Popular JavaScript library can be hacked allowing access to user accounts

Node-forge cryptography library flaw (CVE-2025-12816) allowed bypass of signature and certificate validation CERT-CC warns of risks including authentication bypass and signed data tampering ...
VentureBeat

Libscore launches to track the most popular JavaScript libraries on the web

Libscore, a service that can tell you which JavaScript libraries the top million websites use, is launching publicly today. Borne out of payments processing startup Stripe’s Open Source Retreat, ...
SD Times

Chainguard launches trusted collection of verified JavaScript libraries

Value stream management involves people in the organization to examine workflows and other processes to ensure they are deriving the maximum value from their efforts while eliminating waste — of ...
ZDNet

Programming language security: These are the worst bugs for each top language

If you're a developer writing code in .NET, C++, Java, JavaScript, PHP or Python, new research highlights the main security vulnerabilities you need to watch out for. Static code analysis security ...
CoinTelegraph

Largest NPM attack in crypto history stole less than $50: SEAL

Hackers broke into the node package manager (NPM) account of a well-known software developer and added malware to popular JavaScript libraries, targeting crypto wallets. Hackers have only managed to ...
InfoWorld

State of JavaScript: Highlights of the JavaScript developer survey

The latest State of JavaScript survey provides an up-close look at the JavaScript language features, tools, libraries, and frameworks developers are using and how they're using them. Getting a ...