Liran Tal: A severe security vulnerability impacted all popular npm package managers: npm, yarn and pnpm and even triggered a release for Node.js 12.4.0. What is behind this vulnerability and why is it so important for us to understand? I wrote about it in a post that also explains how npm handles executables.
read more
The goal of svelvet is to make svelte play nicely with snowpack and web_modules. As of today, svelte depends on a loader for webpack or rollup which compiles your svelte components into individual js files. Since snowpack’s goal is to avoid the need for a bundler, we can’t use those loaders, but we can use svelte’s internal compiler api to do 95% of the work for us. On top of that, svelvet adds automatic file watching to recompile your svelte files just like a loader would, but much faster! I’m not gonna lie, any green field that offers a super light build process is looking pretty stinkin’ green these days. That being said, there’s a reason we call it the bleeding edge.
read more
This isn’t the most practical item in our feed this week, but it’s definitely neat and the how is it made section of the README (and related code) shows how you might accomplish something similar.
read more
KBall, Divya, Mikeal, and Feross dig deep into refactoring. When to do it, best practices, things to watch out for, and the difference between a refactor and a rewrite. We then close out with some key pro tips.
read more
I’m not sure which is more interesting: the fact that Next.js is getting in to the static-site generation game or the fact that Notion is becoming popular enough amongst devs that people would use it as a back-end for their blog. The Notion aspect, while interesting, comes with a big disclaimer: since it is using a private API and experimental features, use at your own risk as these things could change at any moment.
read more
Rete is a modular framework for visual programming. Rete allows you to create node-based editor directly in the browser. You can define nodes and workers that allow users to create instructions for processing data in your editor without a single line of code.
read more
No more waiting for your bundler to rebuild your site every time you hit save. Instead, every change is reflected in the browser instantly. This relies on ESM (Mikeal gave a great rundown on the current state of things on a recent JS Party), so it’s not for everyone. The homepage has rundowns on who should use this, who should avoid it, and how to get started. Brought to you by the fine folks at Pika.
read more
At Node+JS Interactive… the talks are all quite attractive. From transpilation dread… to awesome worker threads. This conf is surely impactive!
read more
This is a super-cool tool for getting your ideas on “paper” quickly. It’s pretty rough around the edges, but that’s forgivable for now since it’s pretty new. Try it for yourself right here.
read more
Jerod, Divya, Chris, KBall, & Nick ring in the new year with our 2020 predictions, wish lists, & resolutions. Will Chrome’s browser market share decrease? Will Svelte (or a Svelte-alike) continue to trend? Will Jerod finally write some TypeScript?! Listen along and let us know your thoughts on the matters.
read more
This is a simple city builder with no simulation or anything like that. Cool, nonetheless.
read more
Ember has always focused on building the best framework that people with different levels of skill can use together to build web applications. Octane updates Ember’s components and reactivity system to make them more modern, easier to use, and just more fun. Glimmer;‘s Components and Reactivity are the two big changes in this major release from the Ember team. Both are opt-in and fully interoperable with existing code. Read Yehuda’s full announcement for all the details.
read more
Jerod and Divya welcome npm CTO Ahmad Nassri to discuss modular architecture. What it is, why it matters, and how you can achieve it. Ahmad has been thinking deeply about this topic lately and we have a very fruitful discussion that should have takeaways for developers of all experience levels.
read more
Results are in for the 2019 State of JS survey. I’ve been digging through charts to see what I can see. Here are 7 insights that jumped off the page to me.
read more
If you’re embedding YouTube videos via the typical iframe flow on your site, grab this custom element from Paul Irish and load ’em ~224 times faster.
read more
In this episode we’re shining our maintainer spotlight on Ovilia. Hailing from Shanghai, China, Ovilia is an up-and-coming developer who contributes to Apache ECharts, maintains Polyvia, which does very cool low-poly image and video processing, and has a sweet personal website, too. This episode with Ovilia continues our maintainer spotlight series where we dig deep into the life of an open source software maintainer. We’re producing this series in partnership with Tidelift. Huge thanks to Tidelift for making this series possible.
read more
NanoNeuron is an over-simplified version of the Neuron concept from Neural Networks. NanoNeuron is trained to convert temperature values from Celsius to Fahrenheit. The NanoNeuron.js code example contains 7 simple JavaScript functions (which touches on model prediction, cost calculation, forward/backwards propagation, and training) that will give you a feeling of how machines can actually “learn”. No 3rd-party libraries, no external data-sets or dependencies, only pure and simple JavaScript functions. This is not a complete guide to machine learning. Just a primer.
read more
ES Modules are unflagged in Node 13. What does this mean? Can we use them yet? We chat with Mikeal, our resident expert, and find out.
read more
This is, effectively, an HTTP API on top of MaxMind’s free geoip-lite database. If you’re doing anything serious with ip-to-geolocation, I’d advise self-hosting the database, but for small side projects and the like, this is an easy way to get up and rolling.
read more
Manuel Vila, writing for freeCodeCamp: In this article, I introduce the concept of “unified architecture” that dramatically simplifies the development of full-stack applications. Indeed, this architecture unifies the six physical layers (data access, backend model, API server, API client, frontend model, and user interface) usually seen in “well-designed” applications into one single logical layer. It is like going from a 3D world to a 2D world. Everything gets a lot easier. That “unified architecture” manifests itself as Liaison, which we linked to last week and it caused some… controversy discussion. In this article, Manuel explains why Liaison is different than similar RPC things that came before it. Interesting stuff, to say the least.
read more
A nice side-by-side comparison of a simple todo app built with both frameworks. If you’ve experimented with these tools, you’ll probably find this article too elementary to be useful, but if either is unfamiliar to you, definitely give it a read.
read more
KBall connects with Katie Sylor-Miller to talk about migrating OhShitGit to the JAMStack, migrating legacy codebases to modern front-end technologies, and design systems.
read more
When your database is the source of truth, it’s often useful to inspect that truth and reuse it elsewhere in your application. import pgStructure from "pg-structure"; async function demo() { const db = await pgStructure({ database: "db", user: "u", password: "pass" }, { includeSchemas: ["public"] }); const table = db.get("contact"); const columnNames = table.columns.map(c => c.name); const columnTypeName = table.columns.get("options").type.name; const indexColumnNames = table.indexes.get("ix_mail").columns; const relatedTables = table.hasManyTables; }
read more
Flowy makes creating WebApps with flowchart functionality an incredibly simple task. Build automation software, mind mapping tools, or simple programming platforms in minutes by implementing the library into your project. Live demo here.
read more
This week we chatted with Kahlil Lechelt about mentorship. What types of mentorships are there, what makes a successful mentorship, and where can you find a mentor?
read more
