- https://blog.npmjs.org/post/180565383195/details-about-the-event-stream-incident
- https://snyk.io/blog/a-post-mortem-of-the-malicious-event-stream-backdoor/
- https://www.stepsecurity.io/blog/ctrl-tinycolor-and-40-npm-packages-compromised
- https://docs.npmjs.com/cli/v8/configuring-npm/package-lock-json
- https://www.endorlabs.com/learn/how-to-defend-against-npm-software-supply-chain-attacks
Chris DeMars chrisdemars
chrisdemars
/ resources.md
Last active
January 27, 2026 22:29
Ghosts in the Machine: Tampering with the JS Supply Chain
chrisdemars
/ resources.md
Last active
January 7, 2026 19:07
Possessed by Packages: Is Your JavaScript Haunted?
- https://snyk.io/blog/typosquatting-attacks/
- https://www.securityweek.com/react-native-aria-packages-backdoored-in-supply-chain-attack/
- https://www.ivanti.com/blog/software-supply-chain-attack-risk
- https://www.securityweek.com/popular-scraping-tools-npm-package-compromised-in-supply-chain-attack/
- https://www.cisa.gov/sites/default/files/2024-10/SBOM%20Framing%20Software%20Component%20Transparency%202024.pdf
- https://www.cisa.gov/topics/cyber-threats-and-advisories/sbom/sbomresourceslibrary
- https://anchore.com/blog/sbom-and-policy-as-code-a-developers-guide/
- https://asimily.com/blog/what-are-sboms-and-why-you-should-care/
- https://github.com/CycloneDX/cyclonedx-cli
- https://www.nist.gov/itl/executive-order-14028-improving-nations-cybersecurity/software-security-supply-chains-software-1
chrisdemars
/ resources.md
Last active
November 4, 2025 01:38
Close Encounters of the Data Kind: Exploring UFO Sightings with MongoDB and NextJS
- https://www.sos.mo.gov/symbol/ufo
- https://www.mongodb.com/
- https://www.mongodb.com/products/tools/compass
- https://mui.com/material-ui/
- https://www.netlify.com/
- https://fox4kc.com/news/missouri-news/ufo-sightings-missouri-among-states-deemed-ufo-hotspots/
- https://www.ozarksfirst.com/news/ufo-sightings-missouri-data/
- https://www.securityweek.com/react-native-aria-packages-backdoored-in-supply-chain-attack/
- https://www.ivanti.com/blog/software-supply-chain-attack-risk
- https://www.securityweek.com/popular-scraping-tools-npm-package-compromised-in-supply-chain-attack/
- https://www.cisa.gov/sites/default/files/2024-10/SBOM%20Framing%20Software%20Component%20Transparency%202024.pdf
- https://www.cisa.gov/topics/cyber-threats-and-advisories/sbom/sbomresourceslibrary
- https://anchore.com/blog/sbom-and-policy-as-code-a-developers-guide/
- https://asimily.com/blog/what-are-sboms-and-why-you-should-care/
- https://github.com/CycloneDX/cyclonedx-cli
- https://www.nist.gov/itl/executive-order-14028-improving-nations-cybersecurity/software-security-supply-chains-software-1
- https://www.federalregister.gov/documents/2021/05/17/2021-10460/improving-the-nations-cybersecurity
chrisdemars
/ resources.md
Created
January 7, 2024 03:28
Unlocking Inclusive Potential: Screen Reader Integration for Hybrid Mobile Apps
chrisdemars
/ resources.md
Created
December 13, 2023 18:20
Crucial Comms: Incident Response with Automation
chrisdemars
/ resources.md
Created
May 16, 2023 04:05
Incorporating screen readers into React Native development for improved accessibility
- https://developer.mozilla.org/en-US/docs/Web/CSS/CSS_Logical_Properties
- https://codepen.io/argyleink/pen/QWwxmrX
- https://css-tricks.com/css-is-going-gosh-darned-hog-wild-i-tell-ya-what/
- https://www.w3.org/TR/css-nesting-1/
- https://codepen.io/argyleink/pen/WNxeBKa
- https://codepen.io/argyleink/pen/pogZxaZ
- https://web.dev/learn/css/pseudo-classes/#:focus-:focus-within-and-:focus-visible
- https://web.dev/accent-color/
NewerOlder