May 28, 2025

Subject: JSPM 4.0; history of JS; ESLint v9.0.0 retrospective; Bun v1.2.14; debugging JS in Wasm; array.at(); Temporal API; 2025-04 TC39 meeting

Detect suspicious package updates in real-time.

socket.dev Sponsor

Socket detects and blocks both vulnerable and malicious dependencies, within minutes of them being published to public registries, making it the most effective tool for blocking zero-day supply chain attacks. We detect 70+ indicators of risk, including malware, typosquatting, hijacked packages, obfuscated code, privileged APIs, and more. Install our free GitHub app to protect your codebase today.

JSPM 4.0: dependency management via import maps in browsers (benefits: reduced tooling and more)

jspm.org @guybedford@fosstodon.org

“One of the major changes in JSPM 4.0 is import maps are now treated as package management artifacts more like lock files than manifests for hand-editing.”

“All package management operations output by default to the new importmap.js import map injection script file. This is effectively a workaround for the lack of external import map support for an importmap.json file in browsers.”

A brief history of JavaScript

deno.com @deno_land@fosstodon.org

“This year, JavaScript turns 30.”

“Within three decades, JavaScript went from being a weird little scripting language developed in 10 days to the world's most popular programming language. Here are some key moments in its history to show how JavaScript has evolved and where it is headed.”

ESLint v9.0.0: A retrospective - ESLint - Pluggable JavaScript Linter

eslint.org @nzakas@fosstodon.org @eslint@fosstodon.org

“In April 2024, we released ESLint v9.0.0, our first major release in nearly three years. The key feature of v9.0.0 would be the new configuration system, which had received positive reviews while in development. While we anticipated a smooth launch, the release quickly proved challenging. Initial online sentiment was largely negative, with users saying v9.0.0 ‘wasn’t ready,’ ‘didn’t work,’ or even ‘broke the ecosystem.’ Some postponed upgrading, while others considered switching tools altogether. The experience was frustrating for both the team and the community. Now, more than a year later, we’re reflecting on what went well, what didn’t, and what we’ve learned.”

Bun v1.2.14: catalogs in bun install and more

bun.sh @jarredsumner@hachyderm.io github.com/oven-sh

The state of JavaScript debugging in WebAssembly

thenewstack.io @TheNewStack@hachyderm.io

JavaScript features

How JavaScript’s at() method makes array indexing easier

allthingssmitty.com github.com/allthingssmitty

JavaScript’s upcoming Temporal API and what problems it will solve

waspdev.com github.com/surenenfiajyan

Summary of the April 2025 TC39 plenary

blogs.igalia.com @igalia@floss.social

This email was sent to {{ email | default }}. You can unsubscribe from this list here or update your preferences.