InfoWorld

Beyond NPM: What you need to know about JSR

Here's how the JavaScript Registry evolves makes building, sharing, and using JavaScript packages simpler and more secure ...
The Hacker News

Hackers Exploit Metro4Shell RCE Flaw in React Native CLI npm Package

Active attacks exploit Metro4Shell (CVE-2025-11953) in React Native CLI to execute commands and deploy Rust malware.
InfoQ

Rspack Releases Version 1.7: Final 1.x Update Before 2.0 Transition

Rspack 1.7 has launched, enhancing performance and plugin compatibility as it prepares for a major version transition. Key features include improved SWC plugin compatibility, native asset importing as ...