Notable Changes Vulnerabilities fixed: CVE-2021-22918: libuv upgrade – Out of bounds read (Medium) Node.js is vulnerable to out-of-bounds read in libuv’s uv__idna_toascii() function which is used to convert strings to ASCII. This is called by Node’s dns module’s lookup() function and can lead to information disclosures or crashes. You can Read more…
#395 — July 1, 2021 Read on the Web ✍️ Several readers have written in asking if we can do more frequent recaps of popular things we’ve covered recently. We do an annual roundup as the final issue of each year – here’s 2020’s – but since we’re now exactly Read more…
With Deno Deploy, the developers of the Deno JavaScript/TypeScript runtime are offering a globally distributed virtual machine service that runs JavaScript, TypeScript, and WebAssembly at the edge. The goal is for Deno Deploy to become the best place to host modern server-side JavaScript. Deno Deploy was released as a first Read more…
#394 — June 24, 2021 Read on the Web Node Weekly AdminJS 5.0: An Admin Panel for Node Apps — Formerly known as AdminBro, this is an ‘automatic’ admin interface you introduce to existing apps, wire up to your ODM/ORM, and off you go. You can see a live demo here. Read more…
Summary The Node.js project will release new versions of all supported release lines on or shortly after Thursday, July 1st, 2021. One High severity issue, and three Medium severity issues Impact The 16.x release line of Node.js is vulnerable to two medium severity issues. The 14.x release line of Node.js Read more…
Notable changes async_hooks: stabilize part of AsyncLocalStorage (Vladimir de Turckheim) #37675 deps: upgrade npm to 7.18.1 (npm-robot) #39065 update V8 to 9.1.269.36 (Michaël Zasso) #38273 dns: allow 1–dns-result-order to change default dns verbatim (Ouyang Yadong) #38099 Commits [ 1d2b972ee52 ] – async_hooks: check for empty contexts before removing (Bryan English) Read more…
#393 — June 17, 2021 Read on the Web Node Weekly A Visual Guide to Node.js Streams — Streams aren’t conceptually too difficult to grasp but some visuals fit well and certainly help. Deepal Jayasekara Undici 4.0: An HTTP Client, Written from Scratch for Node — The goal of this project Read more…
Notable Changes [ 16035492c8f ] – deps: update ICU to 69.1 (Michaël Zasso) #38178 [ 19417fd0bc8 ] – errors: align source-map stacks with spec (Benjamin Coe) #37252 Commits [ 187fa636953 ] – assert: refactor to use more primordials (Antoine du Hamel) #36234 [ 1cfff3b4462 ] – assert: refactor to avoid Read more…
#392 — June 10, 2021 Read on the Web Node Weekly Introducing libSquoosh: Experimental Image Optimization from Node — Squoosh is an image optimization web app originally built by a team at Google in 2018 and since then it has been updated and offered in CLI form. Now, Surma has unveiled Read more…
#391 — June 3, 2021 Read on the Web Node Weekly Electron 13.0 Released — Maybe 13 is unlucky for some, but lucky for you if you have cross-platform desktop apps to build with Node! Version 13 gets you onto Chromium 91 (reading files from the clipboard seems to be Read more…
