PodRocket

Daniel Thompson-Yvetot, a software engineer and key figure in the Tauri project, discusses the exciting updates in Tauri 2.0. He explains how Tauri allows developers to use popular frameworks like React and Vue while leveraging Rust to enhance performance and reduce app sizes. The conversation delves into Tauri's new plugin system, mobile app development challenges, and strategies for OS-specific implementations. Daniel shares insights on future goals for Tauri, including enhanced flexibility, accessibility, and compliance in Europe.

Mark Techson, a software engineer on the Angular team, dives into the exciting features of Angular v21. He introduces Signal Forms, which enhance reactivity and validation. The discussion also covers Angular ARIA, providing headless components that improve accessibility while allowing custom styling. Mark highlights the integration of AI tooling for modern developer workflows, including the Angular MCP server and an AI tutor. Finally, he shares insights on using Vitest for testing and balancing developer needs with innovative changes.

Paul, a PodRocket host and YouTuber, dives into the exciting developments in AI and open source. He discusses Anthropic's acquisition of Bun, exploring its impact on the JavaScript ecosystem and open-source sustainability. The panel weighs concerns over Zig's departure from GitHub due to its AI focus, raising questions about the developer experience. They also tackle npm security vulnerabilities and the evolving landscape of AI infrastructure economics, offering insightful takes on the future of tooling and developer productivity.

Kent C. Dodds, a renowned software engineering educator, joins to discuss the revolutionary Model Context Protocol (MCP) and its implications for AI and web development. He explores how developers can create Jarvis-like assistants and posits that this could transform traditional web browsing. Kent highlights the need for integration across AI tools and envisions MCP servers as dynamic replacements for websites. He also addresses security challenges and emphasizes the importance of voice interfaces in future AI interactions, making this a must-listen for tech enthusiasts!

In this engaging discussion, Tanner Linsley, a frontend engineer and the mastermind behind libraries like React Query, delves into the evolution of TanStack. He explains the significance of virtualized lists for performance and why forms pose challenges in React. Tanner introduces TanStack Start, highlighting its client-first approach to data handling. He also shares insights on React Server Components, composable tools, and the future roadmap for TanStack, including AI, DevTools, and sustainable support for open-source initiatives.

In this episode, Noel sits down with David Mytton, founder and CEO of Arcjet, to unpack the React2Shell vulnerability and why it became such a serious remote code execution risk for apps using React server components and Next.js. They explain how server-side features introduced in React 19 changed the attack surface, why cloud providers leaned on WAF mitigation instead of instant patching, and what this incident reveals about modern JavaScript supply chain risk. The conversation also covers dependency sprawl, rushed patches, and why security as a feature needs to start long before production. Links X: https://x.com/davidmytton Blog: https://davidmytton.blog Resources Multiple Threat Actors Exploit React2Shell: https://cloud.google.com/blog/topics/threat-intelligence/threat-actors-exploit-react2shell-cve-2025-55182 We want to hear from you! How did you find us? Did you see us on Twitter? In a newsletter? Or maybe we were recommended by a friend? Fill out our listener survey! https://t.co/oKVAEXipxu Let us know by sending an email to our producer, Elizabeth, at elizabeth.becz@logrocket.com, or tweet at us at PodRocketPod. Check out our newsletter! https://blog.logrocket.com/the-replay-newsletter/ Follow us. Get free stickers. Follow us on Apple Podcasts, fill out this form, and we’ll send you free PodRocket stickers! What does LogRocket do? LogRocket provides AI-first session replay and analytics that surfaces the UX and technical issues impacting user experiences. Start understanding where your users are struggling by trying it for free at LogRocket.com. Try LogRocket for free today. Chapters

Shruti Kapoor, a staff engineer and educator expert in React, dives into the latest features of React 19.2. She breaks down innovations like Activity for easy state restoration and View Transitions for seamless animations. The discussion covers useEffectEvent for better event handling and cacheSignal for efficient server interactions. Shruti also touches on new Chrome DevTools performance tracks and the stable React Compiler, making your development experience smoother. It's an insightful look into React's evolution!

Dominik Dorfmeister, a software engineer at Sentry and open source maintainer, dismantles common React myths around useCallback and useMemo. He reveals how these hooks often complicate rather than enhance performance. Dominik discusses the React Compiler's potential, advocating for the latest ref pattern as a simpler alternative. He warns about the dangers of overusing memoization and emphasizes that clarity and maintainability should trump micro-optimizations. Listeners will gain insights on improving code reviews and optimizing team practices.

Will Madden, Senior Engineering Manager for the Prisma ORM team, shares insights into Prisma v7's exciting evolution. He discusses the significant shift from Rust to TypeScript, enhancing performance and predictability with less 'magic' involved. Will dives into improvements in Prisma Studio, better compatibility with serverless environments, and how JavaScript ORM tools will shape future coding workflows aided by language models. Don’t miss his perspective on how these changes lay the foundation for an adaptable, developer-friendly ORM.

The hosts discuss the latest GitHub Octoverse report and the rise of TypeScript as the top programming language. They explore how Copilot impacts code quality and contributor burnout, alongside a concerning drop in code review comments. The conversation delves into the need for corporate support in open source projects, emerging AI vulnerabilities, and the growing importance of local AI models like Ollama. They also address the potential for AI to streamline development tasks but warn of the governance gaps in open source.