The Changelog
The Changelog

Securing npm is table stakes (Interview)

Jan 29, 2026 · 1h 21m

As the creator and long-time maintainer of ESLint, Nicholas Zakas is well-positioned to criticize GitHub's recent response to npm's insecurity. He found the response insufficient, and has other ideas on how GitHub could secure npm better. On this episode, Nicholas details these ideas, paints a bleak picture of npm alternatives like JSR, and shares our frustration that such a critical piece of internet infrastructure feels neglected.

这集还没有被转录

使用 STT.ai 来用 AI 重写此集 。 获取准确的语音识别、 时间戳和导出多种格式的文字 。

写入此集
监听器检测 单词级时间戳 作为SRT、TXT、JSON出口

更多子集

Astral has been acquired by OpenAI (News)
Mar 27, 2026 · 10m
From Tailnet to platform (Interview)
Mar 11, 2026 · 1h 42m
Big change brings big change (News)
Mar 10, 2026 · 5m
Finale & Friends (Friends)
Mar 02, 2026 · 1h 46m
Opus 4.5 changed everything (Interview)
Feb 27, 2026 · 1h 44m
The mythical agent-month (News)
Feb 23, 2026 · 7m
Selling SDKs in the era of many Claudes (Interview)
Feb 19, 2026 · 1h 50m
All the Claw things (News)
Feb 16, 2026 · 6m
Han shot first (Friends)
Feb 13, 2026 · 2h 0m
Building the machine that builds the machine (Interview)
Feb 11, 2026 · 1h 36m