Account — Over the past six months, GitHub has been keen to tighten up security around the publishing of
1
npm
packages with two-factor authentication at the heart of the effort. Now an array of improved 2FA features are in public beta for you to try out, but all maintainers of the top 500 npm packages will be enrolled in a mandatory fashion on May 31.
Ryan Dahl on JavaScript Containers — Ryan, originally known for Node and now Deno, thinks about JavaScript as being a universal scripting language and how the JS sandbox acts as a sort of high level version of the traditional Linux container and will only become more important in the next few years.
A common reason for new Node releases is the discovery of vulnerabilities in key dependencies like OpenSSL or (rarely) V8. OpenSSL has a new low severity one explained in this post by Rafael Gonzaga but it’s not significant enough to trigger new Node releases at this time.
GraphQL Yoga 2.0: A Light But Fully-Featured GraphQL Server — Bills itself as the ‘easiest way to run a GraphQL server’. Yoga follows the GraphQL over HTTP spec, supports file uploaded, subscriptions over HTTP Server Sent Events, and more – plus it’ll work on Node, Deno, or even serverlessly. GitHub repo.
Kafka.js 2.0: A Modern Apache Kafka Client — Production ready and supports Kafka 0.10+. (Kafka is a popular open source system for working with stream-processing at scale.) As the first major release in 4 years, there’s a migration guide for existing users.
Find Tech Jobs with Hired — Create a profile on Hired to connect with hiring managers at growing startups and Fortune 500 companies. It’s free for job-seekers.
#566 — February 11, 2025 Read on the Web 🏖️ We’re taking next week off, so the next issue will be on Tuesday, February 25. Feel free to hit reply and send in any submissions!__Peter Read more…
#565 — February 4, 2025 Read on the Web Announcing TypeScript 5.8 Beta: A Big One for Node Developers — It’s unusual for a TypeScript beta to be exciting for Node developers in particular, but while Read more…
#564 — January 28, 2025 Read on the Web A Failed Attempt to Shrink All npm Packages by 5% — What if you could shrink all npm package sizes by 5%.. wouldn’t that benefit all Read more…
0 Comments