#​482 — April 18, 2023

Read on the Web

Together with  Memetria
Node.js Weekly

Node.js 20 Released — A quirk of fate meant this issue was delayed for a couple of hours and.. Node v20 was launched in that time. Phew! This means we haven’t had much time to digest the news, though, but the key updates include:

  • Experimental support for a permission model. This is a feature Deno has at its core, but now you can restrict/allow access to certain capabilities with Node too.
  • V8 11.3 (which finally includes Regexp /v flag support)
  • The node:test test runner goes stable.
  • Official support for Windows on AArch64/ARM64.
  • Numerous performance improvements.
We look forward to featuring more about the release next week too.

The Node.js Team

Memetria: Secure, Scalable Redis 7 Hosting — The latest Redis features, instrumented and scaled with the tools teams need as they grow.

Memetria sponsor

Node v18.16.0 (LTS) Released — Node v18 LTS gains some backports from v19 in the shape of the Ada WHATWG-compliant URL parser and (initial) support for packaging a JavaScript app with Node into a single executable (a feature Node 20 – above – has developed further also).

Danielle Adams

IN BRIEF:

npm Security Best Practices — Part of the Open Web Application Security Project’s (OWASP) extensive cheat sheet series. This one, written by Liran Tal, covers ten key points to keep in mind with regards to using npm and npm packages.

OWASP Cheat Sheet Series

In other Liran news, he's released 📗 Node.js Secure Coding, a (paid) book covering secure coding practices through performing local attacks on real-world packages and analyzing the vulnerable code behind them.

Deno vs. Node: No One is Ready for the MoveDeno has a lot going for it as an alternative to Node — but Node has time, maturity and a huge, established userbase on its side.

Piumi Liyana Gunawardhana (Honeypot)

How to Stream File Uploads to S3 Object Storage from Node

Austin Gil

🛠 Code & Tools

AdminJS 7.0: An Admin Panel for Node Apps — An ‘automatic’, open source admin interface you can introduce to existing apps. Wire it up to your ODM/ORM, and off you go. Here’s what’s new in v7.0, a v7 migration guide, and ▶️ a four-minute screencast intro to what’s new. GitHub repo.

AdminJS Team

Strong SOAP: A SOAP Driver for Node — If you need to interoperate with SOAP-based services, here’s a fresh (clean?) option that bills itself as a complete rewrite of the earlier node-soap.

LoopBack

Avoid Falling Victim to Malicious Packages in OS Ecosystems — Get a broader view of the rising trend in malicious packages in OS ecosystems — and how to avoid them — in Snyk’s recent article on the theme.

Snyk sponsor

Actio: A Framework for Backend Apps — For both microservices or monoliths. Comes with quite a few batteries included in areas like auth, file upload support, configuration, and even a payment service.

Crufters

Discord.js V14 Bot: A Multipurpose Discord Bot — If you want a Discord bot you can customize but that has a lot of features like moderation, stats, and social features built in, this is for you.

Sai Teja Madha

LiQuery: SQLite Search, Tagging, Filtering and Sorting via Simple Text Queries — SQL already offers ‘text queries’, of course, but this is an interesting experiment to make things even more concise with a basic search engine style syntax.

Hax

💻 Jobs

Find Tech Jobs with Hired — Hired makes job hunting easy-instead of chasing recruiters, companies approach you with salary details up front. Create a free profile now.
Hired

QUICK RELEASES: