How can authenticity be ensured for Node.js packages when using a public registry like

I was thinking about how to ensure the authenticity of Node.js packages that are installed from a public registry like The only mechanisms (optionally) in place to my understanding are:

ECDSA registry signatures. Which to my un… Continue reading How can authenticity be ensured for Node.js packages when using a public registry like

Tempus Nectit, a DIY Knitting Clock with Instructions

A white, house-shaped clock with the words "TEMPUS NECTIT" written in faux Roman script in black on a strip of silver at the base of the "roof." a white power cord extends from the left of the enclosure, and the center of the clock is a 22 pin knitting machine wheel with one pin covered in silver metalic. A white plastic peg extends from the bottom right of the enclosure to hold the feedstock yarn.

We’re no strangers to unusual clocks here at Hackaday, and some of our favorites make time a little more tangible like [Kyle Rankin]’s knitting clock. Inspired by our coverage of …read more Continue reading Tempus Nectit, a DIY Knitting Clock with Instructions

Does yarn (Node.js package manager) provide cryptographic authentication and integrity validation?

Does the yarn package manager cryptographically validate its payload’s authentication and integrity for all packages after downloading them and before installing them?
I see a lot of guides providing installation instructions with steps as… Continue reading Does yarn (Node.js package manager) provide cryptographic authentication and integrity validation?

Hand-Made Drum Carder Gets Wool Ready for Spinning

Making a natural fiber like wool into something useful like a sweater involves a lot of steps. We might be familiar with shearing the sheep, spinning the wool into yarn, or knitting and weaving, but between shearing and spinning there’s another unfamiliar process you’ll have to go through. Known as …read more

Continue reading Hand-Made Drum Carder Gets Wool Ready for Spinning

Portable Photo Booth Named Buzz

We’re all used to posing for a picture — or a selfie — but there’s something about photo booths that make getting your photo taken an exciting and urgent affair. To make this experience a bit easier to tote about, Redditor [pedro_g_s] has laboriously built, from the ground up, a mobile photo booth named Buzz.

He needed a touchscreen, a Raspberry Pi, almost definitely a webcam, and a 3D printer to make a case — although any medium you choose will do — to build this ‘booth.’ That said, he’s built the app in a way that a touchscreen isn’t …read more

Continue reading Portable Photo Booth Named Buzz