5min chapter

JavaScript Archives - Software Engineering Daily cover image

JavaScript Supply Chain with Feross Aboukhadijeh

JavaScript Archives - Software Engineering Daily

CHAPTER

What's the JavaScript Supply Chain?

The JavaScript community is incredibly creative and generative. Part of that comes from the permissionless nature of NPM where anyone can publish a package. There's also an increase in people hijacking packages because maintainers are reusing passwords. We're seeing nearly weekly attacks against the open source software supply chain, mainly coming from hijacked packages.

00:00

Transcript

Episode notes

Get the Snipd
podcast app

Unlock the knowledge in podcasts with the podcast player of the future.

App store banner

Play store banner

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

Save any
moment

Hear something you like? Tap your headphones to save it with AI-generated key takeaways

Share
& Export

Send highlights to Twitter, WhatsApp or export them to Notion, Readwise & more

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode