Looks as if Claude 3.7 Sonnet is of the opinion that the mock object must have all properties it can possible find in its dataset .... #funwithai #typescript #nodejs
Recent searches
Search options
#nodejs
25 posts23 participants0 posts today
pnpm version 10.7.0 has just been released. Install or upgrade from https://www.npmjs.com/package/pnpm #devnotes #nodejs
Как создать мини-приложение VK Mini Apps: пошаговое руководство
Мини-приложения ВКонтакте (VK Mini Apps) открывают возможность предоставить пользователям функционал от простейших игр и квизов до сложных сервисов бронирования или интернет-магазинов, не выходя из приложения VK. Благодаря инструментам, которые предоставляет платформа, процесс создания мини-приложения ВКонтакте достаточно прозрачен даже для начинающих. Ниже мы пошагово разберем все основные этапы разработки VK Mini Apps: от выбора инструментов до публикации в каталоге приложений внутри ВКонтакте.
ХабрКак создать мини-приложение VK Mini Apps: пошаговое руководствоМини-приложения ВКонтакте (VK Mini Apps) открывают возможность предоставить пользователям функционал от простейших игр и квизов до сложных сервисов бронирования или интернет-магазинов, не выходя из...
I've just installed #atop on #sydbox #ctf server in case people want to explore exploiting the recent heap corruption. I don't trust jia tan enough to leave atop.service running as root though so the attack vector is limited. Sail with #ssh to syd.chesswob.org (user/pass: syd) or go to https://syd.chesswob.org although the #nodejs client is a bit more limited. See here for the #security issue, https://www.openwall.com/lists/oss-security/2025/03/26/2 (tl;dr uninstall #atop asap!) and here for #sydbox #ctf https://ctftime.org/event/2178
syd.chesswob.orgSydB☮x CTF Server
Keep up to date with 
Replied in thread
@richardlau Thanks Richard, I will respin the older Node-RED containers next week to pick up the last batch of CVE patches.
#NPM: Two malicious packages were discovered on npm (#NodeJS package manager) that covertly patch legitimate, locally installed packages to inject a persistent reverse shell backdoor:
#SoftwareSupplyChainSecurity
https://www.bleepingcomputer.com/news/security/new-npm-attack-poisons-local-packages-with-backdoors/
In #Deno `url.domainToASCII` behaves differently from #nodejs and #bun
https://blog.revathskumar.com/2025/03/deno-url-domainToASCII-behaves-differently-from-nodejs.html
blog.revathskumar.com · Deno : url.domainToASCII behaves differently from nodejsDeno : url.domainToASCII behaves differently from nodejs
»10 Gründe JavaScript zu hassen – oder zu lieben:
Drei Dekaden der Entwicklungsarbeit gehen auch an JavaScript nicht spurlos vorüber. Im Guten, wie im Schlechten.«
Ich sehe dies sehr ähnlich und bin aber immer noch der Meinung, dass JavaScript (TypeScript) eigentlich nur im Browser angewendet werden sollte da ansonsten "zu langsam" ist.
https://www.computerwoche.de/article/3844108/10-grunde-javascript-zu-hassen-oder-zu-lieben.html
Computerwoche10 Gründe JavaScript zu hassen – oder zu liebenDrei Dekaden der Entwicklungsarbeit gehen auch an JavaScript nicht spurlos vorüber. Im Guten, wie im Schlechten.
Want to practice web app security in a safe environment? Check out VulnNodeApp - an intentionally vulnerable Node.js app designed for security training. Learn SQLi, XSS, and more with real-world examples. Perfect for both offensive & defensive practice. https://redteamnews.com/news/vulnnodeapp-a-purposefully-vulnerable-node-js-application-for-security-training/ #NodeJS #SecurityTraining
Red-Team News · VulnNodeApp: A Purposefully Vulnerable Node.js Application for Security Training - Red-Team NewsVulnNodeApp serves as an intentionally vulnerable Node.js application specifically designed for security education and training purposes. This open-source
Want to practice finding and fixing Node.js security flaws? VulnNodeApp is an intentionally vulnerable open-source project perfect for security training. Learn SQLi, XSS, and more in a safe environment. Check it out: https://redteamnews.com/news/vulnnodeapp-a-purposefully-vulnerable-node-js-application-for-security-training/ #WebSecurity #NodeJS
Red-Team News · VulnNodeApp: A Purposefully Vulnerable Node.js Application for Security Training - Red-Team NewsVulnNodeApp serves as an intentionally vulnerable Node.js application specifically designed for security education and training purposes. This open-source
return(GiS); | Revisa qué módulos de Node.js no estás usando con depcheck y Github Actions | https://returngis.net/2025/03/revisa-que-modulos-de-node-js-no-estas-usando-con-depcheck-y-github-actions/ #Nodejs #DevOps #DevSecOps #GitHubActions
[Перевод] 16 NPM-пакетов, о которых должен знать каждый Node.js-разработчик
В этой статье мы рассмотрим 16 обязательных для любого Node.js‑разработчика NPM‑пакетов. Мы подробно расскажем о них, включая их ключевые особенности, как их установить и как именно вы можете использовать их в своих проектах для улучшения ваших рабочих процессов.
Хабр16 NPM-пакетов, о которых должен знать каждый Node.js-разработчикTL;DR: обзор 16 основных пакетов для Node.js‑разработки, доступных в NPM, включая Express.js для создания веб‑приложений, Axios для выполнения HTTP‑запросов и Mongoose...
Replied in thread
Out of pure curiosity, and because I'm on that #webdev #framework discovery tip. Heck, this project even made me download an IDE for Android lol
Just to read `install.bin` - which is an sh script.
Excuse me, but why are you bundling #nodejs and #npm? Is it to facilitate a setup process for containers, or is it merely to make the process easy?
I'm a bit sceptical to that sort of thing, especially when fetching from a vendors domain directly.
Any plans to build packages via CI?
Replied in thread
@nojhan Hey, thanks for your comment and for trying out Numtap! 
I totally get why you'd compare it to Python REPL—it's a solid tool for calculations. Your feedback actually inspired me to release v1.1.0 with several improvements, so thank you for that! 
Here’s how Numtap now stands out for terminal workflows:
Instant Launch & Lightweight: Numtap is super lightweight (just 52.7 kB) and launches instantly—no waiting for a full Python environment to load or importing modules like math. Perfect for quick math during scripting or analysis! 
Built-in REPL Features for Terminal Workflows: Numtap comes with commands like history (shows all calculations with timestamps), last (recalls the last result), and clear (clears the screen)—all tailored for a seamless CLI experience. In Python, you’d need extra setup to get similar functionality. 
Scientific Functions, No Imports Needed: Functions like sin(), cos(), log(), and unit conversions (e.g., 90 deg to rad) are ready to use right away. In Python, you’d need to import math and convert units manually (e.g., math.sin(math.radians(45))), which slows you down. 
Colorful & Clear Output: Using chalk, Numtap provides color-coded feedback (e.g., green results, red errors), making it easier to read during long sessions. Python REPL’s plain text can feel less user-friendly in comparison. 
Smooth Error Handling: Numtap handles errors without crashing the session, with clear messages like "Undefined symbol" or "Unexpected operator". Python’s error tracebacks can be overwhelming for quick math tasks.
Specialized for Terminal Math: Numtap is built specifically for terminal calculations, with two modes: Quick Mode (e.g., numtap "2 + 3") for one-off expressions, and Interactive Mode for chained calculations. Python REPL is more general-purpose, so it’s less focused for this use case.
Numtap is designed to be a go-to tool for terminal users—like in infosec workflows—where speed, simplicity, and a polished CLI experience matter. It works on Linux, macOS, and Windows (via WSL) with just Node.js installed. For more details, check out the links below! 
Npm: https://www.npmjs.com/package/numtap
GitHub: https://github.com/AbdeslamChouimet/numtap
I’d love to hear your thoughts on this updated version! Your feedback was super helpful, and I’d really appreciate more comments like yours to keep improving Numtap. What features would make it even more useful for your needs? 
How to Get Deep Traces in Your Node.js Backend With OTel and Deno, by @andyjiang@x.com (@deno_land):
Deno BlogHow to get deep traces in your Node.js backend with OTel and DenoAdding meaningful tracing to a Node backend requires additional instrumentation and configuration. Here’s another approach that requires zero additional code.
Я поняла что хочу разрабатывать на NodeJS. Python перестал меня удовлетворять в плане веб-разработки. На нём написан единственный приемлемый и то не без косяков асинхронный фреймворк Starlette, но такие библиотеки как SQLAlchemy и Pytest главным образом работают синхронно, а в Alembic так вообще нет асинхронности, т.е. для того чтобы сделать миграцию, нужно помимо асинхронного SQL драйвера ставить ещё и синхронный. Поэтому мне захотелось полностью поменять свой стек технологий.
#python #nodejs
Hey infosec folks
I’m excited to share my project 
"Numtap", a CLI calculator that brings quick and reliable math to your terminal—perfect for those moments when you need fast calculations during analysis or scripting!
Why Numtap? 
- An open-source CLI calculator for basic operations (like 2 + 3) and advanced functions (like sin, sqrt) 
- Works in two modes: Interactive (for ongoing calculations) or Quick (for one-off expressions)
- Built with JavaScript using `mathjs` for precision and `chalk` for a colorful interface
- Keeps a history of your calculations
Get Started 
Install Numtap with the command below:
$ npm install -g numtap
Check out the screenshots below to see it in action! For more details, visit the links below.
Links:
- [GitHub](https://github.com/AbdeslamChouimet/numtap)
- [npm](https://www.npmjs.com/package/numtap)
I’d love to hear your feedback 
and suggestions for improvement! What do you think ? Do you find CLI tools like this useful in your infosec workflows?
