“Discover how Nitro GraphQL seamlessly integrates GraphQL into your project, with type-safe queries and instant updates.” Github: https://t.co/ssdT7Tl6bO

If I can’t deliver an MVP within 48 hours, I drop the project. With today’s technologies, it’s extremely easy, so missing that deadline means I’m wasting time somewhere. And after nitro-graphql launched, this timeframe got even shorter — it used to take a week.

.

.

I'm really torn between making this project open source or converting it to Sass. I also want to make it open source for a better internet. Please help. This project is an AI-powered OG generator.

I thought it suddenly appeared, my heart skipped a beat, I yelled at home, “Don't do it!” 🥲

.

@Railway So it might sound a bit strange, but installing Kubernetes is easier.

The biggest problem with @Railway is the outdated templates. If we’re going to deal with template settings ourselves, I don’t understand why we’re even using it.

🫤 The security of these npm packages has really started to become a problem.

That's a nice idea.

最近两个月，我和 @peoray_ 以及社区的人们为 Vue 社区补充了 AI Elements Vue 项目，他完全对标 Vercel 的 AI Elements，这个现代组件库基于 Shadcn 体系构建，可以快速搭建 AI 应用。希望被更多 Vue 开发者看到。@yuxiyou 尤大可以给推荐下嘛 😜 地址： https://t.co/nbRDJhSOYk

Something no one has noticed: we are approaching the end of the green screen era.

Thank you, @claudeai — without your help yesterday, cleaning up the affected npm packages and issuing warnings would have been much harder. Starting today, we’re moving to maximum security. Our apologies to the community; we were impacted as well.

The importance of pnpm has become even more apparent today. It has some nice features. example this:

Search for the file on your computer named "bun_environment.js". If you find it, then I'm sorry—immediately change all information, tokens, and .env files in your project.

Affected NPM package owners and anyone who downloaded NPM yesterday should take immediate action and clear their NPM caches on their computers, otherwise this will continue to exist secretly.

I see that npm is slowly starting to roll back library versions, which is good news. But we really don't know how many computers it has spread to and is currently sitting on. We are in the middle of a huge breach.🫤

🚨 A new wave of the Shai-Hulud supply chain attack has hit npm, impacting packages across widely used projects from AsyncAPI, ENS, Postman, PostHog, and Zapier. Attackers added a malicious preinstall script following account compromise.

https://t.co/ZAnw2On0iZ

dont used bun install, dont used npm install