The Awesome Node.js feed

Revolutionize your code reviews with AI. CodeRabbit offers PR summaries, code walkthroughs, 1-click suggestions, and AST-based analysis. Boost productivity and code quality across all major languages with each PR.
Promo coderabbit.ai
Today

Commit-message

Holder of multiple npm packages
Featured Module // Category Utilities

Understanding ^ and ~ in package.json Dependencies

Article Popular Story // dev.to

Yesterday

Flawed Git Promises Library on npm Leads to Command Injection Vulnerability

A Git library turned into a Command Injection liability:

A promising Git library turns into a security nightmare when it harbors command injection vulnerabilities
Article Added by: lirantal // www.nodejs-security.com

json-strictify

Safely serialize a value to JSON without unintended loss of data or going into an infinite loop due to circular references.
Featured Module // Category Miscellaneous

Last 7 Days

JSDoc

An API documentation generator for JavaScript.
Featured Module // Category Documentation

mathjs

An extensive math library for JavaScript and Node.js
Featured Module // Category Math

protobuf

Protocol Buffers for JavaScript & TypeScript.
Featured Module // Category Serialization

Awesome Node.js Weekly Β» 456

Top Stories
  • Understanding Bearer Tokens: A Simple Guide for Node.js APIs
  • πŸš€ Create Complete MERN Web App (OPT verification, JWT Token and more) πŸ”₯ 🌐
  • πŸš€ Create the real time chat app by html, css, js, node.js and sovket.io πŸ”₯ 🌐

MQTT.js

The MQTT client for Node.js and the browser
Featured Module // Category Real-time

The gist

BullMQ - Message Queue and Batch processing for NodeJS and Python based on Redis
Featured Module // Category Job Queues

Last 30 Days

I found a vulnerability in Nuxt MDC

Are you using the Nuxt MDC library to render LLM generated content in your Nuxt.js apps? You want to read this article to understand how I came to find a XSS vulnerability identified today as CVE-2025-24981
Article Added by: lirantal // www.nodejs-security.com

turf

A modular geospatial engine written in JavaScript and TypeScript
Featured Module // Category Mad Science

consola

🐨 Elegant Console Logger for Node.js and Browser
Featured Module // Category Logging

pino

🌲 super fast, all natural json logger
Featured Module // Category Logging

Tackling Memory Leaks in Node.js

Article Popular Story // dev.to

client.ts - a Redux Toolkit-inspired HTTP Client

Library Popular Story // github.com

UglifyJS2

JavaScript parser / mangler / compressor / beautifier toolkit
Featured Module // Category Minifiers

CodeceptJS

Supercharged End 2 End Testing Framework for NodeJS
Featured Module // Category Testing

Awesome Node.js Weekly Β» 455

Top Stories
  • Bun is up to 20x slower than NodeJS in logic operations
  • Which Authentication to Use? A Comparison of 4 Popular Approaches
  • How we share secrets at a fully-remote startup

marko

A declarative, HTML-based language that makes building web apps fun
Featured Module // Category Templating

Holes in the Safety Net: Bypassing SSRF Protection in safe-axios

Analyzing a vulnerability in safe-axios, an npm package designed to safeguard applications from SSRF attacks.
Article Added by: lirantal // www.nodejs-security.com

Meteor 3.1.1 isΒ here!

Update Popular Story // dev.to

WebdriverIO

Next-gen browser and mobile automation test framework for Node.js
Featured Module // Category Testing

GitHub Webhook CI/CD: Step-by-step guide

Article Popular Story // dev.to

Breaking Language Barriers with Azure OpenAI and Next.js

Discover Translate.AI, a cutting-edge, AI-powered translation tool built with Azure OpenAI and Next.js for fast, accurate language translations
Article Added by: Sonichigo // blog.sonichigo.com