Lots of Electron news

#​465 — December 1, 2022 Read on the Web The Advent of Code 2022: 25 Days of Code Challenges — If you have a little time each day to do some programming puzzles, the Advent of Code is always fantastic and now in its eighth year. There’s a sub-Reddit where Read more…

Node v19.2.0 (Current)

Notable changes Time zone update Time zone data has been updated to 2022f. This includes changes to Daylight Savings Time (DST) for Fiji and Mexico. For more information, see https://mm.icann.org/pipermail/tz-announce/2022-October/000075.html. Other notable changes buffer (SEMVER-MINOR) introduce 1File class (Khafra) #45139 deps update V8 to 10.8.168.20 (Michaël Zasso) #45230 doc deprecate Read more…

An npm package naming pitfall

#​464 — November 24, 2022 Read on the Web Hyperstack: A New Rails-Inspired Node.js Web Framework — I often hear people say they wished Node had a ‘full’ Web framework akin to Ruby on Rails, here’s a fresh attempt to do just that. Tread carefully; the paint is still fresh. Dotan Nahum Read more…

Deno stabilizes NPM compatibility

NPM compatibility in the Deno JavaScript/TypeScript runtime has reached the stable stage, meaning developers leveraging Deno now can import more than 1.3 million NPM modules. NPM compatibility is featured in Deno 1.28, unveiled November 14. NPM support makes it easier to build apps, the Deno developers said, because developers now Read more…

Node v19.1.0 (Current)

Notable changes Support function mocking on Node.js test runner The 1node:test module supports mocking during testing via a top-level 1mock object. 123456789101112test(‘spies on an object method’, (t) => {   const number = {     value: 5,     add(a) {       return this.value + a;   Read more…

It’s all about security

#​462 — November 10, 2022 Read on the Web Node.js Security Best Practices — A new official document from the Node.js team providing guidelines on securing your Node apps by looking at what the main threats are and how to mitigate them. Node.js Project And.. Node Security Releases: 19.0.1, 18.12.1, 16.18.1 and Read more…

Node v18.12.1 (LTS)

Notable changes The following CVEs are fixed in this release: CVE-2022-3602: X.509 Email Address 4-byte Buffer Overflow (High) CVE-2022-3786: X.509 Email Address Variable Length Buffer Overflow (High) CVE-2022-43548: DNS rebinding in –inspect via invalid octal IP address (Medium) More detailed information on each of the vulnerabilities can be found in Read more…

Node v19.0.1 (Current)

Notable changes The following CVEs are fixed in this release: CVE-2022-3602: X.509 Email Address 4-byte Buffer Overflow (High) CVE-2022-3786: X.509 Email Address Variable Length Buffer Overflow (High) CVE-2022-43548: DNS rebinding in –inspect via invalid octal IP address (Medium) More detailed information on each of the vulnerabilities can be found in Read more…

Node v16.18.1 (LTS)

Notable changes The following CVEs are fixed in this release: CVE-2022-43548: DNS rebinding in –inspect via invalid octal IP address (Medium) More detailed information on each of the vulnerabilities can be found in November 2022 Security Releases blog post. Commits [ 19ffddd7098 ] – inspector: harden IP address validation again Read more…