🔥

Look here for a fresh JSConf!

Y otro JSConf un poco más lejos 🙃

Totally. Normal. Language.

Note to self: Injecting malware is a fantastic level 2 deprecation technique.

React 19 is huge. Here's a cheat sheet. Nine new features: 1. React Server Components - Components that render at build time, or for each request. 2. Actions - Functions that use async transitions and automatically submit data for you. Actions support error handling,

Help us spread the word — it's time to #FreeJavaScript. javascript.tm

Okay, who can tell me if they use JavaScript or TypeScript?

We did it boys! We conquered database! Next up, infra! 🔥

After more than a year of development, we're excited to announce the release of 🤗 Transformers.js v3! ⚡ WebGPU support (up to 100x faster than WASM) 🔢 New quantization formats (dtypes) 🏛 120 supported architectures in total 📂 25 new example projects and templates 🤖 Over

If JavaScript was a serious programming language and embraced coercion to the fullest

# My favorite open source project this year is Bun At work and in my personal projects, it replaced Node and I've never looked back. It has this "batteries included" attitude that saves us hours of "what is the best npm package for this little thing I need?"

❤️

NEW: DeepSeek Janus Pro 1B (Generate Images, Chat with PDF) running in your browser, 100% local, powered by WebGPU 🔥 Zero server costs, brought to you by transformers.js - try it out!

🎟️ General Admission Tickets for #JSConf 2025 are NOW OPEN! 🚀 Join 500+ JavaScript pros Oct 14-16 for three days of tech, networking & adventure. events.linuxfoundation.org/jsconf-north-a…

JSConf 2025 speaker lineup is 🔥 Expect: - Epic keynotes - Fresh takes on front‑end, backend, serverless, tooling, and more - Real talk on where JavaScript is headed next TLDR: Big brains. Bold ideas. Big fun. See you IRL. openjsf.org/blog/jsconf-25…

Registration is open: events.linuxfoundation.org/jsconf-north-a…

🚨 Major active supply chain attack just hit npm. Popular package @​ctrl/tinycolor was trojanized — and it didn’t stop there. Over 40 packages were silently modified to steal secrets from dev machines & CI pipelines. Our team at Socket caught it. Full report coming soon. Stay

. pnpm is a strong option for protecting against supply chain attacks, and the DX is excellent too they removed postinstall scripts a while back, cutting one big attack path now they’ve introduced `minimumReleaseAge` which lets you hold off on new versions for a day or more

Throwback... Tuesday? But more importantly: ONE WEEK UNTIL JSCONF 2025!