
Open Source
Content type:
News
thesun.co.uk
·
2d
2 days ago
Actions for PIP bill for 16-24s to SOAR to £9BILLION a year in fresh blow to economy as almost a million youths set to claim by 2040
Lazarus Group Uses
npm
Brandjacking Campaign to Target Developers
🟨
JavaScript
hackread.com
·
6d
6 days ago
Actions for Lazarus Group Uses npm Brandjacking Campaign to Target Developers
Over 100
NPM
, PyPI
Packages
Hit in New Shai-Hulud Supply Chain Attacks
🌱
Open Source
securityweek.com
·
1d
1 day ago
Actions for Over 100 NPM, PyPI Packages Hit in New Shai-Hulud Supply Chain Attacks
Vulnerability and malware checks in uv
🦀
Rust
Content type:
Blog
astral.sh
·
2d
2 days ago
·
Lobsters
,
Hacker News
,
Hacker News
Actions for Vulnerability and malware checks in uv
Nuts –
pip/NPM
for Java with first-class workspaces and JDK provisioning (9y+)
💻
CLI Tools
Content type:
Code
github.com
·
1h
1 hour ago
·
Hacker News
Actions for Nuts – pip/NPM for Java with first-class workspaces and JDK provisioning (9y+)
pnpm
11.5 Adds Support for Recognizing
npm
Staged Publishes
🔧
Dev Tooling
Content type:
Blog
socket.dev
·
6d
6 days ago
Actions for pnpm 11.5 Adds Support for Recognizing npm Staged Publishes
Wait, binding.gyp Can Do What? Exploring
npm
's Weirdest Build System
🟨
JavaScript
Content type:
Blog
aikido.dev
·
1d
1 day ago
Actions for Wait, binding.gyp Can Do What? Exploring npm's Weirdest Build System
Why Developer Onboarding Should Be Contract-First
💻
CLI Tools
Content type:
Blog
ota.run
·
2d
2 days ago
·
DEV
Actions for Why Developer Onboarding Should Be Contract-First
How 56
npm
packages
used binding.gyp to steal CI/CD secrets
🔧
Dev Tooling
Content type:
Blog
reversinglabs.com
·
6d
6 days ago
Actions for How 56 npm packages used binding.gyp to steal CI/CD secrets
Shai-Hulud Hades PyPI Campaign: 19
Packages
Trojanized via Wheel Startup Hooks
🦀
Rust
Content type:
Blog
socradar.io
·
1d
1 day ago
Actions for Shai-Hulud Hades PyPI Campaign: 19 Packages Trojanized via Wheel Startup Hooks
Stop Guessing What ^18.2.0 Actually Installs
🟨
JavaScript
devencyclopedia.com
·
5d
5 days ago
·
DEV
Actions for Stop Guessing What ^18.2.0 Actually Installs
Config Files That Run Code: Supply Chain Security Blindspot
🔧
Dev Tooling
safedep.io
·
2d
2 days ago
·
Hacker News
Actions for Config Files That Run Code: Supply Chain Security Blindspot
« Page 1
·
Page 3 »
Log in to enable infinite scrolling
Keyboard Shortcuts
Navigation
Next / previous item
j
/
k
Open post
o
or
Enter
Preview post
v
Post Actions
Love post
a
Like post
l
Dislike post
d
Undo reaction
u
Save / unsave
s
Recommendations
Add interest / feed
Enter
Not interested
x
Go to
Home
g
h
Interests
g
i
Feeds
g
f
Likes
g
l
History
g
y
Changelog
g
c
Settings
g
s
Browse
g
b
Search
/
Pagination
Next page
n
Previous page
p
General
Show this help
?
Submit feedback
!
Close modal / unfocus
Esc
Press
?
anytime to show this help