Avoiding npm Substitution Attacks — Recently there have been some high profile examples of supply chain attacks on popular source code repositories, such as where fake or eponymous packages are published, but you can reduce your attack surface by taking precautions and managing dependencies. Here’s some tips when using
1
npm
.
Isaac Z. Schlueter
An Interview with Ryan Dahl, the Creator of Node.js and Deno — Ryan created Node.js 11 years ago and in recent years has moved on to Deno where he’s attempting a new take at the same idea. This interview touches on Deno’s challenges and Ryan’s love of Rust and Vim.
WebdriverIO v7 Released — WebdriverIO is a popular browser and mobile automation testing framework for Node. v7 brings it over to TypeScript, improves its Google Lighthouse integration, and improves compiler tool integration. There’s even a brief video about the release.
Find Your Next Job Through Hired — Create a profile on Hired to connect with hiring managers at growing startups and Fortune 500 companies. It’s free for job-seekers.
V8’s Route to Faster JavaScript Method Calls — This gets very technical and fast, but it’s fantastic to see how the V8 team continues to address important performance issues in the world’s most widely used JavaScript engine. This work improves the performance of your Node and browser-facing code alike.
SVGO 2.0: A Node-Based SVG Optimizer — If you’ve worked with SVG (Scalable Vector Graphics) at all, you’ve probably seen they can be filled with all sorts of junk code.. SVGO to the rescue. 2.0.0 just came out and drastically reduces the package size while making API changes.
#541 — July 23, 2024 Read on the Web Node.js v22.5.0 (Current) Released – But Don’t Install It! — A notable release for three reasons: first, the WebSocket feature in 1node:http is now exposed. Second, remember how Read more…
#540 — July 16, 2024 Read on the Web A Guide to Reading and Writing Node.js Streams — A post from the creator of Fastify (and a Node.js TSC member) is always a treat. Matteo Read more…
#539 — July 9, 2024 Read on the Web Node to Get SQLite Built-In? — Deno has its own built in key/value store powered by SQLite – perhaps Node could gain similar powers by this Read more…
0 Comments