Tech Jan 9, 2026 4 min Critical vulnerabilities in pnpm < 10.26: Update now Two critical vulnerabilities (CVE-2025-69263, CVE-2025-69264) were discovered in pnpm 10.0.0–10.25. They allow lockfile integrity bypass and remote code execution, so immediate updates are required. pnpm Security Vulnerability Node.js
Tech Dec 10, 2025 2 min npm Was Broken So I Switched to pnpm [React2Shell Vulnerability] npm install kept failing with a mysterious error while patching Next.js/React for a security vulnerability. Switching to pnpm fixed it immediately. npm pnpm Node.js Next.js React Security Troubleshooting Experiment
