/home/siddhi
  • Home
  • About
  • General
  • Programming
  • Startup
  • Archive
  • Home
  • About
  • General
  • Programming
  • Startup
  • Archive

More supply chain attacks, this time Axios

Posted 31st March 2026 at 10:00 am
In Programming
security javascript

Things getting wild right now. Axios probably one of the most widely used JS libraries.

The lesson from these recent supply chain attacks is you should ALWAYS pin your ALL dependencies to EXACT versions. Under no circumstance should your app pull in a newer version of a dependency unless you manually update the version in you package.json or pyproject.toml

Wes Bos tweet about Axios being compromised

Recent Articles

  • • Running AI Models Locally on Consumer Hardware Jun 15, 2026
  • • AI Coding for Free Using Local LLMs at Chennaipy Meetup Jun 08, 2026
  • • Pi and Py: Demoing an Open-Source Agentic Coding Assistant Jun 05, 2026
  • • Is Clean Code Still Relevant in the AI Age? May 04, 2026
  • • AI Agents Need Hard Boundaries Apr 24, 2026

Tags

agentic-ai 6 agile 3 ai 11 artificial-intelligence 4 bangalore 1 bookreview 3 career 1 chennaiopencoffee 1 chennaipy 2 claude-code 2 coding 4 computing 1 conference 1 education 2 event 2 functional 2 haskell 1 innovation 1 javascript 2 keyboard 1 keyboards 3 knowledge-management 4 learning 1 management 2 mentalmodels 1 neovim 3 networking 1 obsidian 4 openai 1 pi-agent 1 probability 2 process 1 product-management 4 productivity 1 programming 6 pyscript 1 python 15 quantum-computing 2 recursion 1 rust 1 scheme 1 security 3 selfhelp 1 softskills 1 startup 1 statistics 5 tdd 2 testing 1 travel 1 unconference 2

Categories

  • General (32)
  • Programming (43)
  • Startup (6)

Share

Playful Python Twitter YouTube LinkedIn About

© 2026 Siddharta Govindaraj