Does Node.js Need a Mascot? — Go has its cute gopher, Deno has a dinosaur, Bun has, well.. a bun, but what does Node have? Nothing official, as such, and Matteo Collina ponders whether we should change that. Most of the suggestions seem tongue in cheek, but the Node homepage does feel a little bare without something..
Matteo Collina et al.
Node v20.7.0 (Current) Released — A less feature-packed release than usual, but
gets bumped to the recently released v10.1, you can use
to detect if source maps are enabled, multiple
declarations are supported (where each file will override the previous one, as necessary), plus the usual entourage of bug fixes.
💡 Node v18.18.0 (LTS) has also been released and introduces the
flag for pre-loading ESM modules, like how
does for CommonJS modules.
Tracking Errors in a Node.js Application — Bugs in production slow down velocity and often affect the complete trajectory of your release roadmap. In this article, we’ll look at how to make tracking errors and fixing bugs in your Node.js application more convenient, automated, and safe.
Matteo’s Thoughts on Bun — As the creator of Fastify and a Node.js TSC member, it’s interesting to see what Matteo thinks of alternative runtime Bun. He finds it exciting but does not consider it to be a ‘drop-in replacement’ yet, especially as it
does not support Fastify.. OK, as of Bun 1.0.2, it does.
Securing Node Apps by Analyzing Real-World Command Injection Examples — If there’s a vulnerability in an npm package, there’s a bad actor looking to take advantage of it. A particularly nasty vulnerability is when code can be manipulated to run unintended and arbitrary commands. Liran explains the ramifications of such command injections and shows off a real world example.
Chrono 2.7: A Natural Language Date Parser — Give it a string like “today”, “last Friday”, “2 weeks from now”, or even an entire date and time, and it’ll come up with a date object to suit.
depcheck: A Tool to Check for Unused Dependencies — A command line tool that analyzes the dependencies in a project to see how each dependency is used, which dependencies are ‘useless’, and which are missing from
. You can run it with
Djordje Lukic and Junle Li
💻 Hired makes job hunting easy-instead of chasing recruiters, companies approach you with salary details up front. Create a free profile now.
🐘 Postgres user? Postgres Weekly is our sister newsletter focused entirely on the Postgres ecosystem.
📅 If you’re introducing AI and ML technologies into your programming, or intend to, check out the AI Engineer Summit taking place October 8-10 in San Francisco. If you can’t attend in person, you can get a free remote ticket.