Node.js Security Best Practices — A new official document from the Node.js team providing guidelines on securing your Node apps by looking at what the main threats are and how to mitigate them.
Node.js Project
And..Node Security Releases: 19.0.1, 18.12.1, 16.18.1 and 14.21.1 — Three security issues have been resolved in these point releases. Two X.509 certificate verification vulnerabilities, and a bug in Node’s rebinding protector that allowed invalid octal-denoted IP addresses (it might sound niche but where there’s a hacker’s will, there’s a way).
Juan José Arboleda (Node.js Team)
An Intuitive APM for Node.js Developers — AppSignal doesn’t just offer Node.js performance monitoring and error tracking. We have a full set of features to monitor your application from A to Z packed in a clear and intuitive interface. All features are included in all plans.
AppSignal sponsor
Hapi 21: A Simple, Secure Node App Framework — v21 bills itself as a ‘medium-sized release’ focused on modernization and all round Node 18 (and ESM) support. Hapi is notable as having no external dependencies while offering a lot out of the box. GitHub repo.
Deploying a Simple Node App on Several Cloud Providers — You’ve got a Node app, you’ve got nowhere to deploy it.. what to do? Jérémy tries several options including classic and challenger platforms. Note that this is focused on the how (complete with errors and giving up!) with no opinion as to which you should choose.
Jérémy Levy
Using TypeScript with Node.js — Robin has written a short series of three ‘setting up a backend’ posts with this outing covering the bare essentials of bringing TypeScript into Node, including introducing
1
tsc
,
1
ts-node
and installing types of things like Express. A useful primer.
Agenda 5.0: Lightweight Job Scheduling for Node — Uses a MongoDB-backed persistence layer and offers repeatable jobs, delayed jobs, and optional UI and REST API frontends. v5 requires MongoDB 4.0+. The Redis-based Bull is another option to consider in this space if you need something beefier.
Find Tech Jobs with Hired — Create a profile on Hired to connect with hiring managers at growing startups and Fortune 500 companies. It’s free for job-seekers.
#552 — October 22, 2024 Read on the Web Node v23.0.0 (Current) Released — Say hello to the newest release line of Node.js that gets all the cutting edge features first (Node 22 will soon Read more…
#551 — October 15, 2024 Read on the Web 😅 If you didn’t get Node Weekly last week, don’t panic – no one did! We were taking a scheduled week off, but unfortunately forgot to Read more…
#550 — October 1, 2024 Read on the Web µExpress / Ultimate Express: Like Express, But Faster? — It’s not Express, but a reimplementation of Express’s functionality with API compatibility. Based on µWebSockets, and with Read more…
0 Comments