#npm

packages, lockfiles, and the transitive dependency that brought the supply chain with it.

1 blog post.

Blog posts

Lazy SRE's guide to secure systems, part 1: the dependencies you didn't read

A startup-grade defense against npm supply-chain attacks, written for Future You at 3am. Chainjacking, postinstall scripts, and the smallest install that…

Related tags

#OPSEC #ai #ai-gateway #ai-tooling #akamai #anime #audit-logs #automation