We have 11 links for you - Stay up-to-date on JavaScript and tools

‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏ ‌‍‎‏

November 12, 2024

Subject: E18e showcase; composite Map keys; ??= operator; Node.js pull requests; Rspack 1.1; JSR Working Group; vlt Package Manager & Serverless Registry; Deno package management; npmpackage.info

e18e (ecosystem performance): October contributions showcase

e18e.dev @e18e@m.webtoo.ls

Composite Map keys in JavaScript with bitsets

justinfagnani.com @justinfagnani@fosstodon.org

JavaScript’s ??= operator: default values made simple

www.trevorlasn.com github.com/indreklasn

Node.js implements stricter policies for semver-major pull requests ahead of release deadlines

socket.dev @sarahgooding@fosstodon.org @SocketSecurity@fosstodon.org

Rspack 1.1: performance improvements and more

rspack.dev github.com/LingyuCoder github.com/ahabhgk github.com/GiveMe-A-Name github.com/9aoy github.com/chenjiahan github.com/web-infra-dev

Package management

JSR Working Group kicks off with ambitious roadmap and plans for open governance

socket.dev @sarahgooding@fosstodon.org @SocketSecurity@fosstodon.org

Introducing the vlt Package Manager & Serverless Registry

blog.vlt.sh github.com/darcyclarke github.com/ruyadorno github.com/isaacs github.com/lukekarrys @vltpkg@fosstodon.org

We already mentioned these projects in last week’s issue. This is the official announcement. For more reporting, you can read “vlt Debuts New JavaScript Package Manager and Serverless Registry at NodeConf EU” by Sarah Gooding for Socket.

Deno’s new built-in package management for npm and JSR

deno.com github.com/ry github.com/bartlomieju github.com/nathanwhit github.com/lambtron @deno_land@fosstodon.org

“With Deno 2, we’ve introduced several subcommands to simplify dependency management: deno add, deno remove, and deno install. These commands will feel familiar to Node users, but offer greater flexibility, allowing you to import npm and JSR packages seamlessly — even within Node projects.”

npmpackage.info: detailed information about npm packages

npmpackage.info github.com/shrinathnayak07

Ship fast. Stay secure.

socket.dev Sponsor

Socket’s AI-powered threat detection blocks JavaScript supply chain attacks before they have the chance to compromise your dependencies. In addition to scanning for known vulnerabilities, Socket detects 70+ supply chain and code quality issues. Install our free GitHub app in under two minutes and start protecting your repositories today.

‍

This email was sent to {{ email | default }}. You can unsubscribe from this list here or update your preferences.

‍