Notable Changes Experimental Web Streams API Node.js now exposes an experimental implementation of the Web Streams API. While it is experimental, the API is not exposed on the global object and is only accessible using the new 1stream/web core module: Read more…
The integrated development environment (IDE) remains the centerpiece of developer tools. Online IDEs have ridden the wave of cloud-based tools, growing in power over the last few years. CodeSandbox is one of the more popular options in that space, and Read more…
#396 — July 8, 2021 Read on the Web Node Weekly 1npm audit : Broken by Design — Dan says it best: “The way 1npm audit works is broken. Its rollout as a default after every 1npm install was rushed, Read more…
The integrated development environment (IDE) remains the centerpiece of developer tools. Online IDEs have ridden the wave of cloud-based tools, growing in power over the last few years. CodeSandbox is one of the more popular options in that space, and Read more…
Notable Changes Node.js 16.4.1 introduced a regression in the Windows installer on non-English locales that is being fixed in this release. There is no need to download this release if you are not using the Windows installer. Commits [ 176e709ec63 Read more…
Notable Changes Node.js 12.22.2 introduced a regression in the Windows installer on non-English locales that is being fixed in this release. There is no need to download this release if you are not using the Windows installer. Commits [ 1182f86a4d4 Read more…
Notable Changes Node.js 14.17.2 introduced a regression in the Windows installer on non-English locales that is being fixed in this release. There is no need to download this release if you are not using the Windows installer. Commits [ 10f00104a2c Read more…
Notable Changes Vulnerabilities fixed: CVE-2021-22918: libuv upgrade – Out of bounds read (Medium) Node.js is vulnerable to out-of-bounds read in libuv’s uv__idna_toascii() function which is used to convert strings to ASCII. This is called by Node’s dns module’s lookup() function Read more…
Notable Changes Vulnerabilities fixed: CVE-2021-22918: libuv upgrade – Out of bounds read (Medium) Node.js is vulnerable to out-of-bounds read in libuv’s uv__idna_toascii() function which is used to convert strings to ASCII. This is called by Node’s dns module’s lookup() function Read more…
Notable Changes Vulnerabilities fixed: CVE-2021-22918: libuv upgrade – Out of bounds read (Medium) Node.js is vulnerable to out-of-bounds read in libuv’s uv__idna_toascii() function which is used to convert strings to ASCII. This is called by Node’s dns module’s lookup() function Read more…
