Recently, security researchers Socket found 10 packages on npm targeting software developers, specifically those who use the ...

IT之家 10 月 16 日消息，当地时间 10 月 15 日， Node.js 团队发布了最新的 Node.js 25.0.0 正式版本。本次更新重点聚焦性能优化、安全模型强化以及与 Web 标准的进一步接轨。 Node.js 25 升级至 V8 ...

在数字化转型浪潮持续席卷各行各业的今天，后端开发技术栈的迭代速度令人目不暇接。而Node.js自2009年诞生以来，凭借其独特的非阻塞I/O模型和事件驱动架构，始终占据着服务器端开发的重要位置。随着2025年的到来，Node.js生态又迎来了一系列令人振奋的革新，新一代Node.js课程不仅涵盖了这些最新特性，更通过精心设计的项目实战，为开发者提供了一条从入门到精通的清晰路径。 2025年Node ...

An active campaign named 'PhantomRaven' is targeting developers with dozens of malicious npm packages that steal authentication tokens, CI/CD secrets, and GitHub credentials.

Version 1.3 of the Bun JavaScript runtime and toolkit has landed, pushing forward the project's goal to consolidate ...

Moderne, a company that provides solutions to help modernize code, announced that its Lossless Semantic Tree (LST) code model ...

Supply chain security company Safety has discovered a trojan in NPM that masqueraded as Anthropic’s popular Claude Code AI ...

The North Korean threat actor linked to the Contagious Interview campaign has been observed merging some of the functionality ...

集成Chromium与Node.js的开源应用程序框架Electron，让开发者能够使用JavaScript、HTML和CSS打造跨平台的应用程序，然而若是开发者后续维护并未跟进使用新版Electron，就有可能让应用程序暴露在已知漏洞带来的安全风险 ...

The Java virtual machine provides a high-performance, universal runtime for a wealth of popular languages beyond just Java.