Skip to main content
Scour
Browse
Getting Started
Login
Sign Up
You are offline. Trying to reconnect...
Copied to clipboard
Unable to share or copy to clipboard
Package Managers
📦 Package Managers
Dependency Resolution, Version Constraints, Lock Files, Security
Filter Results
Timeframe
Fresh
Past Hour
Today
This Week
This Month
Feeds to Scour
Subscribed
All
Scoured
568
posts in
6.8
ms
Your
Package
Manager
Is Lying to You:
npm
, Yarn, pnpm, Bun, and Deno tradeoffs
🔨
Build Systems
Content type:
Blog
blog.gaborkoos.com
·
13h
13 hours ago
·
Hacker News
,
r/javascript
,
r/node
,
r/programming
,
r/typescript
,
r/webdev
Actions for Your Package Manager Is Lying to You: npm, Yarn, pnpm, Bun, and Deno tradeoffs
A
package
manager
for AI assets (and why the
lock
file is per-user)
🔗
Content Addressing
Content type:
Blog
sleuth-io.github.io
·
6d
6 days ago
·
Hacker News
Actions for A package manager for AI assets (and why the lock file is per-user)
npm
Tooling Bug Incorrectly Marks One-Character
Packages
as
Security
Holders
🕸️
WebAssembly
Content type:
Blog
socket.dev
·
1d
1 day ago
Actions for npm Tooling Bug Incorrectly Marks One-Character Packages as Security Holders
Trying to make sense of
package-manager
metadata
🔨
Build Systems
lwn.net
·
13h
13 hours ago
Actions for Trying to make sense of package-manager metadata
Upcoming breaking changes for
npm
v12 - GitHub Changelog
🔄
Language Evolution
Content type:
Blog
Content type:
Tutorial
github.blog
·
1d
1 day ago
·
Lobsters
,
Hacker News
,
r/javascript
,
r/node
Actions for Upcoming breaking changes for npm v12 - GitHub Changelog
Nuts –
pip/NPM
for Java with first-class workspaces and JDK provisioning (9y+)
🔨
Build Systems
Content type:
Code
github.com
·
16h
16 hours ago
·
Hacker News
,
Hacker News
Actions for Nuts – pip/NPM for Java with first-class workspaces and JDK provisioning (9y+)
Package
Manager
Patents
🔗
Content Addressing
Content type:
Blog
nesbitt.io
·
3d
3 days ago
Actions for Package Manager Patents
GitHub pulls pin on
npm
's auto-run scripts
🔄
Language Evolution
Content type:
News
theregister.com
·
1d
1 day ago
·
Hacker News
Actions for GitHub pulls pin on npm's auto-run scripts
GitHub to Disable
npm
Install Scripts by Default to Stop Supply Chain Attacks
🔄
Language Evolution
thehackernews.com
·
6h
6 hours ago
Actions for GitHub to Disable npm Install Scripts by Default to Stop Supply Chain Attacks
GitHub announces
npm
security
changes to tackle supply-chain attacks
🔍
Static Analysis
Content type:
News
bleepingcomputer.com
·
17h
17 hours ago
Actions for GitHub announces npm security changes to tackle supply-chain attacks
Wait, binding.gyp Can Do What? Exploring
npm
's Weirdest Build System
⚡
Systems Programming
Content type:
Blog
aikido.dev
·
1d
1 day ago
Actions for Wait, binding.gyp Can Do What? Exploring npm's Weirdest Build System
What to Expect from the RPM 6.1
Package
Manager
🔨
Build Systems
Content type:
Blog
linuxtoday.com
·
3d
3 days ago
Actions for What to Expect from the RPM 6.1 Package Manager
GitHub finally pulls the plug on automatic install script execution for
npm
🔄
Language Evolution
Content type:
News
csoonline.com
·
12h
12 hours ago
Actions for GitHub finally pulls the plug on automatic install script execution for npm
Dependency
Execution Intelligence
🔨
Build Systems
depgaze.xyz
·
3h
3 hours ago
·
Hacker News
Actions for Dependency Execution Intelligence
Over 100
NPM
, PyPI
Packages
Hit in New Shai-Hulud Supply Chain Attacks
🔗
Content Addressing
securityweek.com
·
2d
2 days ago
Actions for Over 100 NPM, PyPI Packages Hit in New Shai-Hulud Supply Chain Attacks
NASA’s
MAVEN
Mission Ends: Iconic Images by the Spacecraft
🔨
Build Systems
diyphotography.net
·
4d
4 days ago
Actions for NASA’s MAVEN Mission Ends: Iconic Images by the Spacecraft
I Replaced Our Commercial Artifact Registry With a Free One After a 5× Renewal Price Hike.
🔗
Content Addressing
Content type:
Blog
medium.com
·
17h
17 hours ago
Actions for I Replaced Our Commercial Artifact Registry With a Free One After a 5× Renewal Price Hike.
Introduction to Cross-Platform Java Development With Codename One
🔗
Language Interop
baeldung.com
·
2d
2 days ago
Actions for Introduction to Cross-Platform Java Development With Codename One
PEP 668 – Marking Python base environments as “externally
managed
” | peps.python.org
🔄
Language Evolution
peps.python.org
·
3d
3 days ago
·
Hacker News
Actions for PEP 668 – Marking Python base environments as “externally managed” | peps.python.org
I built a 3KB alternative to replace zxcvbn (389KB) without detection loss
🔗
Content Addressing
Content type:
Blog
medium.com
·
8h
8 hours ago
Actions for I built a 3KB alternative to replace zxcvbn (389KB) without detection loss
Page 2 »
Log in to enable infinite scrolling
Keyboard Shortcuts
Navigation
Next / previous item
j
/
k
Open post
o
or
Enter
Preview post
v
Post Actions
Love post
a
Like post
l
Dislike post
d
Undo reaction
u
Save / unsave
s
Recommendations
Add interest / feed
Enter
Not interested
x
Go to
Home
g
h
Interests
g
i
Feeds
g
f
Likes
g
l
History
g
y
Changelog
g
c
Settings
g
s
Browse
g
b
Search
/
Pagination
Next page
n
Previous page
p
General
Show this help
?
Submit feedback
!
Close modal / unfocus
Esc
Press
?
anytime to show this help