InfoQ Homepage JavaScript Content on InfoQ
-
Critical Vulnerability in VM2 Sandbox Found Affecting Spotify Portal Platform Backstage
Spotify Backstage, an open-source platform used to build developer portals and in use at a number of large companies, has been found vulnerable to a critical remote code execution vulnerability. Confirming that most vulnerabilities are found in indirect dependencies, the Backstage vulnerability is enabled by another vulnerability found in its JavaScript VM2 sandbox dependency.
-
JetBrains Previews Aqua, New Test Automation-Oriented IDE
JetBrains Aqua, now available in preview, is a new IDE focusing on test automation and integrating a number of distinct tools that are at the core of an automation engineer's daily routine, says JetBrains. Its features include multi-language support, an HTTP client and a Web inspector, database management, integrated Docker support, and more.
-
Vanilla Extract - a Modern CSS in JS Library
Vanilla Extract is a new "CSS in JS" library that offers type safety, good theming support, and plenty of extensions, making it an exciting alternative to existing solutions such as Styled Components.
-
Angular 15 - Standalone Components are Stable
Google recently released Angular 15, the latest version of their popular SPA framework. The update includes a stable API for standalone components alongside several other significant improvements.
-
All-in-One, Integrated Front-End Toolchain Rome Released V10, Dubbed First Stable Release
The Rome team recently announced Rome v10, dubbed the first stable release since a Rust rewrite. The new release includes a small part of the all-in-one toolchain that Rome envisions, namely the linter and formatter. The Rust-based tools according to first benchmarks provide between one and two orders of magnitude improvement vs. ESLint and Prettier. The tools are available as a VSCode extension.
-
Dynamic Web Apps without JavaScript - HTMX Showcase at DjangoCon and Devoxx
DjangoCon and Devoxx Belgium recently reported examples of interactive web applications developed without JavaScript developers. The showcased htmx HTML-first framework seems to target those applications that mainly propose a friendly interface to CRUD operations over remote resources. In one case, the team was able to remove the JavaScript developer.
-
Container Queries, Next Step Towards Truly Modular CSS - Maarten Van Hoof at Devoxx Belgium
Maarten Van Hoof, senior front-end developer at iO, recently explained at Devoxx Belgium how CSS container queries facilitate modular, component-based responsive web applications. With container queries, micro-front-end components can adjust their internal layout independently from the other components on the page.
-
Lessons Learned: Emotion Library Maintainer Explains Why Company No Longer Uses Runtime CSS-in-JS
Sam Magura, staff software engineer at Spot and active maintainer of the CSS-in-JS Emotion library, recently detailed why Spot abandoned the runtime CSS-in-JS library Emotion in favor of Sass modules: Runtime overhead, payload overhead, and server rendering issues contributed to a lesser user experience.
-
New Qwik JavaScript Framework Seeks Faster Web Apps with Unique Approach: Resumability
Misko Hevery, creator of AngularJS, recently announced the beta availability of Qwik, his new web framework. Qwik claims to build applications that feel fast regardless of application size. In most cases, Qwik first downloads only 1 KB of JavaScript. Event handlers and application code are lazy-loaded and prefetched as needed.
-
New JavaScript Interop Improvements in .NET 7 RC 1
The release of .NET 7 RC 1 has introduced the new wasm-experimental workload and new JavaScript interop features that allow invoking of .NET code in JavaScript applications running on WebAssembly without using the Blazor UI component model. Until now, it was possible to use WebAssembly without the need for Blazor by leveraging the Mono WASM SDK, Uno.Wasm.Bootstrap library or the NativeAOT LLVM.
-
Cloudflare Open-Source Workerd Nanoservice Runtime Now in Beta
Recently open-sourced Cloudflare workerd is a new Web runtime for JavaScript/Wasm applications that shares most of its code with the runtime used by Cloudflare Workers. Workerd is based on standardized Web APIs and aims to enable a new approach to microservices removing their intrinsic latency, says Cloudflare.
-
Luxon - Better Date and Time Management in JavaScript
Luxon is a modern lightweight library for parsing, validating, manipulating, and formatting dates in JavaScript.
-
Preact Joins the Crowd and Bakes in Reactivity Primitives with New Signals API
The Preact JavaScript framework recently released Signals, a new set of reactive primitives for managing application state. Signals let developers associate parts of the user interface with state variables independently of the UI’s component tree. Alleged benefits of the extra 1.6KB: fast re-renders that are independent of the shape of the UI component tree and excellent developer ergonomics.
-
Facebook MemLab Helps Finding JavaScript Memory Leaks
While JavaScript runtimes use garbage collection to manage memory, this does not rule out the possibility of leaking memory. To detect all possible cases where memory is leaked, Facebook created and open-sourced MemLab, a tool able to run predefined, automatable test scenarios and analyze heapshot diffs.
-
The Road to Removing JQuery from Gov.uk
When the team that maintains the gov.uk website faced the issue of updating their old and outdated jQuery dependency, they decided instead to get rid of it altogether. Among other benefits, they achieved a not negligible performance improvement and, in the process, created a migration guide for other developers to tap into.