OpenSSL: CA certificate check bypass with X509_V_FLAG_X509_STRICT – this relates to security checks on certificates with more details here.
OpenSSL: NULL pointer deref in
1
signature_algorithms
processing – a TLS server can be made to crash if sent a maliciously crafted renegotiation message.
npm upgrade: Update y18n to fix Prototype-Pollution – Maliciously overwriting the prototypes of objects is called prototype pollution and this affects an issue with that in
1
y18n
. Affects 14.x, 12.x, and 10.x only.
Get Visibility into Your Node Apps with End-To-End Traces — Datadog’s distributed tracing and APM generates flame graphs from real requests, enabling you to visualize app performance in real-time. Pivot seamlessly to related logs and metrics without switching tools for full context. Try Datadog APM free.
Initializer Blocks in V8 9.1 — Sure, it looks a little Java-y, but this new syntax gives you a defined place to put code that runs just once for a defined class. Expect this in Chrome 91 (and therefore V8 9.1, we assume).
Shu-yu Guo
💻 Jobs
Find Software Engineering Jobs with Hired — Take 5 minutes to build your free profile & start getting interviews for your next job. Companies on Hired are actively hiring right now.
Hired
Node.js Developer at X-Team (Remote) — Join the most energizing community for developers and work on long-term projects for Riot Games, FOX, Sony, Coinbase, and more.
Node Development with Docker and Docker Compose — Using Docker and Docker Compose to develop Nod projects can be a good option, especially if working in a team. This article provides a walk-through of a possible setup and some pros and cons of the approach.
active-win: Get Metadata About the Active Window — I haven’t thought of a good use for this yet but it’s interesting. Running it in the terminal, say, gives you the title, width, height, x and y of the window.
#548 — September 17, 2024 Read on the Web nano-spawn: Tiny Execa-Inspired Process Execution — If you’re familiar with Sindre’s powerful Execa for running commands from a Node app in a robust manner, 1nano-spawn offers Read more…
#547 — September 10, 2024 Read on the Web Express.js 5.0 Released; Sort Of — After a long period of seeming to merely be on life support, work on Express picked up significantly earlier this Read more…
#546 — September 3, 2024 Read on the Web Prisma 5.19.0, Now with ‘Typed SQL’ — Prisma is a popular declaratively-driven ORM in the Node.js / TypeScript world and its new version makes it possible Read more…
0 Comments