Issue #11
The one about runtime validation, NPM malware, and incremental automation
Node weekly
- Runtime validation libraries for Typescript: While there are hundreds (three) of validation libraries, we all agree Zod is the best option for runtime validation. Jacob goes through some of the features and highlights Zod’s great API, static type inference, and small ecosystem of plugins.
- Dissecting Npm Malware: What seems to be a shameless ad for Sandworm, turns out to be an insightful article about the threats posed by
npm install
. The article highlights five packages that have been using pre and post-install scripts to run arbitrary code during the installation process on the user’s machine. - Improve productivity through incremental automation: Are we really developers if we didn’t spend 10 hours to automate a task that usually takes 20 seconds (two painfully relevant xkcd #1205 #1319)? Seriously, Jess’ article talks about how bash scripts, APIs, website automation, and GitHub Actions helps us automate mundane tasks.
- How To Dominate Conferences Like A Boss: Lourdes’ article highlights best tips on how to actually enjoy conferences. Helps a lot with expectations management, networking tricks, and FOMO.
- Community 2.0: Back to DevRel land, Rosie is back with a thought provoking piece about the future of online communities. While the hype of communities during pandemic is slowly fading away, she proposes a more understanding, better tooled, and higher-value approach to communities that benefits everyone involved.
Tools of the week
- Frogmouth: A markdown browser for your terminal
- Coolify: (Yet another) Open-source & self-hostable Heroku/Netlify alternative
- RedisRaft: Consistent Raft cluster from multiple Redis instances (under development)
- Tempo: Low latency, cross-platform, end-to-end typesafe APIs (under development)
- Mojo: New programming language for all AI developers (waitlist)
Read more
19
The one about time, imperfection, and (in)security
→
18
The one about accessibility, no code, and automation
→
##
The one about the year 2023
→
17
The one about semantic HTML, data versioning in Postgres, and dev burnout
→
16
The one about server actions, productivity, and asking questions
→