A security bug affecting the newest core package, accounts-2fa, requires your attention. Meteor developers already using this package should be aware of a recently discovered security vulnerability. This only...
Read More
Vulnerability
[Node.js] Securing your applications Part 3/3
If you haven’t checked out the first two-part of our ‘__Securing your Applications in Node.js__’ series, click here and the second part here. This is a 3-part blog series...
Read More
Avoiding npm substitution attacks using NCM
NodeSource is excited to announce its latest NodeSource Certified Modules – NCM – release. NCM, provides developers and software teams with actionable insights into the risk levels that are...
Read More
Security Release for N|Solid 4.5.6
IMPORTANT: This release of N|Solid v4.5.6 contains a Node.js security release! NodeSource is excited to announce N|Solid v4.5.6 which includes fixes for three medium and one high severity issues....
Read More
Security Release for N|Solid Version 4.5.2
This is a security release for Node.js and includes fixes for three high severity issues. Vulnerabilities fixed in Node.js Updates are now available for v10,x, v12.x, v14.x and v15.x...
Read More
Security Release for N|Solid Version 4.5.5
This is a security release for two vulnerabilities in the path-parse package. Affected versions of this package are vulnerable to Regular Expression Denial of Service (ReDoS) via splitDeviceRe, splitTailRe,...
Read More