Blog Home

Addressing the npm Manifest Confusion Vulnerability
July 20, 2023

A potential security risk in the npm ecosystem known as “manifest confusion” has recently been spotlighted in a blog post by Darcy Clarke, a former Staff Engineering Manager at GitHub. Clarke mentioned that JFrog Artifactory seems to replicate this issue, so of course we investigated it right away. In this post, we will explain what …

Read More
8 Steps to npm Registry

How to set up a Private, Remote and Virtual npm Registry
August 10, 2021

最简单的方法来管理和organize your Node dependencies is with an npm repository. You need reliable, secure, consistent and efficient access to your dependencies that are shared across your team, in a central location. Including a place to set up multiple registries, that work transparently with the npm client. With the JFrog cloud …

Read More

Popular Tags