npm has revoked classic tokens for publishing, pushing maintainers toward OIDC trusted publishing or granular tokens. But @openjsf.org warns trusted publishing still has risky gaps for critical projects. What maintainers should do next: socket.dev/blog/npm-rev... #NodeJS #JavaScript

JavaScript is 30. Still running the web & still our favorite. 💛✨ The OpenJS Foundation is grateful for every contributor who has shaped its path, and we look forward to the continued growth of this community.

ICYMI: We wrote some concrete npm security suggestions for JavaScript maintainers to help guard against Shai-Hulud style attacks. 👇 openjsf.org/blog/publish...

With npm supply chain attacks on the rise, secure publishing practices are becoming a pressing concern for anyone maintaining npm packages. ⚠️ We've released updated guidance to help maintainers reduce exposure, strengthen release processes, and protect the ecosystem: openjsf.org/blog/publish...

Welcome, Perspective! Our newest incubating project brings advanced real-time analytics and visualization tools to the open source JavaScript ecosystem. Big thanks to our friends at JP Morgan and FINOS. 💙 hubs.la/Q03Q_c8q0

Hello Internet @darcyclarke.me @wesbos.com

We’ll be gathering in SF to celebrate Mikeal Rogers . A night he would’ve loved, and a fundraiser to support his family. 💚 Hope you can join. an-event-mikeal-would-have-liked.com

So cool to be in the room at React Conf when the new React Foundation was announced 💙 with its new home at the Linux Foundation. At @openjsf.org we’re celebrating this big win for JavaScript communities.

Open source foundations don’t run on “magic piles of money.” Registries, CDNs, CI pipelines, security response and compliance work all require sustained support. Read why OpenJS joined peers in signing “Open Infrastructure is Not Free.” 🔗 hubs.la/Q03KtFgr0

New Pride spotlight from @thisismissem.social 🌈💚 She shares how coming out and contributing to open source shaped her journey in tech. Read it here: nodejs.org/en/blog/comm...

Happy Pride 🌈 In our latest blog post, @vcarl.com shares a powerful reflection on open source and identity: nodejs.org/en/blog/comm... We're spotlighting LGBTQ voices in the Node.js community. Got a story to share? Submit a PR: github.com/nodejs/nodej...

We’re heartbroken by the loss of Mikeal Rogers, a key figure in the Node.js ecosystem and a force behind what makes this community what it is. To help preserve his legacy, we’ve opened a GitHub repo for stories, photos, and memories: github.com/nodejs/mikeal 💚 Thank you, Mikeal. hubs.la/Q03t0DVL0

Mikeal was an expert collaborator. When we would discuss something, he'd throw out an "impossible idea" and then talk himself into a path by working with a few of the right people. And then he'd set off and do it. Mikeal was a force that defied Newton's 3rd law. He will be missed by many.

On the shoulders of giants. Mikeal was a friend and constant spark for good. I’ll miss his voice, his heart, and his drive to make things better. ❤️

Great news for the WordPress community and open web 🚀

The OpenJS Foundation is now a CNA for 40 hosted #JavaScript projects, including ESLint, Express, webpack, Fastify, Electron & more. It can assign CVEs, but each project still owns its own disclosure process. ☂️ Learn more: socket.dev/blog/openjs-... #CVE #CyberSecurity

We're excited to welcome cosmos.gl to the OpenJS Foundation! 🌠 A fast, WebGL-powered graph engine that can render 1M+ nodes, right in the browser. Let’s build the future of open viz together ✨ Learn more: openjsf.org/blog/introdu...

Always blown away by how cool our OpenJS Board Directors are!

Maintainers give so much, ask so little. The new Partner Pack is a small thank-you — with tools, training & perks made just for you. maintainermonth.github.com/partner-pack #MaintainerMonth

🎧 #JavaScript powers 98% of all websites. In the latest podcast, Robin Bender Ginn from OpenJS discusses sustaining JavaScript at scale, web security, and community solutions. Learn More about JSConf North America: events.linuxfoundation.org/jsconf-north... Listen Here: openssf.org/podcast/2025...

We had a lot of productive discussions at the Node.js collaboration summit in Paris. Huge thanks to our host @datadoghq.com! Find the notes in https://github.com/openjs-foundation/summit/issues/433 - we'll publish the recordings and a trip report soon!

🚀 #JSConf 2025 is coming ⏰ Save the date: Early Bird tickets open March 10-12 ✅ Save your spot before they sell out 🎤 Want to speak at JSConf? Our Call for Proposals is open through May 11 💡 Topics: Testing, Security, CI/CD, Development & more ✅ Submit now: events.linuxfoundation.org/jsconf-north...

Thanks Brian and Eric for having me on your show!

Hello World. Meet some of my awesome friends. go.bsky.app/DmKWw1e