Package Installer Security Checks and Scope Limitations

It’s our 5th annual New Year’s party! Jerod & the gang review our predictions from last year, discuss what’s trending in the web world, make a few predictions for 2024 & even set some new resolutions for this year.

Join the discussion

Changelog++ members save 3 minutes on this episode because they made the ads disappear. Join today!

Sponsors:

• Socket – Secure your supply chain and ship with confidence. Install the GitHub app, book a demo or learn more
• Fly.io – The home of Changelog.com — Deploy your apps and databases close to your users. In minutes you can run your Ruby, Go, Node, Deno, Python, or Elixir app (and databases!) all over the world. No ops required. Learn more at fly.io/changelog and check out the speedrun in their docs.

Featuring:

• Jerod Santo – GitHub, LinkedIn, Mastodon, X
• Amal Hussein – GitHub, X
• Nick Nisi – Website, GitHub, Mastodon, X
• Kevin Ball – Website, GitHub, LinkedIn, X
• Christopher Hiller – Website, GitHub, Mastodon, X

Show Notes:

• Last year’s New Year’s party
• Twitter thread highlighting collaboration between NodeJS and Bun maintainers on finding and improving a node performance bottleneck
• Joyee Cheung (Node contributor and TSC member) sharing her updates on the node performance issue highlighted above
• Direct link to GH issue thread on the suggested node perf improvement
• Smoot - Wikipedia
• JS Party Survey Github Collaboration Repo (content coming soon)

Something missing or broken? PRs welcome!