Thirteen critical vulnerabilities have been found in the vm2 JavaScript sandbox package that could allow an attacker’s code ...

Four npm packages linked to SAP's Cloud Application Programming Model were hijacked. The hackers added code that steals ...

Several npm packages for SAP's cloud application development ecosystem have been compromised as TeamPCP's supply chain ...

Four SAP NPM packages compromised in the Mini Shai-Hulud supply chain attack trigger a Bun runtime to install an information ...

Multiple SAP npm packages were compromised in a supply chain attack designed to steal developer credentials and tokens.

Want to master JavaScript in 2026? These beginner-friendly books make learning simple and effective. From fundamentals to advanced concepts, build strong coding skills with expert-recommended reads.

Multiple npm packages have been compromised as part of a software supply chain attack after a maintainer's account was compromised in a phishing attack. The attack targeted Josh Junon (aka Qix), who ...

JavaScript’s low bar to entry has resulted in one of the richest programming language ecosystems in the world. This month’s report celebrates the bounty, while also highlighting a recent example of ...

A lightning-fast crash course on JavaScript, the world’s most popular programming language. From its 1995 origins as Mocha in Netscape to powering front-end apps, Node.js servers, mobile apps, and ...