NPM Maintainers Security Review · Dendritic Tech
An 11 line npm package called left-pad with only 10 stars on github was unpublished...it broke some of the most important packages on all of npm. : r/programming
Maybe you should think twice before installing that NPM module?
PDF) Reasons and drawbacks of using trivial npm packages: the developers' perspective
How one developer just broke Node, Babel and thousands of projects in 11 lines of JavaScript • The Register
GitHub - FagnerMartinsBrack/flatten-array: Recursively flattens an Array. I got ownership of this NPM package after the left-pad incident.
PDF) On the Untriviality of Trivial Packages: An Empirical Study of npm JavaScript Packages
One Man Deleted 11 Lines of Code From the Internet and Broke Hundreds of Apps
Is left-pad Indicative of a Fragile JavaScript Ecosystem
Untitled
Drawback of using trivial packages in npm and PyPI . | Download Scientific Diagram
How a Programmer Nearly Broke The Internet by Deleting Just 11 Lines of Code : ScienceAlert
A to Z of NPM Packages
2102: Internet Archive - explain xkcd
STAMPing on event-stream • Hillel Wayne
That Time A Guy Broke The Internet. | by Alex Marz | Nerd For Tech | Medium
Another one-line npm package breaks the JavaScript ecosystem | ZDNET
Protestware on the rise: Why developers are sabotaging their own code | TechCrunch
Talking left-pad, NPM and dependencies in front-end development - Blog - Pusher
A look back at the 'left-pad' incident : r/node
Third npm protestware: 'event-source-polyfill' calls Russia out
The Story of NPM and Left-pad - DEV Community 👩💻👨💻
PDF) On the impact of using trivial packages: an empirical case study on npm and PyPI
Percentage of Published Trivial Packages on PyPI . The dashed vertical... | Download Scientific Diagram
Small world with high risks: a study of security threats in the npm ecosystem | the morning paper
Why it's finally time for developers to address the chaos of Node.js and NPM | TechRepublic
