Node v22.3.0 (Current) Released — One of those releases where lots of tiny things have occurred, but little of broad significance, except… for snapshot testing! Snapshot tests serialize arbitrary values into string values to be compared against a set of pre-built known ‘good’ values (stored as a ‘snapshot’ representing a desired state).
Rafael Gonzaga
Researchers Uncover npm Registry Vulnerability to Cache Poisoning — The basic idea is that specific versions of target packages can be targeted to appear as if they are no longer available for brief periods of time. This isn’t a huge vulnerability, but still an important one that GitHub is fixing.
Sarah Gooding (Socket)
WorkOS: Modern Identity Platform for B2B SaaS — Start selling to enterprise customers with just a few lines of code. WorkOS provides flexible, easy-to-use APIs to integrate SSO, SCIM, and RBAC in minutes. It’s used by some of the hottest startups in the world including Perplexity, Vercel, & Webflow.
and ‘Are the Types Wrong’ — tsup makes it easy to bundle TypeScript libraries, and Are the Types Wrong? is a tool to analyze packages for issues with their TypeScript types, particularly ESM-related module resolution issues.
#554 — November 5, 2024 Read on the Web Why Code Security Matters – Even in Hardened Environments — A nicely diagrammed deep dive (and it really is deep) into a technique that allows malicious Read more…
#553 — October 29, 2024 Read on the Web Transformers.js v3: Now You Can Run Transformers in Node.js — A JavaScript port of Hugging Face’s 1transformers Python library that makes it possible to run natural Read more…
#552 — October 22, 2024 Read on the Web Node v23.0.0 (Current) Released — Say hello to the newest release line of Node.js that gets all the cutting edge features first (Node 22 will soon Read more…
0 Comments