Tagged articles

47 articles

Page 1 of 1

May 18, 2026 · Information Security

Why npm Keeps Getting Compromised: A Deep Dive into the Latest node‑ipc Supply‑Chain Attack

On May 14, 2026 three malicious versions of the node‑ipc package were published to npm, injecting obfuscated payloads that steal cloud credentials, SSH keys, AI tool configurations and other sensitive files, and the article analyses the attack stages, historical repeats, npm's structural flaws, and concrete blue‑team mitigation steps.

Credential Theftdetection rulesnode-ipc

0 likes · 12 min read

Why npm Keeps Getting Compromised: A Deep Dive into the Latest node‑ipc Supply‑Chain Attack

Alipay Experience Technology

Apr 15, 2026 · Frontend Development

How utoo Redefines npm: Rust‑Powered Performance and Full Compatibility

This article examines utoo, a Rust‑rewritten npm package manager that achieves near‑instant installs and dramatically smaller caches while remaining a drop‑in replacement for npm, detailing its architecture, benchmark comparisons with npm, pnpm and bun, and practical usage guidance.

CompatibilityRustfrontend

0 likes · 16 min read

How utoo Redefines npm: Rust‑Powered Performance and Full Compatibility

Liangxu Linux

Apr 6, 2026 · Industry Insights

Why Does Linux Need Dependencies While Windows Installs with One Click?

The article compares Linux's reusable, dependency‑driven packaging model with Windows' all‑in‑one installer approach, explains how package managers try to resolve dependency hell, examines modern hybrid solutions like Snap and Docker, and concludes that each method has trade‑offs suited to different scenarios.

LinuxSoftware InstallationWindows

0 likes · 5 min read

Why Does Linux Need Dependencies While Windows Installs with One Click?

Code Mala Tang

Mar 19, 2026 · Backend Development

Why Bun Beats npm and Node: A Deep Dive into Its Speed and Built‑in Tools

This article examines how Bun’s ultra‑fast package manager, integrated JavaScript runtime, native test runner, and built‑in database/S3 client together deliver a faster, lighter, and more streamlined development experience compared to traditional Node.js and npm workflows.

BunJavaScript runtimeTooling

0 likes · 8 min read

Why Bun Beats npm and Node: A Deep Dive into Its Speed and Built‑in Tools

Rare Earth Juejin Tech Community

Sep 29, 2025 · Backend Development

Why pnpm Beats npm: Mastering Efficient Node.js Dependency Management

This article explains how pnpm improves on npm by using OS‑level hard links and symbolic links to eliminate duplicate package copies, dramatically speed up installations, and guarantee dependency consistency, making it a superior choice for modern Node.js projects.

Symbolic Linksdependency managementhard links

0 likes · 16 min read

Why pnpm Beats npm: Mastering Efficient Node.js Dependency Management

21CTO

Jun 7, 2025 · Backend Development

How the Linux Foundation’s FAIR Package Manager Aims to Stabilize WordPress

The Linux Foundation introduced the FAIR package manager to provide a neutral, decentralized way of distributing WordPress plugins and updates, aiming to reduce central‑control risks, improve supply‑chain security, and restore stability to the WordPress ecosystem.

Linux FoundationWordPresspackage manager

0 likes · 7 min read

How the Linux Foundation’s FAIR Package Manager Aims to Stabilize WordPress

php Courses

Apr 17, 2025 · Fundamentals

Python Virtual Environments and Package Management Tools: Creation, Usage, and Comparison

This article explains why Python virtual environments are needed, how to create and manage them with venv, and compares the main package management tools pip, pipenv, and poetry, offering guidance on selecting the appropriate tool for different project scenarios.

PoetryPythonpackage manager

0 likes · 6 min read

Python Virtual Environments and Package Management Tools: Creation, Usage, and Comparison

Rare Earth Juejin Tech Community

Feb 21, 2025 · Frontend Development

Understanding pnpm: Solving Dependency Management Issues in Modern Frontend Development

This article explains the evolution of JavaScript package managers, the shortcomings of npm and Yarn such as duplicated installations, phantom dependencies and unpredictable dependency trees, and demonstrates how pnpm’s content‑addressable store, hard‑link and symlink strategy provides faster installs, reduced disk usage, and more reliable dependency isolation for frontend projects.

YARNdependency managementfrontend development

0 likes · 22 min read

Understanding pnpm: Solving Dependency Management Issues in Modern Frontend Development

Java Tech Enthusiast

Feb 8, 2025 · Cloud Native

Bun 1.2 Release: Enhanced Node.js Compatibility, Built-in Database & Cloud-Native Features

Bun 1.2 delivers its biggest upgrade yet, boosting Node.js compatibility above 90% for core modules, adding built‑in PostgreSQL and native S3 support that outperforms the AWS SDK, switching to a readable lock file for faster installs, enhancing testing tools, and improving HTTP/2, filesystem, JSON and Windows performance while targeting remaining compatibility gaps.

BunCloud NativeJavaScript runtime

0 likes · 5 min read

Bun 1.2 Release: Enhanced Node.js Compatibility, Built-in Database & Cloud-Native Features

Rare Earth Juejin Tech Community

Jan 14, 2025 · Backend Development

Understanding npm, Yarn, and pnpm: Dependency Management, Flat Dependencies, and pnpm's Store Mechanism

This article examines the evolution of JavaScript package managers—from npm's nested node_modules structure to Yarn's flat dependencies and finally pnpm's global store with hard‑ and soft‑link mechanisms—highlighting how each approach addresses path length, disk‑space waste, installation speed, and ghost‑dependency issues.

Hard LinkYARNdependency management

0 likes · 8 min read

Understanding npm, Yarn, and pnpm: Dependency Management, Flat Dependencies, and pnpm's Store Mechanism

21CTO

Dec 24, 2024 · Fundamentals

Exploring SvarDOS: A Minimalist DOS Package Manager for Modern PCs

SvarDOS is a newly independent open‑source DOS distribution that fits on a floppy, supports networking, runs classic software like MS Word 6, and offers a modern package manager with online updates, making retro computing on virtual machines and old hardware both practical and enjoyable.

DoSFreeDOSSvarDOS

0 likes · 10 min read

Exploring SvarDOS: A Minimalist DOS Package Manager for Modern PCs

Eric Tech Circle

Dec 24, 2024 · Fundamentals

Essential Mac Apps Every Web Full‑Stack Developer Should Use

This guide lists the must‑have macOS applications for web full‑stack developers, covering productivity terminals, markdown editors, IDEs, mobile mini‑program tools, container management, database clients, lightweight editors, AI‑enhanced code editors, and essential package managers to streamline the entire development workflow.

DockerIDEMac

0 likes · 7 min read

Essential Mac Apps Every Web Full‑Stack Developer Should Use

Code Mala Tang

Dec 7, 2024 · Backend Development

Can vlt and vsr Solve npm’s Biggest Security and Dependency Headaches?

While npm has powered JavaScript’s growth, its ecosystem suffers from manifest inconsistencies, security vulnerabilities, bloated dependencies, versioning ambiguities, and supply‑chain attacks; the newly announced vlt package manager and vsr serverless registry aim to address these flaws with faster installs, smart queries, visual tools, and fine‑grained access control.

Node.jsnpmpackage manager

0 likes · 11 min read

Can vlt and vsr Solve npm’s Biggest Security and Dependency Headaches?

Full-Stack Cultivation Path

Dec 6, 2024 · Frontend Development

Corepack: The Next‑Generation Node.js Package Manager

The article reviews the evolution of JavaScript package managers, compares npm, Yarn, and pnpm, introduces Corepack as Node.js 16.9.0's experimental tool for consistent manager versions, explains its features and usage steps, and discusses remaining challenges such as version conflicts and limited advanced capabilities.

CorepackNode.jsYARN

0 likes · 8 min read

Corepack: The Next‑Generation Node.js Package Manager

IT Services Circle

Nov 13, 2024 · Backend Development

Exploring Deno 2 and Bun as Modern JavaScript Package Managers

Both Deno 2 and Bun, the newly released JavaScript runtimes, can function as independent package managers, offering compatibility with Node.js and npm, support for various dependency sources, performance optimizations, and unique commands such as deno install, add, remove, and Bun’s workspace and caching features.

BunDenoJavaScript

0 likes · 8 min read

Exploring Deno 2 and Bun as Modern JavaScript Package Managers

Open Source Tech Hub

Aug 19, 2024 · Backend Development

Master Composer: Dependency Management, Autoloading, and Global Configuration for PHP

Composer is a PHP dependency manager that automates library installation, version locking, autoloading, and integrates with tools like PHPUnit; the guide explains its core features, installation steps, use of domestic mirrors, global and project‑specific configuration, package requiring commands, and the importance of the composer.lock file.

ComposerPHPbackend-development

0 likes · 12 min read

Master Composer: Dependency Management, Autoloading, and Global Configuration for PHP

Rare Earth Juejin Tech Community

Jul 27, 2024 · Fundamentals

Understanding pnpm: High‑Performance npm, Monorepo Support, and Practical Usage Guide

This article explains what pnpm is, how it saves disk space and speeds up installations using hard links and symlinks, introduces the monorepo development model and its relationship with package managers, and provides step‑by‑step instructions for installing pnpm, configuring workspaces, and managing dependencies in a monorepo setup.

MonorepoWorkspacepackage manager

0 likes · 12 min read

Understanding pnpm: High‑Performance npm, Monorepo Support, and Practical Usage Guide

Goodme Frontend Team

May 6, 2024 · Frontend Development

npm vs Yarn vs pnpm: Which JavaScript Package Manager Wins in Speed and Space?

This article traces the evolution of JavaScript package managers—from early manual inclusion methods to npm, Yarn, and pnpm—detailing their architectures, performance characteristics, version‑locking mechanisms, and trade‑offs, helping developers choose the most suitable tool for modern frontend projects.

Node.jsYARNfrontend development

0 likes · 12 min read

npm vs Yarn vs pnpm: Which JavaScript Package Manager Wins in Speed and Space?

Liangxu Linux

Dec 19, 2023 · Frontend Development

npm vs pnpm vs yarn: Which JavaScript Package Manager Should You Use?

This article compares npm, pnpm, and yarn—detailing their features, installation commands, speed, disk usage, concurrency, and stability—to help developers choose the most suitable JavaScript package manager for their projects.

JavaScriptYARNfrontend development

0 likes · 6 min read

npm vs pnpm vs yarn: Which JavaScript Package Manager Should You Use?

Open Source Linux

Nov 20, 2023 · Cloud Native

Master Helm: One‑Click Kubernetes Deployments and Management Guide

This article explains how Helm, the Kubernetes package manager, simplifies deploying multiple micro‑service applications with a single command, covering its core features, workflow, key concepts, step‑by‑step usage, release management, installation order, and a comprehensive command reference.

Cloud NativeDeploymentDevOps

0 likes · 14 min read

Master Helm: One‑Click Kubernetes Deployments and Management Guide

MaGe Linux Operations

May 29, 2023 · Cloud Native

Master One-Click Kubernetes Deployments with Helm: A Complete Guide

This article explains how Helm simplifies Kubernetes deployments by providing a package manager that supports single‑command installation, high configurability, version control, templating, chart repositories, and plugins, and it walks through Helm's workflow, core concepts, usage steps, installation order, and a comprehensive command reference.

Kubernetesci/cdhelm

0 likes · 14 min read

Master One-Click Kubernetes Deployments with Helm: A Complete Guide

TAL Education Technology

Apr 6, 2023 · Backend Development

Summary of npm, Yarn, and pnpm Package Managers

This article reviews the evolution of Node.js package managers—from npm2's nested dependencies to Yarn's flat model, npm3's symlink approach, and pnpm's content‑addressable store—highlighting their installation commands, advantages, drawbacks, and impact on disk usage and dependency management.

dependency managementnpmpackage manager

0 likes · 11 min read

Summary of npm, Yarn, and pnpm Package Managers

SQB Blog

Mar 10, 2023 · Frontend Development

Why MonoRepo with pnpm Boosts Frontend Efficiency and Simplifies Dependency Management

This article explains how adopting a MonoRepo strategy combined with pnpm's workspace feature can streamline front‑end project structures, reduce duplicate dependencies, improve version control, and eliminate ghost dependencies, ultimately speeding up development and release processes.

MonorepoWorkspacedependency management

0 likes · 13 min read

Why MonoRepo with pnpm Boosts Frontend Efficiency and Simplifies Dependency Management

TAL Education Technology

Mar 2, 2023 · Backend Development

Exploring pnpm: A High‑Performance Package Manager for Node.js

This article introduces pnpm, compares it with npm and yarn, explains the problems of nested node_modules such as ghost dependencies and split packages, and demonstrates pnpm’s link‑based architecture, advantages, and basic command usage for efficient JavaScript project management.

MonorepoSoft Linkshard links

0 likes · 6 min read

Exploring pnpm: A High‑Performance Package Manager for Node.js

Laravel Tech Community

Jan 9, 2023 · Backend Development

pnpm 7.23 Release: New Features and Patches

The pnpm 7.23 update introduces a workspace‑root peer‑resolution option, adds command‑line help entries for the -resum-from and -include-workspace-root flags, and continues to emphasize pnpm’s disk‑space‑saving content‑addressable store for Node.js projects.

Node.jsdependency managementpackage manager

0 likes · 2 min read

pnpm 7.23 Release: New Features and Patches

DevOps Cloud Academy

Jan 4, 2023 · Cloud Native

Helm Quickstart Tutorial: Managing Kubernetes Applications with Helm Charts

This tutorial explains what Helm is, how to create and customize Helm charts, and demonstrates practical commands for installing, upgrading, rolling back, and uninstalling applications on Kubernetes, highlighting Helm's benefits for simplifying deployments, version control, and CI/CD workflows.

DevOpsKubernetescharts

0 likes · 18 min read

Helm Quickstart Tutorial: Managing Kubernetes Applications with Helm Charts

Alipay Experience Technology

Aug 18, 2022 · Backend Development

How cnpm rapid Accelerates npm Installations by Up to 10× with FUSE and Overlay

This article explains the implementation principles of cnpm rapid mode, demonstrates how server‑side dependency‑tree generation, high‑speed downloading, tar‑based disk I/O, and a FUSE‑backed overlay filesystem together achieve up to ten‑fold faster npm installations and seamless CI/CD integration.

FUSENode.jsOverlay Filesystem

0 likes · 14 min read

How cnpm rapid Accelerates npm Installations by Up to 10× with FUSE and Overlay

Continuous Delivery 2.0

Apr 18, 2022 · Fundamentals

Why Dependency Management Matters and How to Do It Right

This article explains the critical role of dependency management in modern software development, illustrates common risks with real‑world examples, defines what a dependency is, describes package managers, and provides practical guidelines for selecting and using external packages safely.

dependency managementpackage managersoftware risk

0 likes · 12 min read

Why Dependency Management Matters and How to Do It Right

Liangxu Linux

Mar 14, 2022 · Operations

How to Install and Use Minder Mind‑Map on Linux: Build, Packages, and Flatpak

This guide explains what Minder mind‑map software is, lists the required build dependencies, shows how to compile it from source, provides package‑manager commands for Arch, Void, Fedora, and Debian/Ubuntu, and details Flatpak installation and basic usage features.

FlatpakMindermind map

0 likes · 7 min read

How to Install and Use Minder Mind‑Map on Linux: Build, Packages, and Flatpak

Alibaba Terminal Technology

Mar 10, 2022 · Frontend Development

Why npm, Yarn, pnpm, cnpm, tnpm, and Deno Differ in Dependency Management – A Deep Dive

This article examines how npm, Yarn, pnpm, cnpm, tnpm, and Deno handle dependency installation, version locking, and node_modules structures, highlighting the evolution from nested to flattened layouts, the emergence of phantom and multiple dependencies, and the trade‑offs of each approach.

DenoYARNdependency management

0 likes · 21 min read

Why npm, Yarn, pnpm, cnpm, tnpm, and Deno Differ in Dependency Management – A Deep Dive

Programmer DD

Mar 7, 2022 · Frontend Development

How pnpm Saves Disk Space and Boosts Install Speed for JavaScript Projects

This article introduces pnpm, a fast and efficient JavaScript package manager that reduces disk usage by sharing dependencies, explains its core principles, highlights key features such as monorepo support and strict node_modules layout, and provides multiple installation methods for various operating systems.

disk spacefrontend developmentpackage manager

0 likes · 4 min read

How pnpm Saves Disk Space and Boosts Install Speed for JavaScript Projects

Programmer DD

Nov 13, 2021 · Fundamentals

Install Homebrew on macOS Using a Chinese Mirror to Bypass Network Blocks

This guide shows how to resolve Homebrew installation failures on macOS caused by network restrictions by using a domestic Gitee mirror, including step‑by‑step commands, host file tweaks, and verification of the successful setup.

GiteeHomebrewInstallation

0 likes · 3 min read

Install Homebrew on macOS Using a Chinese Mirror to Bypass Network Blocks

php Courses

Aug 24, 2021 · Backend Development

Configuring Alibaba Cloud Composer Mirror for PHP Projects

This guide explains how to set up Alibaba Cloud's Composer mirror, provides global and project‑specific configuration commands, and offers debugging and troubleshooting steps to ensure fast and reliable PHP package management using the latest Composer version.

BackendConfigurationMirror

0 likes · 3 min read

Configuring Alibaba Cloud Composer Mirror for PHP Projects

ITPUB

Jul 20, 2021 · Fundamentals

Boost Your Windows Development Workflow: Top Mac-to-Windows Tools Compared

After switching from macOS to Windows for development, this guide reviews essential productivity tools—including terminal emulators, package managers, file‑search utilities, and Explorer tab extensions—showing installation steps, key features, and common pitfalls to help developers create a comfortable and efficient Windows workspace.

Windowspackage managerproductivity

0 likes · 6 min read

Boost Your Windows Development Workflow: Top Mac-to-Windows Tools Compared

ByteFE

Jun 3, 2021 · Frontend Development

An In‑Depth Overview of pnpm: Fast, Disk‑Space‑Efficient Package Manager

This article introduces pnpm, a fast and disk‑space‑efficient JavaScript package manager that improves on npm and Yarn, explains its core features such as speed, content‑addressable storage, monorepo support, and strict dependency management, and provides practical usage examples and security considerations.

Nodedependency managementdisk space

0 likes · 15 min read

An In‑Depth Overview of pnpm: Fast, Disk‑Space‑Efficient Package Manager

Open Source Linux

Mar 16, 2021 · Backend Development

How to Install Node.js on Linux: NVM, Package Managers, and NodeSource

This guide walks you through multiple ways to install Node.js on Linux—including the recommended NVM method, using distribution package managers for stable releases, and adding NodeSource repositories for the latest versions—covering version listing, switching, setting defaults, and removal, with full command examples and screenshots.

InstallationLinuxNVM

0 likes · 11 min read

How to Install Node.js on Linux: NVM, Package Managers, and NodeSource

Liangxu Linux

Mar 2, 2021 · Backend Development

How to Install Node.js on Linux Using NVM, Packages, and NodeSource

This guide walks you through installing Node.js on various Linux distributions by using NVM for version management, native package managers for stable releases, and the NodeSource repository for the latest versions, complete with commands, verification steps, and troubleshooting tips.

LinuxNVMNode.js

0 likes · 13 min read

How to Install Node.js on Linux Using NVM, Packages, and NodeSource

ITPUB

Feb 15, 2021 · Information Security

How Hackers Exploit Dependency Confusion to Breach Major Tech Companies

This article explains how simple yet powerful dependency‑confusion attacks let attackers upload malicious packages to public registries, exfiltrate data via DNS, and compromise internal systems of companies like PayPal, Shopify, Apple and others, highlighting the methodology, results, root causes and mitigation ideas.

Bug Bountydependency confusionnpm

0 likes · 13 min read

How Hackers Exploit Dependency Confusion to Breach Major Tech Companies

ELab Team

Feb 9, 2021 · Frontend Development

Why Yarn Beats npm: Deep Dive into Its Architecture and Workflow

This article explores Yarn’s architecture and workflow, comparing it with npm, cnpm, and pnpm, detailing multi‑threaded installation, caching, dependency resolution, lockfile handling, and step‑by‑step processes from package fetching to linking, optimization, and common Q&A, illustrated with code snippets.

YARNdependency resolutionnpm

0 likes · 22 min read

Why Yarn Beats npm: Deep Dive into Its Architecture and Workflow

Laravel Tech Community

Jan 27, 2021 · Operations

baulk 2.0 Introduces Experimental untar and unzip Commands with Advanced ZIP Features

The Windows‑only baulk package manager version 2.0 adds experimental untar and unzip sub‑commands, detailing untar's support for various tar formats and unzip's robust baulk::archive::zip implementation that handles many compression methods, filename encoding detection, SIMD‑accelerated decompression, and strict path security.

OperationsWindowsarchive

0 likes · 3 min read

baulk 2.0 Introduces Experimental untar and unzip Commands with Advanced ZIP Features

Programmer DD

May 23, 2020 · Operations

What Is Windows Package Manager (winget) and How Can It Simplify Software Installation?

Microsoft unveiled winget, an open‑source Windows Package Manager, at Build 2020, detailing its command‑line tool for searching, installing, and managing software, its roadmap toward v1.0 release in May 2021, and how developers and ISVs can leverage it for streamlined app distribution.

Windowscommand-linepackage manager

0 likes · 4 min read

What Is Windows Package Manager (winget) and How Can It Simplify Software Installation?

Cloud Native Technology Community

Nov 15, 2019 · Cloud Native

Helm 3 Release: Fixing Helm 2’s Flaws and Simplifying Kubernetes Package Management

The November 13 Helm 3 release eliminates Tiller, addresses major Helm 2 shortcomings such as template engine bugs, hook handling, and resource conflicts, and introduces a cleaner architecture that aligns Helm with modern Kubernetes practices while offering new features like multi‑cluster support and dependency checks.

DevOpsInfrastructurehelm

0 likes · 7 min read

Helm 3 Release: Fixing Helm 2’s Flaws and Simplifying Kubernetes Package Management

21CTO

May 7, 2019 · Fundamentals

Why Mastering the Command Line Is Still Essential for Developers

This article explains why command‑line tools remain vital for modern developers, covering their efficiency, automation potential, essential shells, editors, multiplexers, package managers, and practical tips that boost productivity compared to graphical interfaces.

CLIShellcommand-line

0 likes · 16 min read

Why Mastering the Command Line Is Still Essential for Developers

UC Tech Team

Sep 28, 2018 · Mobile Development

Swift 4.2 Released: New Features, Improvements, and Migration Guide

Swift 4.2 has been officially released, bringing faster compilation, enhanced debugging, extensive standard‑library updates, binary‑compatibility progress, numerous language and compiler enhancements, new Swift Package Manager capabilities, and clear migration guidance for developers moving from earlier Swift versions.

Programming LanguageSwiftSwift 4.2

0 likes · 6 min read

Swift 4.2 Released: New Features, Improvements, and Migration Guide

Node Underground

Jul 20, 2017 · Frontend Development

How to Build a Minimal Package Manager from Scratch

This article explains why package managers are essential, showcases Yarn's step‑by‑step tutorial for creating a simple package manager, and highlights how the resulting tool handles classic challenges like circular dependencies and file‑structure optimization.

YARNdependency resolutionpackage manager

0 likes · 2 min read

How to Build a Minimal Package Manager from Scratch

CSS Magic

Oct 13, 2016 · Frontend Development

Yarn Explained: Facebook’s Faster, Safer JavaScript Package Manager

The article details how Facebook built Yarn to overcome npm’s consistency, security, and speed limitations, describing the evolution of their package‑management workflow, Yarn’s lockfile architecture, parallel installation process, additional features, production adoption, and simple commands to get started.

JavaScriptYARNfrontend

0 likes · 13 min read

Yarn Explained: Facebook’s Faster, Safer JavaScript Package Manager

Node Underground

Oct 12, 2016 · Frontend Development

Why Yarn Is Changing JavaScript Package Management: Speed, Versioning, and the npm Rivalry

The article examines Yarn, Facebook's new JavaScript package manager, highlighting its focus on speed and version control, its compatibility with npm and Bower, the mixed reactions from developers, and the uncertainty about its long‑term impact on the ecosystem.

YARNdependency managementnpm

0 likes · 2 min read

Why Yarn Is Changing JavaScript Package Management: Speed, Versioning, and the npm Rivalry