typescript.news

#Node.js

No articles are currently tagged with 'Node.js'.
2 articles tagged with Node.js
Node.js March 2026: Six Security Patches Land Across All Active Branches

Node.js March 2026: Six Security Patches Land Across All Active Branches

Node.js shipped emergency security releases for v25, v24, v22, and v20 on March 24, 2026, patching two high-severity CVEs including a TLS SNICallback crash and an HTTP header prototype pollution risk. Here's what each fix does and which versions are affected.
Axios npm Supply Chain Attack: Malicious Versions Drop Remote Access Trojan

Axios npm Supply Chain Attack: Malicious Versions Drop Remote Access Trojan

Two poisoned releases of axios β€” one of the most widely-used Node.js HTTP client libraries β€” were published and pulled from npm within hours. Here's what happened, how the attack worked, and what you need to do right now.
View all tags