Keep your JavaScript code secure and compliant with Sandworm producthunt.com/posts/sandworm

We’re not saying you should…but if you feel the urge to troll a fellow developer here are some safe & funny options: blog.sandworm.dev/the-npm-packag… #javascript #NPM #appsec #cybersecurity

"🚨Security Alert🚨: “npm install https” can be a trap! It's NOT Node's built-in https but a package inactive for 8 years, yet 500K downloads/week, potential for malicious use: l1nq.com/Zg3ic #NodeJS #npm #Cybersecurity #appsec

We're scanning the @npm registry to find vulnerabilities and malicious code; we're also uncovering cool stats! The most popular packages in the registry: 1. Chalk: buff.ly/2NGNvYl 2. Commander: buff.ly/3OET89M Source: buff.ly/3DZrXBF #javascript #oss

We're excited to bring you some highly anticipated additions to our Audit and Cloud products: monorepos, workspaces, and npm v1 lockfile support. Read all the details here buff.ly/46lVGAR

Sandworm now supports PHP! PHP developers, rejoice! You can now use Sandworm to scan your code for vulnerabilities, ensure that your dependencies are licensed correctly, and manage them effectively. Read all about it here: blog.sandworm.dev/php-composer-s… #PHP #Security #Sandworm

We’ve launched Sandworm Alerts - real time vulnerabilities detected in npm packages. Follow to always stay on top of your security game!