The Node.js Test CI Security Incident Explained
The Node.js project recently experienced a critical security incident with its test CI infrastructure. Attackers exploited a flaw in the Jenkins pipeline and this post goes into detail about how it came about and was resolved. - https://nodejs.org/en/blog/vulnerability/march-2025-ci-incident
#nodejs
The Node.js project recently experienced a critical security incident with its test CI infrastructure. Attackers exploited a flaw in the Jenkins pipeline and this post goes into detail about how it came about and was resolved. - https://nodejs.org/en/blog/vulnerability/march-2025-ci-incident
#nodejs
nodejs.org
Node.js — Node.js Test CI Security Incident
Node.js® is a free, open-source, cross-platform JavaScript runtime environment that lets developers create servers, web apps, command line tools and scripts.
👍6🤯1
Giving V8 a Heads-Up: Faster Startup with Explicit Compile Hints
Not Node specific but a look at a V8 optimization that may become relevant in time. Explicit Compile Hints let you direct V8 to eagerly compile specific files as a way to speed up startup. It ships with Chrome 136. - https://v8.dev/blog/explicit-compile-hints
#nodejs
Not Node specific but a look at a V8 optimization that may become relevant in time. Explicit Compile Hints let you direct V8 to eagerly compile specific files as a way to speed up startup. It ships with Chrome 136. - https://v8.dev/blog/explicit-compile-hints
#nodejs
v8.dev
Giving V8 a Heads-Up: Faster JavaScript Startup with Explicit Compile Hints · V8
Explicit compile hints control which JavaScript files and functions are parsed and compiled eagerly
👍4
A Decade of Impact: How Our npm Packages Hit 1 Billion Downloads and Shaped JavaScript
A bold title for sure, but with a neat story behind it. - https://forwardemail.net/en/blog/docs/how-npm-packages-billion-downloads-shaped-javascript-ecosystem
#nodejs
A bold title for sure, but with a neat story behind it. - https://forwardemail.net/en/blog/docs/how-npm-packages-billion-downloads-shaped-javascript-ecosystem
#nodejs
Forward Email
A Decade of Impact: How Our npm Packages Hit 1 Billion Downloads and Shaped JavaScript
In the JavaScript and Node.js world, some packages are essential—downloaded millions of times daily and powering apps worldwide. Behind these tools are developers focused on open source quality. Today, we're showing how our team helps build and maintain npm…
👍3❤1
NestJS TypeORM and Multi-Tenancy
Not so different from any other ordinary type of project, multi-tenancy is a software architecture that has been in place for quite a while, and as with any other approach, there are pros and cons. In this article, I plan to walk you through a simple solution I implemented to tackle basic architecture inside the universe of the NestJS framework with TypeORM. - https://medium.com/nestjs-ninja/nestjs-typeorm-and-multi-tenancy-a7f6176e8319
#nodejs
Not so different from any other ordinary type of project, multi-tenancy is a software architecture that has been in place for quite a while, and as with any other approach, there are pros and cons. In this article, I plan to walk you through a simple solution I implemented to tackle basic architecture inside the universe of the NestJS framework with TypeORM. - https://medium.com/nestjs-ninja/nestjs-typeorm-and-multi-tenancy-a7f6176e8319
#nodejs
Medium
NestJS TypeORM and Multi-Tenancy
Not so different from any other ordinary type of project, multi-tenancy is a software architecture that has been in place for quite a…
❤2👍2
Real-Time Data Processing with Node.js, TypeScript, and Apache Kafka
Imagine orchestrating a symphony where each instrument… - https://readmedium.com/real-time-data-processing-with-node-js-typescript-and-apache-kafka-24a53f887326
#nodejs
Imagine orchestrating a symphony where each instrument… - https://readmedium.com/real-time-data-processing-with-node-js-typescript-and-apache-kafka-24a53f887326
#nodejs
Readmedium
Real-Time Data Processing with Node.js, TypeScript, and Apache Kafka
Imagine orchestrating a symphony where each instrument plays in perfect harmony, even though they’re scattered across the globe. Sounds…
👍2
Koa 3.0: The Expressive HTTP Middleware Framework
Koa first appeared over a decade ago as a ‘next-generation’ Web framework that shared some of the lineage (and team) of Express.js, but leaning on more modern JavaScript features and ideas of the time. While Express has been making a comeback recently, Koa has progressed too and offers a compelling alternative. - https://koajs.com/
#nodejs
Koa first appeared over a decade ago as a ‘next-generation’ Web framework that shared some of the lineage (and team) of Express.js, but leaning on more modern JavaScript features and ideas of the time. While Express has been making a comeback recently, Koa has progressed too and offers a compelling alternative. - https://koajs.com/
#nodejs
🤔2🥱1
The Node.js Test CI Security Incident Explained
The Node.js project recently experienced a critical security incident with its test CI infrastructure. Attackers exploited a flaw in the Jenkins pipeline and this post goes into detail about how it came about and was resolved. - https://nodejs.org/en/blog/vulnerability/march-2025-ci-incident
#nodejs
The Node.js project recently experienced a critical security incident with its test CI infrastructure. Attackers exploited a flaw in the Jenkins pipeline and this post goes into detail about how it came about and was resolved. - https://nodejs.org/en/blog/vulnerability/march-2025-ci-incident
#nodejs
nodejs.org
Node.js — Node.js Test CI Security Incident
Node.js® is a free, open-source, cross-platform JavaScript runtime environment that lets developers create servers, web apps, command line tools and scripts.
👍2
Retrieval-Augmented Generation (RAG) with Llama Stack and Node
Meta’s Llama Stack is a unified set of APIs for working with numerous parts of the modern LLM-powered stack, including RAG, as demonstrated here. - https://developers.redhat.com/articles/2025/04/30/retrieval-augmented-generation-llama-stack-and-nodejs
#nodejs
Meta’s Llama Stack is a unified set of APIs for working with numerous parts of the modern LLM-powered stack, including RAG, as demonstrated here. - https://developers.redhat.com/articles/2025/04/30/retrieval-augmented-generation-llama-stack-and-nodejs
#nodejs
Red Hat Developer
Retrieval-augmented generation with Llama Stack and Node.js | Red Hat Developer
With Llama Stack being released earlier this year, we decided to look at how to implement key aspects of an AI application with Node.js and Llama Stack. This post covers retrieval-augmented generation
👍2❤1
npm Targeted by Malware Campaign Mimicking Familiar Library Names - https://socket.dev/blog/npm-targeted-by-malware-campaign-mimicking-familiar-library-names
#nodejs
#nodejs
Socket
NPM targeted by malware campaign mimicking familiar library...
Socket uncovered npm malware campaign mimicking popular Node.js libraries and packages from other ecosystems; packages steal data and execute remote c...
👍2❤1
Why We Created Another Kafka Client for Node.js
Apache Kafka is a popular distributed event streaming platform but the existing client libraries have various flaws, leading Platformatic to release a new one built around modern Node best practices. - https://blog.platformatic.dev/why-we-created-another-kafka-client-for-nodejs
#nodejs
Apache Kafka is a popular distributed event streaming platform but the existing client libraries have various flaws, leading Platformatic to release a new one built around modern Node best practices. - https://blog.platformatic.dev/why-we-created-another-kafka-client-for-nodejs
#nodejs
Platformatic Blog
Why we created another Kafka client for Node.js
Discover our new Kafka client for Node.js, enhancing performance, developer experience, and TypeScript support for seamless integration.
❤1👍1
Best Practices for Creating a Modern npm Package
A step-by-step “as of 2025” walkthrough of creating your own npm package using current best practices. We’ve linked to this before but it’s just been updated. - https://snyk.io/blog/best-practices-create-modern-npm-package/
#nodejs
A step-by-step “as of 2025” walkthrough of creating your own npm package using current best practices. We’ve linked to this before but it’s just been updated. - https://snyk.io/blog/best-practices-create-modern-npm-package/
#nodejs
Snyk
Best Practices for Creating a Modern npm Package with Security in Mind | Snyk
In this tutorial, we’re going to walk step by step through creating an npm package using modern best practices (as of 2022).
👍2
Working with File System Paths and File URLs in Node - https://exploringjs.com/nodejs-shell-scripting/ch_nodejs-path.html
#nodejs
#nodejs
👍3
Node.js TSC Declines to Endorse Feature Bounty Program
There was recently a debate around whether the Node.js project should establish a formal feature bounty program to enable end users to offer monetary rewards for specific features. This post summarizes why the official response is no, for now. - https://socket.dev/blog/node-js-tsc-declines-to-endorse-feature-bounty-program
#nodejs
There was recently a debate around whether the Node.js project should establish a formal feature bounty program to enable end users to offer monetary rewards for specific features. This post summarizes why the official response is no, for now. - https://socket.dev/blog/node-js-tsc-declines-to-endorse-feature-bounty-program
#nodejs
Socket
Node.js TSC Declines to Endorse Feature Bounty Program - Soc...
The Node.js TSC opted not to endorse a feature bounty program, citing concerns about incentives, governance, and project neutrality.
👍3
Six Ways Slack, Notion, and VS Code Improved Electron App Performance
An experienced Electron app developer shares a guide to Electron performance optimization and how to get the most out of your apps. - https://palette.dev/blog/improving-performance-of-electron-apps
#nodejs
An experienced Electron app developer shares a guide to Electron performance optimization and how to get the most out of your apps. - https://palette.dev/blog/improving-performance-of-electron-apps
#nodejs
palette.dev
Build silky smooth web apps
Monitor regressions to interaction performance, down to the line of code.
❤1👍1
Styling Console Text in Node.js
There are numerous ways to do this. - https://2ality.com/2025/05/ansi-escape-sequences-nodejs.html
#nodejs
There are numerous ways to do this. - https://2ality.com/2025/05/ansi-escape-sequences-nodejs.html
#nodejs
2Ality
Styling console text in Node.js
In this blog post, we explore how we can style text that we log to the console in Node.js. Some of the examples use a Unix shell but most of the code should also work on Windows.
👍1
Unpacking Node.js Memory - From Raw Bytes to Usable Data
An introduction to ArrayBuffer, TypedArray, and Buffer. - https://www.banjocode.com/post/node/memory-management
#nodejs
An introduction to ArrayBuffer, TypedArray, and Buffer. - https://www.banjocode.com/post/node/memory-management
#nodejs
Banjocode
Unpacking Node.js Memory - From Raw Bytes to Usable Data | banjocode
Explore how Node.js handles binary data under the hood with a simple guide to ArrayBuffer, TypedArray, and Buffer. Learn how these core concepts work together for efficient file and memory management in Node.
❤1👍1👏1
Google Gen AI SDK for TypeScript and JavaScript v1
Why let Python developers have all the fun? Now you can harness the full power of Google’s Gemini API (and Vertex platform) from Node too. v1.0 landed a few days ago, but today we also get v1.1 which includes CommonJS support. The Gemini docs and examples now use it too - https://github.com/googleapis/js-genai
#nodejs
Why let Python developers have all the fun? Now you can harness the full power of Google’s Gemini API (and Vertex platform) from Node too. v1.0 landed a few days ago, but today we also get v1.1 which includes CommonJS support. The Gemini docs and examples now use it too - https://github.com/googleapis/js-genai
#nodejs
GitHub
GitHub - googleapis/js-genai: TypeScript/JavaScript SDK for Gemini and Vertex AI.
TypeScript/JavaScript SDK for Gemini and Vertex AI. - googleapis/js-genai
👍1
express-generator-typescript: An Express.js + TypeScript App Generator
Creates the boilerplate for a TypeScript-powered Express.js app. Now uses Express.js 5. - https://github.com/seanpmaxwell/express-generator-typescript
#nodejs
Creates the boilerplate for a TypeScript-powered Express.js app. Now uses Express.js 5. - https://github.com/seanpmaxwell/express-generator-typescript
#nodejs
GitHub
GitHub - seanpmaxwell/express-generator-typescript: Create a new express app similar to express-generator but with TypeScript
Create a new express app similar to express-generator but with TypeScript - seanpmaxwell/express-generator-typescript
❤3👍1
Implement AI Safeguards with Node.js and Llama Stack
Llama Stack is Meta’s framework for building AI apps in Node, Python, Swift or Kotlin. - https://developers.redhat.com/articles/2025/05/28/implement-ai-safeguards-nodejs-and-llama-stack
#nodejs
Llama Stack is Meta’s framework for building AI apps in Node, Python, Swift or Kotlin. - https://developers.redhat.com/articles/2025/05/28/implement-ai-safeguards-nodejs-and-llama-stack
#nodejs
Red Hat Developer
Implement AI safeguards with Node.js and Llama Stack | Red Hat Developer
With Llama Stack being released earlier this year, we decided to look at how to implement key aspects of an AI application with Node.js and Llama Stack. In this post, we will discuss AI safety and
👍2❤1