AppsFlyer Web SDK used to spread crypto stealer JavaScript code

Malicious JavaScript code delivered by the AppsFlyer Web SDK hijacked cryptocurrency, potentially in a supply-chain attack.

Supply-chain attack using invisible code hits GitHub and other repositories

Researchers say they’ve discovered a supply-chain attack flooding repositories with malicious packages that contain invisible code, a technique that’s flummoxing traditional defenses designed to ...
InfoQ

Webpack Publishes 2026 Roadmap with Native CSS Support, Universal Target, and Path to Version 6

Webpack's 2026 roadmap, led by Even Stensberg, unveils substantial enhancements aimed at modernizing the bundler. Key ...
InfoWorld

Why local-first matters for JavaScript

Every developer should be paying attention to the local-first architecture movement and what it means for JavaScript. Here’s ...
The Caledonian-Record

Champions League's Cinderella club Bodø/Glimt rises after cash-driven Super League rejected

Bodø/Glimt is a feelgood soccer story for the ages just as the divisive and cash-driven Super League project finally ended this month. The timing seems richly ironic. At the Champions ...
InfoQ

Vercel Releases React Best Practices Skill with 40+ Performance Rules for AI Agents

Vercel has launched "react-best-practices," an open-source repository featuring 40+ performance optimization rules for React and Next.js apps. Tailored for AI coding agents yet valuable for developers ...
Fox News

Outraged cruise passengers blast company's 'idiotic' new dress code crackdown

Some Norwegian Cruise Line passengers are blasting the company's new dining dress code policy as "idiotic." T-shirts and shorts are the norm for many cruise lovers, but anyone who wants to dine at ...
GitHub

aashishvanand/airport-data-js

A comprehensive JavaScript library for retrieving airport information by IATA codes, ICAO codes, and various other criteria. This library provides easy access to a large dataset of airports worldwide ...