fidzu : javascript

#​761 - November 14, 2025

Read on the Web

JavaScript Weekly

JavaScript Engines Zoo: Learn About Over 100 JS Engines - I'm a sucker for a big table of data and this is about as big as it gets when it comes to JavaScript engines. See how various engines compare, sort them by performance, or click on an engine's name to learn more about its development, history, and end users. The project's repo also has Dockerfiles for trying each of them out.

Ivan Krasilnikov

💡 Sticking with a theme, I've always enjoyed this ECMAScript compatibility table where you can see cross-browser and runtime support for different JavaScript features.

FlexGrid by Wijmo: The Industry-Leading JavaScript Datagrid - A fast and flexible datagrid for building modern web apps. Key features and virtualized rendering are included in the core grid module. Pick & choose special features to keep your app small. Built for JavaScript, extended to Angular, React, and Vue.

Wijmo From MESCIUS sponsor

Valdi: Snap's Newly-Open Cross-Platform UI Framework - The team behind Snapchat has open sourced this cross-platform UI framework that it's used in its production apps for eight years: "Write your UI once in declarative TypeScript, and it compiles directly to native views on iOS, Android, and macOS-no web views, no JavaScript bridges."

Snap

💡 Valdi's FAQ answers several questions you might have, including how it works and why you might pick Valdi over React Native.

IN BRIEF:

• The TC39 committee behind ECMAScript is meeting for the 111th time next week and has a packed agenda to discuss. (Thanks to Rob Palmer for the heads up.)

• For Stack Overflow, Tanya Janca shares several tips for writing more secure JavaScript.

• The co-founder of the fantastic Val Town online JavaScript platform shares a retrospective of its past three years, as well as two roles they're hiring for.

• Visual Types is a handy visually-oriented guide/tour of what types are and how they work, with a focus on TypeScript.

RELEASES:

• Bun v1.3.2 - Isolated package installs, introduced as the default in v1.3, were causing issues with some existing projects, so now hoisted installs are back as the default for those. bun install also gets even faster and you can do CPU profiling by running with --cpu-prof.

• Node.js v25.2.0 (Current) - Now with type stripping marked as stable.

• esbuild 0.27 - Popular bundler. A notable release for having breaking changes (so you're reminded to pin esbuild appropriately).

• TanStack DB 0.5, Node.js v24.11.1 (LTS), MikroORM 6.6

📖 Articles and Videos

▶ The State of Node.js in 2025, Explained - A thirty-minute talk from JSNation earlier this year where TSC member Matteo Collina presented an update on Node's still-growing popularity, release schedule, security, recent performance enhancements, the permissions system, and more.

GitNation

V8's Garbage Collector Developments in Recent Years - Andy, who's worked on both V8 and JavaScriptCore in the past, reviews the major developments in the V8 engine's garbage collector over the past couple of years. Very technical, but a valuable piece of history.

Andy Wingo

Build Type-Safe APIs for Your JS Apps: Protobuf Workshop with Buf Team - Learn how Protobuf brings type safety across your stack from Node.js APIs to frontend clients. Live Q&A with Buf engineers.

Buf sponsor

Comparing Electron vs. Tauri for Building and Distributing a Desktop App - A team working on an open-source desktop app built using JavaScript and Electron took a look into the Rust-based Tauri instead, with mixed, but mostly positive, results.

Eric Richardson

Using Expo for React Native Development in 2025: A Perspective - Expo has essentially become to React Native what Next.js became to React. But is it well suited for you? Jack weighs the pros and cons.

Jack Rosa

📄 How We Catch UI Bugs Early with Visual Regression Testing - Using Playwright and its visual comparisons feature. Tommaso Ruscica

📺 Learn JavaScript by Building 'Mario' - One of Ania's typically easy to follow, comprehensive tutorials. Ania Kubow

📄 Building a 3D Infinite Carousel with Reactive Background Gradients Clément Grellier

📄 Error Chaining in JS: Cleaner Debugging with Error's cause Matt Smith

🛠 Code & Tools

imgui-react-runtime: React + Dear ImGui + Static Hermes - When the author teased a demo of this on X a few weeks ago, I wasn't sure if it would get released, but here it is. A new way to put together native apps using React and the popular lightweight GUI library Dear ImGui.

Tzvetan Mikov

ESLint Plugin for Baseline JavaScript - The winner of last month's Baseline Tooling Hackathon is an ESLint plugin that flags code that's using features newer than your configured Baseline target (features broadly supported by modern browsers).

Ryuya Hasegawa

Customizable JavaScript Libraries for Forms & Surveys - Create branded, dynamic forms with full control over design, logic, and data storage.

SurveyJS sponsor

pnpm 10.21: Safer Installs and Smarter Runtime Management - Now installs the Node version required by a dependency, declared in its engines.runtime field, meaning CLI apps and postinstall scripts will run with the specified version. The trustPolicy setting also adds protection against supply-chain attacks by failing to install a package if its trust level drops.

Zoltan Kochan

Ink 6.5: Build Interactive CLI Apps using React - A very widely used terminal-based React renderer for building reactive terminal apps using components. v6.5 is notable for adding an incremental rendering option.

Vadim Demedes

• vis-timeline 8.4 - Interactive control to visualize data across time, as shown above. Numerous examples here.

• rasterizeHTML.js 1.4 - Renders HTML into a canvas element. Now supporting OffscreenCanvas too.

• file-type 21.1 - Detect the file type of a file, stream, or data in both Node and the browser.

• Svelte SEO 2.0 - Optimize your Svelte app for search engines and social media.

• isomorphic-git 1.35 - Pure JS implementation of git for Node & browsers.

📢 Elsewhere in the ecosystem

Some other interesting tidbits in the broader landscape:

• 🔒 OWASP (Open Worldwide Application Security Project) has released its list of the top ten web application security threats in 2025.

• 🤖 An ardent critic of LLMs spent a month doing 'chat oriented programming' and while he found the experience "infuriating", he concedes it has merit and is a viable option "if your tolerance for pain is high enough.".

• 🧊 Ever fancied implementing a voxel-based engine for that Minecraft-esque experience? Uses (very Rust-y) pseudocode in order to remain timeless and let you enjoy doing the implementation yourself.

• An explanation of the differences between monorepos, multi-repo, submodule and subtree setups in Git.

• 💻 If you like collecting stickers from conferences, you might enjoy this gallery of hundreds of people's stickered-up laptops or even want to submit your own. It took me a while to find any JavaScript stickers, but they're there..

🎂 P.S. JavaScript Weekly turned fifteen years old this week! Thanks to all of you for reading, and particularly anyone still subscribed from the first issue. We haven't looked at the stats in a while, but we know there are some of you! :-)

#​760 - November 7, 2025

Read on the Web

JavaScript Weekly

The Inner Workings of JavaScript Source Maps - Ever wondered how devtools can magically turn mangled, minified JavaScript back into readable source while debugging? Zero magic; that's a source map doing its job. But how do source maps actually work under the hood?

Manoj Vivek

Ship Secure MCP Auth Without Relying on API Keys - API keys are hard to scope and break user flows. WorkOS Connect delivers a fully compliant OAuth 2.1 flow. It handles PKCE, scopes, user consent, and secure token issuance out of the box.

WorkOS sponsor

Anders Hejlsberg's Take on the Rise of TypeScript - The co-creator of TypeScript says he's 'floored' by the language's success (now the number one language on GitHub in 2025), shares a little info on the on-going compiler rewrite in Go, and the increasing role of AI.

The GitHub Blog

Embedding TypeScript with Hako - A technical look at the Hako JavaScript engine. It runs in WebAssembly so can be more easily embedded in more environments, including mobile apps.

Andrew Sampson

IN BRIEF:

• GitHub has updated its post about ongoing npm security changes. npm classic tokens can no longer be created, but existing ones will continue to work till February 3, 2026 at the latest.

• I enjoyed Lea Verou's cute proxy-based trick for creating symbols on demand.

• The Svelte team has a November 2025 update on what's new in Svelte.

• 🇷🇴 The popular JSHeroes conference is taking place in Romania next May 14-15. If you'd like to speak, its CFP is open until December 31.

RELEASES:

• Storybook 10 - The popular frontend component workshop is now ESM-only, lighter, has a new module automocking system, Vitest 4 support, and more.

• htmx 4.0 Alpha 1 - There was never going to be a v3 of htmx, so how about v4? Carson Gross tells the full story here.

• React Email 5.0 - Suite of components for creating emails in React. Now with a dark mode switcher and Tailwind 4 support.

• Turborepo 2.6, Video.js v10, ESLint Config Inspector v1.4

📖 Articles and Videos

▶ The Talk Videos from CascadiaJS 2025 - CascadiaJS took place a month ago and the talk videos have been gradually rolling out onto YouTube. You can learn more about TanStack with Jack Herrington, the origin story of JavaScript with Annie Sexton, the Web Monetization API with Ioana Chiorean, and more.

CascadiaJS

High-Performance Syntax Highlighting with the CSS Custom Highlight API - Now supported in all major browsers, the CSS Custom Highlight API provides a mechanism for styling arbitrary text ranges in a document by using JavaScript to create the ranges, and CSS to style them.

Pavitra Golchha

How to Create a Virtual Green Screen Using the Vonage Video API - Transform video calls with virtual green screens using the Vonage Video API and HTML5 canvas.

Vonage sponsor

How to Throttle Specific Requests in Chrome DevTools - Chrome DevTools has supported network throttling for a long time but you can now throttle requests to specific URLs or domains too, which could be ideal if you want to see how your site handles the failure of third party scripts.

Matt Zeunert

?! Importing Node Modules from BitTorrent - A fascinating demo of the power of Node.js's customization hooks for overriding import behavior.

Evan Hahn

Advanced Beginner's Guide to ClojureScript - An introduction to a compiler for the functional Clojure Lisp dialect that produces JavaScript.

Roman Liutikov

📄 Handling Time and Mock Clocks in Tests Andrew Scott (Angular)

📄 Zod + TypeScript: Schema Validation Made Easy Hassan Djirdeh

📄 Next.js 16: What's New and What It Means for Frontend Devs Abiola Farounbi (LogRocket)

🛠 Code & Tools

Perspective 4.0: High Performance Analytics and Data Visualization Component - Originally built by JP Morgan, this data visualization component, built in C++ and compiled to WebAssembly, is well-suited for large and real-time streaming datasets. The demo on the homepage lets you try visualization types at up to 1000 changes per second. v4.0 sees the project move to the OpenJS Foundation.

OpenJS Foundation

💡 Perspective comes with a rich set of examples with full code demonstrating how to use it, like this streaming example.

Agentic Postgres: Let Your Agents Cook - Build AI apps faster: Postgres with built-in memory, search, and free forkable DBs. Try it free on Tiger.

Tiger Data sponsor

Vue Data UI 3.6: Vue Components Library for Data Storytelling - There's a lot packed into this suite of components, including basic chart types through to donuts, sparklines, world views, stacks, heatmaps, word clouds, and more. Definitely worth a look if you're using Vue. Live examples.

Alec Lloyd Probert

🖼️ image-dimensions: Get the Dimensions of Images - A zero-dependency way to get the pixel width and height of JPEG, PNG/APNG, GIF, WebP, AVIF and HEIF images in any modern JavaScript environment.

Sindre Sorhus

React Syntax Highlighter: A Code Syntax Highlighting Component - If you need to show off source code in your React app somewhere, this is a component that does the job. GitHub repo.

Conor Hastings

CSSOM: A CSS Parser Written in Pure JavaScript - Also a partial implementation of CSS Object Model.

Nikita Vasilyev

• debounce 3.0 - Delay function calls until a set time elapses after the last invocation. Now a pure ES module.

• bcrypt.js 3.0.3 - Optimized bcrypt in pure JavaScript, even in the browser.

• Marked 17.0 - Markdown parser and compiler. (Docs.)

• AlaSQL.js 4.8 - Isomorphic JavaScript SQL database.

• fast-copy 4.0 - A fast deep object copier.

📢 Elsewhere in the ecosystem

A roundup of some other interesting stories in the broader landscape:

• In Your URL is Your State, Ahmad Alfy looks at the 'overlooked power' and elegance of using the URL's various components for representing state.

• Matt Perry shares everything he knows about animation performance on the Web in The Web Animation Performance Tier List.

• Ben Visness writes about how Mozilla has overhauled its internal tools for visualizing JavaScript and WebAssembly compilation, complete with some interactive graphs.

• If you were saddened by the recent closure of Glitch, Thomas Steiner demonstrates how to use Hugging Face Spaces as an alternative for hosting small server-based Node apps.

#​759 - October 31, 2025

Read on the Web

JavaScript Weekly

Directives and the Platform Boundary - First there was the "use strict" directive to opt in to strict mode in JavaScript, but now you'll encounter use client, use server, React's new use no memo, and more, and they're not standard JS features at all. Tanner thinks this proliferation of directives comes at a cost, with an increased risk of framework and tooling lock-in.

Tanner Linsley (TanStack)

Add Excel-like Spreadsheet Functionality to Your JavaScript Apps - SpreadJS is the industry-leading JavaScript spreadsheet for adding advanced spreadsheet features to your enterprise apps. Build finance, analysis, budget, and other apps. Excel I/O, 500+ calc functions, tables, charts, and more. View demos now.

SpreadJS from MESCIUS inc sponsor

🏆 TypeScript Leaps to #1 Most Used Language on GitHub - As part of this week's GitHub Universe event, GitHub released its annual report of activity on the platform. A year ago, Python jumped to #1, pushing JavaScript to #3, but this year TypeScript takes the crown and GitHub suggests LLM-oriented development played a role. Taking JavaScript and TypeScript together, however, places our ecosystem far out in front.

GitHub

IN BRIEF:

• Evan You has announced that VoidZero Inc., his company oriented around the Vite family of tools, has raised $12.5m in Series A funding.

• Lizz Parody shares a quick update on the state of the Express.js project and its recent steps forward.

• You've only got 24 hours left to take the State of JS 2025 survey.

• Vercel now supports the Bun runtime.

RELEASES:

• Node.js v24.11.0 (LTS) - Node v24 transitions to the active LTS release and will be supported until April 2028. v22.21.1 (LTS) and v25.1 (Current) were also released this week.

• Electron 39 - The cross platform desktop app framework upgrades to Chromium 142, V8 14.2, and Node 22.20.

• Ember 6.8 - The long standing framework gains a new renderComponent API and Embroider and Vite by default for much faster builds.

• Rspack 1.6, pnpm 10.20, Vite 7.2.0 Beta 1 (changelog), Three.js r181

📖 Articles and Videos

I Built the Same App 10 Times: Evaluating Frameworks for Mobile Performance - When targeting mobile devices, small bundle sizes and quick rendering times are key, so Loren wanted to see how different approaches compared. Marko, SolidStart, SvelteKit, Qwik, Nuxt, Next.js and more are all under the spotlight here.

Loren Stewart

▶ The Origin Story of JavaScript - Annie takes us all the way back to the start of the Web in the early 90s and walks us through the conditions and advancements that enabled JavaScript to take off, all the way through to our modern framework-oriented, tool-rich ecosystem. (25 minutes.)

Annie Sexton

Still Writing Tests Manually? - See why modern engineering teams like Dropbox, Notion and Wiz rely on Meticulous to run E2E UI tests.

Meticulous AI sponsor

Why NaN !== NaN in JavaScript (and the IEEE 754 Story Behind It) - NaN is a number, but it's also Not a Number! This leads to some well-known quirky behavior, but JavaScript isn't to blame.

Piotr Zarycki

What I Learned Porting Mastro from Deno to Node - Mastro is a site generator originally for Deno only. But if Deno is compatible with Node, is it easy to make Deno-facing code run on Node too? Not exactly, but it's possible.

Mauro Bieg

📄 Migrating from Node.js v22 to v24 - Now that v24 is the active LTS release, it's time to upgrade when possible. Augustin Mauroy

📄 Did You Know That There's an HTML Tables API? Christian Heilmann

📄 Writing Rust-Like Code in TypeScript Andrew Israel

🛠 Code & Tools

Navcat: 3D Floor-Based Pathfinding Library - It's not often we see a library with such a funny demo on the homepage (it involves cats and laser pointers!) Navcat is a pathfinding library, aimed at games and simulations, for enabling objects to route through 3D space. There are numerous other interesting demos too. GitHub repo.

Isaac Mason

Introducing ArkRegex: It's RegExp() with Types - The idea is simple: swap out the RegExp constructor or regular expression literals for this typed wrapper and get types for patterns and capture groups. Part of the ArkType project. - GitHub repo.

ArkType Project

Measure and Improve the Quality of Code Generated by LLMs - Open source tool to fine tune prompts, compare model code quality, & monitor generated quality over time.

Angular sponsor

Slim Select 3.0: An Advanced Select Dropdown Control - A feature-rich select dropdown component with no dependencies. v3.0 adds an official React component option, fixes bugs, and improves accessibility.

Brian Voelker

🤫 spoilerjs: Framework-Agnostic 'Spoiler Effects' - If you've got some text (or maybe sensitive data like a token) you want to hide on a page until someone clicks on it, this Telegram-inspired web component is for you.

shajid hasan

Gasket: CLI Tool to Discover 'Bridges' Between JavaScript and Native Code - Dynamic analysis tool that inspects the in-memory layout of JavaScript function objects to identify those that cross the language boundary. This is quite niche, but built by the authors of a paper about identifying such bridges for security purposes.

Alexopoulos and Sotiropoulos

> vue-command: A Terminal Emulator Component for Vue.js

Julian Claus

• 📊 Recharts 3.3 - A chart library built on top of D3. The homepage has examples and demos. v3.3 gives charts the direct ability to handle responsive sizing.

• 🦴 Cornerstone.js 4.8 - Libraries for building medical imaging apps.

• 🔎 fuzzy-search 2.0 - Fast fuzzy search library for the frontend.

• Immer 10.2 - Popular library for working with immutable state.

• Dependency Cruiser 17.2 - Tool to visualize dependencies.

• Ink 6.4 - Use React to build CLI apps.

📢 Elsewhere in the ecosystem

A roundup of some other interesting stories in the broader landscape:

• vite-plugin-use-golang is a curious new Vite plugin that lets you add a "use golang" directive to the top of a 'JavaScript' file but then actually write Go code instead (which is then compiled to WebAssembly).

• VoidZero's Alexander Lichter rounds up everything that happened at ViteConf 2025 and shares updates on Vite+, Oxlint, Vite DevTools, Nitro v3, and more.

• Mirat Can Bayrak spied a site on Flippa that makes $200 a month from just 161 lines of JavaScript.

• Node-RED is a popular 'low code' JavaScript-powered programming environment and Node-RED Con 2025 is a free, online event taking place next week (November 4) highlighting how it's used in engineering, smart homes, and even to play Factorio.