fidzu : news

#​762 - November 21, 2025

Read on the Web

JavaScript Weekly

Google Announces Angular v21 - The Google team has gone all out with this significant release of its popular JavaScript framework. They've put together a retro game-themed adventure-based tour of what's new, along with top notch videos showing off features like its new signal-based approach to forms, MCP server for AI-powered workflows, library of headless components focused on accessibility, and even a new 'Angular AI Tutor' to get up to speed.

Google

Authentication. Complete, Not Complex -

FusionAuth sponsor

IN BRIEF:

• Devographics' annual State of React survey is now open to take again. Here's last year's results.

• 🎤 TypeScript's Daniel Rosenwasser and Jake Bailey went on the TypeScript.fm podcast to talk about what's coming up in TypeScript 6 and 7.

• 📗 TC-39 member James M. Snell is working on a book called JavaScript in Depth for Manning. Final publication is expected in mid 2026 but four chapters are already available in early access.

• CSS Grid support should be coming to React Native soon.

RELEASES:

• Prisma 7.0 - Popular ORM for Node.js and TypeScript. The Rust-free Prisma Client is now the default.

• pnpm 10.23 - Fast, space efficient package manager.

• Node.js v25.2.1 (Current), Astro 5.16

📖 Articles and Videos

This week's TC39 meeting: The Ecma TC39 committee (the group behind the design of ECMAScript / JavaScript) met up for the 111th time this week (seen above) to discuss language proposals. The meeting notes won't be published for a few weeks, but several proposals did see some progress:

• Iterator Sequencing progressed to stage 4.

• Joint Iteration, Iterator Join, and Await dictionary of Promises go stage 2.7.

• Error.captureStackTrace, import .. with {type: "text"}, and Object.keysLength all progressed to stage 2.

• The Intl Unit Protocol also reached stage 1 to provide a way to annotate quantities with the units being measured.

• Typed Array Find Within progressed to stage 1. Think a native indexOf-type method for TypedArrays.

Note: Learn more about what the TC39 stages mean here.

Tooltip Components Should Not Exist - Dominik challenges some common wisdom in his typically erudite fashion. Stand-alone tooltip components are the wrong abstraction when separated from the underlying UI features that use them. This thinking can apply to many other UI affordances too, so the broad idea is well worth considering.

Dominik Dorfmeister (AKA TkDodo)

Agentic Postgres: Let Your Agents Cook - Build AI apps faster: Postgres with built-in memory, search, and free forkable DBs. Try it free on Tiger.

Tiger Data sponsor

Implementing Wordle in LibreOffice with JavaScript Macros - One of those fun things where the real value is in learning that you can script LibreOffice with JavaScript.

Bojidar Marinov

Automated NPM Secret Rotation in GitHub Actions - If you've built a system to automatically publish to npm, you may have had to change things due to this month's npm security changes. Here's a way to keep things ticking if you're not ready to switch to trusted publishing.

Michael Heap

Six Things I Bet You Didn't Know You Could Do With Chrome's DevTools - Part one here covers the first three, with part two covering the last three. Covers time functions, DOM observation, user action replays, and more.

Rachel Kaufman

📄 An Experiment in Making TypeScript Immutable-by-Default - "I wondered: is it possible to make TypeScript values immutable by default?" Evan Hahn

📄 How to Build Cinematic 3D Scroll Experiences with GSAP Joseph Santamaria

📄 How We Migrated 76,000 Tests from Enzyme to React Testing Library - HubSpot's tale of a big React testing migration. Charley Pugmire (HubSpot)

📄 How to 'Officially' Deprecate Methods in Node.js Code - Did you know of Node's deprecate method? Stefan Judis

🛠 Code & Tools

Webpack Bundle Analyzer 5.0: A Visual Look at Webpack's Output - An official Webpack plugin and CLI tool that shows bundle content in the form of an interactive zoomable treemap so you can dig in and see what's taking up space in your bundle (and then optimize it, ideally).

Webpack Project

TanStack DB 0.5, Now with Query-Driven Sync - TanStack DB is a client‑first reactive data store that uses differential dataflow to power live, relational queries, sub‑ms incremental updates, and seamless optimistic writes. In v0.5, a component's query becomes the API call too. "Just write your query and TanStack DB figures out exactly what to fetch."

Willis, De Parre, and Matthews

Still Writing Tests Manually? - See why modern engineering teams like Dropbox, Notion and Lattice rely on Meticulous to run E2E UI tests.

Meticulous AI sponsor

Brimstone: A New JavaScript Engine Written in Rust - Joining the hundreds of JS engines available, Brimstone has strong language support (97% of the spec), is very small, but remains a work in progress.

Hans Halverson

VueFinder: File Management Component for Vue 3 - Provides a reactive, native-like file explorer interface for users to organize, preview, and manage files.

Yusuf Özdemir

is-online 12.0: Check if the Internet Connection Is Up - Works in both Node and the browser and uses various approaches to check if the Internet is really available.

Sindre Sorhus

• PlayCanvas glTF Viewer 5.7 - 3D model viewer supporting glTF 2.0 and PLY.

• Wasp 0.19 - Wasp is a Rails-like framework built on Node, React & Prisma.

• Neo.mjs 11.7 - Multi-threaded framework for fast, desktop-like webapps.

• Inquirer.js 13.0 - Popular interactive CLI controls library for Node.js.

• Plotly.js 3.3 - Standalone data visualization library.

• Rockpack 7.0 - React app starter/generator.

• Fresh 2.2 - Deno-powered Web framework.

📢 Elsewhere in the ecosystem

Some other interesting tidbits in the broader landscape:

• Were you affected by Cloudflare's extended outage on Tuesday? If so, you might be keen to learn all the details of what happened (it was code-related). This is a fantastic example of an incident report, despite the inconvenience.

• 📗 WebAssembly from the Ground Up is a new (paid) book that walks you through building a compiler in JavaScript. There's a sample PDF showing off thirty pages of the content - it looks very promising.

• A well-presented account of how a well-known typeface company pursued another company for nonexistent license violations.

• Josef Strzibny has looked at Reddit's newly unveiled 'engagement' numbers for various programming subreddits. Redditors clearly like to be niche, as /r/node, /r/react and /r/nextjs all easily beat /r/javascript's engagement numbers.

• The above autocorrect-fuelled headline on Hacker News gave me a chuckle. If you like Bach or organ music in general, ▶️ listen to the 'new' pieces here.

• Amazon RDS for PostgreSQL now supports Postgres 18.

#​761 - November 14, 2025

Read on the Web

JavaScript Weekly

JavaScript Engines Zoo: Learn About Over 100 JS Engines - I'm a sucker for a big table of data and this is about as big as it gets when it comes to JavaScript engines. See how various engines compare, sort them by performance, or click on an engine's name to learn more about its development, history, and end users. The project's repo also has Dockerfiles for trying each of them out.

Ivan Krasilnikov

💡 Sticking with a theme, I've always enjoyed this ECMAScript compatibility table where you can see cross-browser and runtime support for different JavaScript features.

FlexGrid by Wijmo: The Industry-Leading JavaScript Datagrid - A fast and flexible datagrid for building modern web apps. Key features and virtualized rendering are included in the core grid module. Pick & choose special features to keep your app small. Built for JavaScript, extended to Angular, React, and Vue.

Wijmo From MESCIUS sponsor

Valdi: Snap's Newly-Open Cross-Platform UI Framework - The team behind Snapchat has open sourced this cross-platform UI framework that it's used in its production apps for eight years: "Write your UI once in declarative TypeScript, and it compiles directly to native views on iOS, Android, and macOS-no web views, no JavaScript bridges."

Snap

💡 Valdi's FAQ answers several questions you might have, including how it works and why you might pick Valdi over React Native.

IN BRIEF:

• The TC39 committee behind ECMAScript is meeting for the 111th time next week and has a packed agenda to discuss. (Thanks to Rob Palmer for the heads up.)

• For Stack Overflow, Tanya Janca shares several tips for writing more secure JavaScript.

• The co-founder of the fantastic Val Town online JavaScript platform shares a retrospective of its past three years, as well as two roles they're hiring for.

• Visual Types is a handy visually-oriented guide/tour of what types are and how they work, with a focus on TypeScript.

RELEASES:

• Bun v1.3.2 - Isolated package installs, introduced as the default in v1.3, were causing issues with some existing projects, so now hoisted installs are back as the default for those. bun install also gets even faster and you can do CPU profiling by running with --cpu-prof.

• Node.js v25.2.0 (Current) - Now with type stripping marked as stable.

• esbuild 0.27 - Popular bundler. A notable release for having breaking changes (so you're reminded to pin esbuild appropriately).

• TanStack DB 0.5, Node.js v24.11.1 (LTS), MikroORM 6.6

📖 Articles and Videos

▶ The State of Node.js in 2025, Explained - A thirty-minute talk from JSNation earlier this year where TSC member Matteo Collina presented an update on Node's still-growing popularity, release schedule, security, recent performance enhancements, the permissions system, and more.

GitNation

V8's Garbage Collector Developments in Recent Years - Andy, who's worked on both V8 and JavaScriptCore in the past, reviews the major developments in the V8 engine's garbage collector over the past couple of years. Very technical, but a valuable piece of history.

Andy Wingo

Build Type-Safe APIs for Your JS Apps: Protobuf Workshop with Buf Team - Learn how Protobuf brings type safety across your stack from Node.js APIs to frontend clients. Live Q&A with Buf engineers.

Buf sponsor

Comparing Electron vs. Tauri for Building and Distributing a Desktop App - A team working on an open-source desktop app built using JavaScript and Electron took a look into the Rust-based Tauri instead, with mixed, but mostly positive, results.

Eric Richardson

Using Expo for React Native Development in 2025: A Perspective - Expo has essentially become to React Native what Next.js became to React. But is it well suited for you? Jack weighs the pros and cons.

Jack Rosa

📄 How We Catch UI Bugs Early with Visual Regression Testing - Using Playwright and its visual comparisons feature. Tommaso Ruscica

📺 Learn JavaScript by Building 'Mario' - One of Ania's typically easy to follow, comprehensive tutorials. Ania Kubow

📄 Building a 3D Infinite Carousel with Reactive Background Gradients Clément Grellier

📄 Error Chaining in JS: Cleaner Debugging with Error's cause Matt Smith

🛠 Code & Tools

imgui-react-runtime: React + Dear ImGui + Static Hermes - When the author teased a demo of this on X a few weeks ago, I wasn't sure if it would get released, but here it is. A new way to put together native apps using React and the popular lightweight GUI library Dear ImGui.

Tzvetan Mikov

ESLint Plugin for Baseline JavaScript - The winner of last month's Baseline Tooling Hackathon is an ESLint plugin that flags code that's using features newer than your configured Baseline target (features broadly supported by modern browsers).

Ryuya Hasegawa

Customizable JavaScript Libraries for Forms & Surveys - Create branded, dynamic forms with full control over design, logic, and data storage.

SurveyJS sponsor

pnpm 10.21: Safer Installs and Smarter Runtime Management - Now installs the Node version required by a dependency, declared in its engines.runtime field, meaning CLI apps and postinstall scripts will run with the specified version. The trustPolicy setting also adds protection against supply-chain attacks by failing to install a package if its trust level drops.

Zoltan Kochan

Ink 6.5: Build Interactive CLI Apps using React - A very widely used terminal-based React renderer for building reactive terminal apps using components. v6.5 is notable for adding an incremental rendering option.

Vadim Demedes

• vis-timeline 8.4 - Interactive control to visualize data across time, as shown above. Numerous examples here.

• rasterizeHTML.js 1.4 - Renders HTML into a canvas element. Now supporting OffscreenCanvas too.

• file-type 21.1 - Detect the file type of a file, stream, or data in both Node and the browser.

• Svelte SEO 2.0 - Optimize your Svelte app for search engines and social media.

• isomorphic-git 1.35 - Pure JS implementation of git for Node & browsers.

📢 Elsewhere in the ecosystem

Some other interesting tidbits in the broader landscape:

• 🔒 OWASP (Open Worldwide Application Security Project) has released its list of the top ten web application security threats in 2025.

• 🤖 An ardent critic of LLMs spent a month doing 'chat oriented programming' and while he found the experience "infuriating", he concedes it has merit and is a viable option "if your tolerance for pain is high enough.".

• 🧊 Ever fancied implementing a voxel-based engine for that Minecraft-esque experience? Uses (very Rust-y) pseudocode in order to remain timeless and let you enjoy doing the implementation yourself.

• An explanation of the differences between monorepos, multi-repo, submodule and subtree setups in Git.

• 💻 If you like collecting stickers from conferences, you might enjoy this gallery of hundreds of people's stickered-up laptops or even want to submit your own. It took me a while to find any JavaScript stickers, but they're there..

🎂 P.S. JavaScript Weekly turned fifteen years old this week! Thanks to all of you for reading, and particularly anyone still subscribed from the first issue. We haven't looked at the stats in a while, but we know there are some of you! :-)

#​760 - November 7, 2025

Read on the Web

JavaScript Weekly

The Inner Workings of JavaScript Source Maps - Ever wondered how devtools can magically turn mangled, minified JavaScript back into readable source while debugging? Zero magic; that's a source map doing its job. But how do source maps actually work under the hood?

Manoj Vivek

Ship Secure MCP Auth Without Relying on API Keys - API keys are hard to scope and break user flows. WorkOS Connect delivers a fully compliant OAuth 2.1 flow. It handles PKCE, scopes, user consent, and secure token issuance out of the box.

WorkOS sponsor

Anders Hejlsberg's Take on the Rise of TypeScript - The co-creator of TypeScript says he's 'floored' by the language's success (now the number one language on GitHub in 2025), shares a little info on the on-going compiler rewrite in Go, and the increasing role of AI.

The GitHub Blog

Embedding TypeScript with Hako - A technical look at the Hako JavaScript engine. It runs in WebAssembly so can be more easily embedded in more environments, including mobile apps.

Andrew Sampson

IN BRIEF:

• GitHub has updated its post about ongoing npm security changes. npm classic tokens can no longer be created, but existing ones will continue to work till February 3, 2026 at the latest.

• I enjoyed Lea Verou's cute proxy-based trick for creating symbols on demand.

• The Svelte team has a November 2025 update on what's new in Svelte.

• 🇷🇴 The popular JSHeroes conference is taking place in Romania next May 14-15. If you'd like to speak, its CFP is open until December 31.

RELEASES:

• Storybook 10 - The popular frontend component workshop is now ESM-only, lighter, has a new module automocking system, Vitest 4 support, and more.

• htmx 4.0 Alpha 1 - There was never going to be a v3 of htmx, so how about v4? Carson Gross tells the full story here.

• React Email 5.0 - Suite of components for creating emails in React. Now with a dark mode switcher and Tailwind 4 support.

• Turborepo 2.6, Video.js v10, ESLint Config Inspector v1.4

📖 Articles and Videos

▶ The Talk Videos from CascadiaJS 2025 - CascadiaJS took place a month ago and the talk videos have been gradually rolling out onto YouTube. You can learn more about TanStack with Jack Herrington, the origin story of JavaScript with Annie Sexton, the Web Monetization API with Ioana Chiorean, and more.

CascadiaJS

High-Performance Syntax Highlighting with the CSS Custom Highlight API - Now supported in all major browsers, the CSS Custom Highlight API provides a mechanism for styling arbitrary text ranges in a document by using JavaScript to create the ranges, and CSS to style them.

Pavitra Golchha

How to Create a Virtual Green Screen Using the Vonage Video API - Transform video calls with virtual green screens using the Vonage Video API and HTML5 canvas.

Vonage sponsor

How to Throttle Specific Requests in Chrome DevTools - Chrome DevTools has supported network throttling for a long time but you can now throttle requests to specific URLs or domains too, which could be ideal if you want to see how your site handles the failure of third party scripts.

Matt Zeunert

?! Importing Node Modules from BitTorrent - A fascinating demo of the power of Node.js's customization hooks for overriding import behavior.

Evan Hahn

Advanced Beginner's Guide to ClojureScript - An introduction to a compiler for the functional Clojure Lisp dialect that produces JavaScript.

Roman Liutikov

📄 Handling Time and Mock Clocks in Tests Andrew Scott (Angular)

📄 Zod + TypeScript: Schema Validation Made Easy Hassan Djirdeh

📄 Next.js 16: What's New and What It Means for Frontend Devs Abiola Farounbi (LogRocket)

🛠 Code & Tools

Perspective 4.0: High Performance Analytics and Data Visualization Component - Originally built by JP Morgan, this data visualization component, built in C++ and compiled to WebAssembly, is well-suited for large and real-time streaming datasets. The demo on the homepage lets you try visualization types at up to 1000 changes per second. v4.0 sees the project move to the OpenJS Foundation.

OpenJS Foundation

💡 Perspective comes with a rich set of examples with full code demonstrating how to use it, like this streaming example.

Agentic Postgres: Let Your Agents Cook - Build AI apps faster: Postgres with built-in memory, search, and free forkable DBs. Try it free on Tiger.

Tiger Data sponsor

Vue Data UI 3.6: Vue Components Library for Data Storytelling - There's a lot packed into this suite of components, including basic chart types through to donuts, sparklines, world views, stacks, heatmaps, word clouds, and more. Definitely worth a look if you're using Vue. Live examples.

Alec Lloyd Probert

🖼️ image-dimensions: Get the Dimensions of Images - A zero-dependency way to get the pixel width and height of JPEG, PNG/APNG, GIF, WebP, AVIF and HEIF images in any modern JavaScript environment.

Sindre Sorhus

React Syntax Highlighter: A Code Syntax Highlighting Component - If you need to show off source code in your React app somewhere, this is a component that does the job. GitHub repo.

Conor Hastings

CSSOM: A CSS Parser Written in Pure JavaScript - Also a partial implementation of CSS Object Model.

Nikita Vasilyev

• debounce 3.0 - Delay function calls until a set time elapses after the last invocation. Now a pure ES module.

• bcrypt.js 3.0.3 - Optimized bcrypt in pure JavaScript, even in the browser.

• Marked 17.0 - Markdown parser and compiler. (Docs.)

• AlaSQL.js 4.8 - Isomorphic JavaScript SQL database.

• fast-copy 4.0 - A fast deep object copier.

📢 Elsewhere in the ecosystem

A roundup of some other interesting stories in the broader landscape:

• In Your URL is Your State, Ahmad Alfy looks at the 'overlooked power' and elegance of using the URL's various components for representing state.

• Matt Perry shares everything he knows about animation performance on the Web in The Web Animation Performance Tier List.

• Ben Visness writes about how Mozilla has overhauled its internal tools for visualizing JavaScript and WebAssembly compilation, complete with some interactive graphs.

• If you were saddened by the recent closure of Glitch, Thomas Steiner demonstrates how to use Hugging Face Spaces as an alternative for hosting small server-based Node apps.