npm package - Robuta Search

https://pkg-size.dev/ pkg-size | Find the true size of a npm package Find the true size of an npm package npm package pkg size find true https://bundlejs.com/ bundlejs - Online bundler + npm package size checker A quick and easy way to bundle, minify, and compress (gzip and brotli) your ts, js, jsx and npm projects all online, with the bundle file size. npm package online bundler size checker https://safedep.io/malicious-forge-jsx-npm-rat/ forge-jsx npm Package: Purpose-Built Multi-Platform RAT - Real-time Open Source Software Supply... forge-jsx poses as an Autodesk Forge SDK on npm. On install it deploys a system-wide keylogger, recursive .env file scanner, shell history exfiltrator, and a... open source software npm package real time forge jsx Sponsored https://dateplayertwo.com/ Date Player 2 | The Gamer Dating Site Meet your player 2. Effortlessly browse through potential gamers, geeks & cosplayers. It's time to meet local gamers and find your final fantasy! Search by... https://bundlejs.com/?q=%40floating-ui%2Fdom&treeshake=%5B%7B%0A++computePosition%2Cshift%2ClimitShift%2Cflip%2Chide%2Coffset%2Carrow%2CautoPlacement%2Csize%2Cinline%2CautoUpdate%0A%7D%5D&config=%7B%22compression%22%3A%22brotli%22%7D bundlejs - Online bundler + npm package size checker A quick and easy way to bundle, minify, and compress (gzip and brotli) your ts, js, jsx and npm projects all online, with the bundle file size. npm package online bundler size checker https://gitlab.com/eyeo/browser-extensions-and-premium/extensions/extensions/-/commit/3d7329f3bdee4f0425b27f052eac4df3fb1fddb3 build: Pinned npm package versions (3d7329f3) · Commits · eyeo / Browser Extensions and Premium /... ## Context npm is commonly used as an attack vector by introducing malicious packages somewhere in the dependency chain. For this reason we do have... npm package browser extensions build pinned versions https://bundlephobia.com/blog Bundlephobia ❘ cost of adding a npm package npm package cost adding https://safedep.io/malicious-js-logger-pack-npm-stealer/ Malicious npm Package js-logger-pack Ships a Multi-Platform WebSocket Stealer - Real-time Open... js-logger-pack spent three weeks on npm evolving from a probe into a full infostealer and then a binary dropper. Early versions installed an SSH backdoor,... npm package real time js logger ships https://www.csoonline.com/article/4135449/compromised-npm-package-silently-installs-openclaw-on-developer-machines.html Compromised npm package silently installs OpenClaw on developer machines | CSO Online Feb 20, 2026 - While the AI itself wasn’t weaponized, the technique raises concerns about AI agents with broad system access. npm package cso online compromised installs openclaw https://www.infoworld.com/article/4135459/compromised-npm-package-silently-installs-openclaw-on-developer-machines-2.html Compromised npm package silently installs OpenClaw on developer machines | InfoWorld Feb 23, 2026 - While the AI itself wasn’t weaponized, the technique raises concerns about AI agents with broad system access. npm package compromised installs openclaw developer https://www.trendmicro.com/en_us/research/26/c/axios-npm-package-compromised.html Axios NPM Package Compromised: Supply Chain Attack Hits JavaScript HTTP Client with 100M+ Weekly... supply chain attack npm package http client axios compromised https://nodejs.org/learn/getting-started/an-introduction-to-the-npm-package-manager An introduction to the npm package manager | Node.js Learn an introduction npm package node js manager learn https://www.aikido.dev/blog/npm-malware-g-wagon-python-stealer-crypto-wallets G_Wagon: npm Package Deploys Python Stealer Targeting 100+ Crypto Wallets Jan 28, 2026 - npm package ansi-universal-ui delivers GWagon infostealer targeting 100+ crypto wallets, browser credentials, and cloud keys. We analyzed all 10 versions as... npm package crypto wallets wagon python targeting Sponsored https://darlink.ai/ DarLink AI: Free AI Girlfriend Generator | Chat, Photos & Video Create your ideal AI Girlfriend with DarLink AI. Customize her look and personality, chat naturally, and enjoy personalized photos, videos, and voice for a... https://safedep.io/malicious-npm-mgc-compromised-rat/ Compromised npm Package mgc Deploys Multi-Platform RAT - Real-time Open Source Software Supply... The npm package mgc was compromised via account takeover, with four malicious versions published in rapid succession deploying a full Remote Access Trojan... open source software npm package real time compromised mgc https://www.sonatype.com/blog/axios-compromise-on-npm-introduces-hidden-malicious-package Axios Compromise on npm Introduces Hidden Malicious Package Apr 2, 2026 - Malicious axios versions introduced a hidden dependency, exposing systems via npm supply chain attack, targeting trusted packages and dependencies. axios compromise npm introduces hidden https://npmx.dev/ npmx - Package Browser for the npm Registry a fast, modern browser for the npm registry. Search, browse, and explore packages with a modern interface. npmx package browser registry Sponsored https://www.deeper.com/ DEEPER: Bold and Sensual 4K Experiences with a Kinky Twist DEEPER invites you into a world of passion, power, and sensual discovery. Explore elegant encounters with stunning women and light kink themes... https://www.infoworld.com/article/4122299/unplugged-holes-in-the-npm-and-yarn-package-managers-could-let-attackers-bypass-defenses-against-shai-hulud.html Unplugged holes in the npm and yarn package managers could let attackers bypass defenses against... Jan 26, 2026 - A researcher at Koi Security says the two key platforms have not plugged the vulnerabilities enabling the worm attacks, and ‘the JavaScript ecosystem deserves... in the package managers unplugged holes npm https://npmtrends.com/ npm trends: Compare NPM package downloads Which NPM package should you use? Compare packages download stats, bundle sizes, github stars and more. Spot trends, pick the winner. npm trends compare package downloads