Some Features Every JavaScript Developer Should Know in 2025
A quick list post breezing through a few more modern areas of JavaScript including iterator helpers, structuredClone(), and set operations. - https://waspdev.com/articles/2025-04-06/features-that-every-js-developer-must-know-in-2025
#nodejs
A quick list post breezing through a few more modern areas of JavaScript including iterator helpers, structuredClone(), and set operations. - https://waspdev.com/articles/2025-04-06/features-that-every-js-developer-must-know-in-2025
#nodejs
WaspDev Blog
Some features that every JavaScript developer should know in 2025
The list of JavaScript features that every web developer should know in 2025 in order to efficiently code in JavaScript.
Optimizing Node Performance with V8 GC Optimization
Matteo recently ▶️ gave a talk at dotJS about Node’s memory usage and decided to write it up into a blog post too. Matteo notes that high memory usage doesn’t necessarily mean you have a memory leak, explains how V8’s garbage collector works, and how you can tune things specifically for your own use case. - https://blog.platformatic.dev/optimizing-nodejs-performance-v8-memory-management-and-gc-tuning
#nodejs
Matteo recently ▶️ gave a talk at dotJS about Node’s memory usage and decided to write it up into a blog post too. Matteo notes that high memory usage doesn’t necessarily mean you have a memory leak, explains how V8’s garbage collector works, and how you can tune things specifically for your own use case. - https://blog.platformatic.dev/optimizing-nodejs-performance-v8-memory-management-and-gc-tuning
#nodejs
Platformatic Blog
Boost Node.js with V8 GC Optimization
Optimize Node.js with V8 GC tuning. Adjust Young Generation size for better efficiency in memory-constrained environments
Microsoft Warns About Node.js' Role in Modern Malware
Microsoft’s security team is observing a sharp increase in the use of Node.js to deliver malware and other malicious payloads. This post digs into a couple of examples and what's going on behind the scenes. - https://www.microsoft.com/en-us/security/blog/2025/04/15/threat-actors-misuse-node-js-to-deliver-malware-and-other-malicious-payloads/
#nodejs
Microsoft’s security team is observing a sharp increase in the use of Node.js to deliver malware and other malicious payloads. This post digs into a couple of examples and what's going on behind the scenes. - https://www.microsoft.com/en-us/security/blog/2025/04/15/threat-actors-misuse-node-js-to-deliver-malware-and-other-malicious-payloads/
#nodejs
Microsoft News
Threat actors misuse Node.js to deliver malware and other malicious payloads
Since October 2024, Microsoft Defender Experts has observed and helped multiple customers address campaigns leveraging Node.js to deliver malware and other payloads that ultimately lead to information theft and data exfiltration.
The Best Node.js Observability Tools in 2025
A comparison of seven approaches - https://nodesource.com/blog/nodejs-observability-tools-2025
#nodejs
A comparison of seven approaches - https://nodesource.com/blog/nodejs-observability-tools-2025
#nodejs
The NodeSource Blog - Node.js Tutorials, Guides, and Updates
The Best Node.js Observability Tools in 2025: N|Solid vs New Relic, Datadog, and More
With a range of observability and APM tools available, choosing the right one for your stack and team can be challenging but it can save you hours
The Node.js Test CI Security Incident Explained
The Node.js project recently experienced a critical security incident with its test CI infrastructure. Attackers exploited a flaw in the Jenkins pipeline and this post goes into detail about how it came about and was resolved. - https://nodejs.org/en/blog/vulnerability/march-2025-ci-incident
#nodejs
The Node.js project recently experienced a critical security incident with its test CI infrastructure. Attackers exploited a flaw in the Jenkins pipeline and this post goes into detail about how it came about and was resolved. - https://nodejs.org/en/blog/vulnerability/march-2025-ci-incident
#nodejs
nodejs.org
Node.js — Node.js Test CI Security Incident
Node.js® is a JavaScript runtime built on Chrome's V8 JavaScript engine.
Giving V8 a Heads-Up: Faster Startup with Explicit Compile Hints
Not Node specific but a look at a V8 optimization that may become relevant in time. Explicit Compile Hints let you direct V8 to eagerly compile specific files as a way to speed up startup. It ships with Chrome 136. - https://v8.dev/blog/explicit-compile-hints
#nodejs
Not Node specific but a look at a V8 optimization that may become relevant in time. Explicit Compile Hints let you direct V8 to eagerly compile specific files as a way to speed up startup. It ships with Chrome 136. - https://v8.dev/blog/explicit-compile-hints
#nodejs
v8.dev
Giving V8 a Heads-Up: Faster JavaScript Startup with Explicit Compile Hints · V8
Explicit compile hints control which JavaScript files and functions are parsed and compiled eagerly
A Decade of Impact: How Our npm Packages Hit 1 Billion Downloads and Shaped JavaScript
A bold title for sure, but with a neat story behind it. - https://forwardemail.net/en/blog/docs/how-npm-packages-billion-downloads-shaped-javascript-ecosystem
#nodejs
A bold title for sure, but with a neat story behind it. - https://forwardemail.net/en/blog/docs/how-npm-packages-billion-downloads-shaped-javascript-ecosystem
#nodejs
Forward Email
A Decade of Impact: How Our npm Packages Hit 1 Billion Downloads and Shaped JavaScript
In the JavaScript and Node.js world, some packages are essential—downloaded millions of times daily and powering apps worldwide. Behind these tools are developers focused on open source quality. Today, we're showing how our team helps build and maintain npm…
NestJS TypeORM and Multi-Tenancy
Not so different from any other ordinary type of project, multi-tenancy is a software architecture that has been in place for quite a while, and as with any other approach, there are pros and cons. In this article, I plan to walk you through a simple solution I implemented to tackle basic architecture inside the universe of the NestJS framework with TypeORM. - https://medium.com/nestjs-ninja/nestjs-typeorm-and-multi-tenancy-a7f6176e8319
#nodejs
Not so different from any other ordinary type of project, multi-tenancy is a software architecture that has been in place for quite a while, and as with any other approach, there are pros and cons. In this article, I plan to walk you through a simple solution I implemented to tackle basic architecture inside the universe of the NestJS framework with TypeORM. - https://medium.com/nestjs-ninja/nestjs-typeorm-and-multi-tenancy-a7f6176e8319
#nodejs
Medium
NestJS TypeORM and Multi-Tenancy
Not so different from any other ordinary type of project, multi-tenancy is a software architecture that has been in place for quite a…
Real-Time Data Processing with Node.js, TypeScript, and Apache Kafka
Imagine orchestrating a symphony where each instrument… - https://readmedium.com/real-time-data-processing-with-node-js-typescript-and-apache-kafka-24a53f887326
#nodejs
Imagine orchestrating a symphony where each instrument… - https://readmedium.com/real-time-data-processing-with-node-js-typescript-and-apache-kafka-24a53f887326
#nodejs
Readmedium
Real-Time Data Processing with Node.js, TypeScript, and Apache Kafka
Imagine orchestrating a symphony where each instrument plays in perfect harmony, even though they’re scattered across the globe. Sounds…
Koa 3.0: The Expressive HTTP Middleware Framework
Koa first appeared over a decade ago as a ‘next-generation’ Web framework that shared some of the lineage (and team) of Express.js, but leaning on more modern JavaScript features and ideas of the time. While Express has been making a comeback recently, Koa has progressed too and offers a compelling alternative. - https://koajs.com/
#nodejs
Koa first appeared over a decade ago as a ‘next-generation’ Web framework that shared some of the lineage (and team) of Express.js, but leaning on more modern JavaScript features and ideas of the time. While Express has been making a comeback recently, Koa has progressed too and offers a compelling alternative. - https://koajs.com/
#nodejs
The Node.js Test CI Security Incident Explained
The Node.js project recently experienced a critical security incident with its test CI infrastructure. Attackers exploited a flaw in the Jenkins pipeline and this post goes into detail about how it came about and was resolved. - https://nodejs.org/en/blog/vulnerability/march-2025-ci-incident
#nodejs
The Node.js project recently experienced a critical security incident with its test CI infrastructure. Attackers exploited a flaw in the Jenkins pipeline and this post goes into detail about how it came about and was resolved. - https://nodejs.org/en/blog/vulnerability/march-2025-ci-incident
#nodejs
nodejs.org
Node.js — Node.js Test CI Security Incident
Node.js® is a JavaScript runtime built on Chrome's V8 JavaScript engine.
Retrieval-Augmented Generation (RAG) with Llama Stack and Node
Meta’s Llama Stack is a unified set of APIs for working with numerous parts of the modern LLM-powered stack, including RAG, as demonstrated here. - https://developers.redhat.com/articles/2025/04/30/retrieval-augmented-generation-llama-stack-and-nodejs
#nodejs
Meta’s Llama Stack is a unified set of APIs for working with numerous parts of the modern LLM-powered stack, including RAG, as demonstrated here. - https://developers.redhat.com/articles/2025/04/30/retrieval-augmented-generation-llama-stack-and-nodejs
#nodejs
Red Hat Developer
Retrieval-augmented generation with Llama Stack and Node.js | Red Hat Developer
With Llama Stack being released earlier this year, we decided to look at how to implement key aspects of an AI application with Node.js and Llama Stack. This post covers retrieval-augmented generation
npm Targeted by Malware Campaign Mimicking Familiar Library Names - https://socket.dev/blog/npm-targeted-by-malware-campaign-mimicking-familiar-library-names
#nodejs
#nodejs
Socket
NPM targeted by malware campaign mimicking familiar library...
Socket uncovered npm malware campaign mimicking popular Node.js libraries and packages from other ecosystems; packages steal data and execute remote c...
Why We Created Another Kafka Client for Node.js
Apache Kafka is a popular distributed event streaming platform but the existing client libraries have various flaws, leading Platformatic to release a new one built around modern Node best practices. - https://blog.platformatic.dev/why-we-created-another-kafka-client-for-nodejs
#nodejs
Apache Kafka is a popular distributed event streaming platform but the existing client libraries have various flaws, leading Platformatic to release a new one built around modern Node best practices. - https://blog.platformatic.dev/why-we-created-another-kafka-client-for-nodejs
#nodejs
Platformatic Blog
Why we created another Kafka client for Node.js
Discover our new Kafka client for Node.js, enhancing performance, developer experience, and TypeScript support for seamless integration.
Best Practices for Creating a Modern npm Package
A step-by-step “as of 2025” walkthrough of creating your own npm package using current best practices. We’ve linked to this before but it’s just been updated. - https://snyk.io/blog/best-practices-create-modern-npm-package/
#nodejs
A step-by-step “as of 2025” walkthrough of creating your own npm package using current best practices. We’ve linked to this before but it’s just been updated. - https://snyk.io/blog/best-practices-create-modern-npm-package/
#nodejs
Snyk
Best Practices for Creating a Modern npm Package with Security in Mind | Snyk
In this tutorial, we’re going to walk step by step through creating an npm package using modern best practices (as of 2022).
Working with File System Paths and File URLs in Node - https://exploringjs.com/nodejs-shell-scripting/ch_nodejs-path.html
#nodejs
#nodejs
Node.js TSC Declines to Endorse Feature Bounty Program
There was recently a debate around whether the Node.js project should establish a formal feature bounty program to enable end users to offer monetary rewards for specific features. This post summarizes why the official response is no, for now. - https://socket.dev/blog/node-js-tsc-declines-to-endorse-feature-bounty-program
#nodejs
There was recently a debate around whether the Node.js project should establish a formal feature bounty program to enable end users to offer monetary rewards for specific features. This post summarizes why the official response is no, for now. - https://socket.dev/blog/node-js-tsc-declines-to-endorse-feature-bounty-program
#nodejs
Socket
Node.js TSC Declines to Endorse Feature Bounty Program - Soc...
The Node.js TSC opted not to endorse a feature bounty program, citing concerns about incentives, governance, and project neutrality.