Explains why Fastify developers should avoid using reply.raw and reply.hijack for HTTP streams, despite their power, due to risks and complexity.
A quick guide on clearing the global npx cache to resolve version warnings and avoid installing CLI tools globally.
A technical guide on migrating JavaScript test suites from Jest to the native Node.js test runner, covering setup, features, and differences.
Discloses a Local File Inclusion vulnerability in the xmlhttprequest npm package, allowing arbitrary file reads due to insecure default permissions.
Discloses a CWE-400 uncontrolled resource consumption vulnerability in the xmlhttprequest npm package due to missing timeout controls.
A step-by-step guide to writing end-to-end tests for a Node.js web API using the new native test runner, without external frameworks.
Debunks common myths about Node.js, revealing surprising truths about its architecture, async operations, and threading model.
A guide to installing Neovim LSPs and NPM tools in a central, local directory and adding it to the $PATH for better version control and security.
A developer shares their journey in open source, focusing on web security, Node.js contributions, and receiving the GitHub Stars 2023 award.
A tutorial on building a full-stack TypeScript application with end-to-end type safety using tRPC, React, and Node.js.
A developer shares their journey creating an open source activism program to teach collaboration and inclusivity in software development.
A developer's analysis of the CommonJS vs. ESM debate in JavaScript, explaining the differences, benefits, and drawbacks of each module system.
Explains how to access and use environment variables in JavaScript and Node.js, including differences between CLI and browser environments.
A technical guide to building a WebSocket server from scratch in Node.js, covering the protocol handshake, message framing, and data masking.
A developer details their journey to diagnose and fix a persistent memory leak in their production Node.js application after a database migration.
A tutorial on configuring a JavaScript application to read settings from Azure App Configuration Service using the official client library.
A guide to automating Node.js application deployment using AWS CloudFormation for infrastructure as code (IaC).
A technical guide on building a fully automated CI/CD pipeline for a Node.js application using AWS services like CodeBuild and CodeDeploy.
A tutorial on setting up and running TypeScript in a Node.js backend project, including ts-node and nodemon.
A developer reflects on unfinished tech projects, including profiling JavaScript apps and analyzing fast HTTP router strategies.
