The project number one this week, Learn Git Branching is a web application that lets you visualize the effects of Git commands such as branch, merge, rebase

However this week’s story is the Event-stream drama.

In a few words, event-stream is a Node.js package included in a lot of popular projects (right now more than 1500 projects depend on it).

A developer was given access to the package and published a version that contains a malicious code. The code was intended to steal information from a crypto-currency wallet.

There were a lot of talks around this drama, about security concerns and the burden of maintaining open-source projects.

It’s a strong reminder that we have to be careful when installing packages from NPM.

LearnGitBranching
LearnGitBranching
+992
An interactive git visualization to challenge and educate!
Vue.js
Vue.js
+788
🖖 A progressive, incrementally-adoptable JavaScript framework for building UI on the web.
33 JS Concepts
33 JS Concepts
+649
📜 33 concepts every JavaScript developer should know.
HTM
HTM
+613
Hyperscript Tagged Markup: JSX alternative using standard tagged templates, with compiler support.
React
React
+607
A declarative, efficient, and flexible JavaScript library for building user interfaces.
Mermaid
Mermaid
+599
Generation of diagram and flowchart from text in a similar manner as markdown
CMS.js
CMS.js
+588
Client-Side JavaScript Site Generator
Awesome
Awesome
+561
Curated list of awesome lists
Eva icons
Eva icons
+522
A pack of more than 480 beautifully crafted Open Source icons. SVG, Sketch, Web Font and Animations support.
Nivo
Nivo
+426
nivo provides a rich set of dataviz components, built on top of the awesome d3 and Reactjs libraries