Front-End Fire podcast | Gratis online luisteren

Beschikbare afleveringen

5 van 118

React Goes Independent: Inside the New React Foundation
It’s been a big week for React devs as the annual React Conf just wrapped up in Las Vegas. The biggest news? React and React Native are moving out from under Meta to a new React Foundation with an independent technical governance structure. The React Foundation’s mission will be to support the React community and ecosystem, and a board of directors will steer it going forward.Also in time for React Conf, React 19.2 dropped, and it brings new features like partial pre-rendering, a new useEffectEvent hook, and an <Activity/> component that lets devs prioritize rendering tomaintain state and make navigation faster.Not to be outdone, Cloudflare announced a new RPC protocol called Cap’n Web, which is a pure TypeScript implementation. What makes Cap’n Web unique is that it supports bi-directional calling, promise pipelining, and lets users design RPC interfaces that look like regular JavaScript APIs.Chapter Markers:03:18 - React Foundation07:10 - React Compiler 1.0 and React 19.217:13 - Cap’n Web24:19 - Opera Neon27:16 - The EU is considering cookie law changes31:43 - The Internet Archive hits 1 trillion pages33:33 - What’s making us happyLinks:Paige - Cap’n Web pure TypeScript RPC systemJack - Introducing the React FoundationTJ - React 19.2European policymakers may be fixing the cookie banner headache they createdOpera wants you to pay $20 per month for its new AI browserCelebrating 1 Trillion Web Pages Archived What Makes Us Happy this Week:Paige - The Terminal List: Dark Wolf TV seriesJack - Fender Acoustasonic guitarTJ - Portable stadium seat additionThanks as always to our sponsor, the Blue Collar Coder channel on YouTube. You can join us in our Discord channel, explore our website and reach us via email, or talk to us on X, Bluesky, or YouTube.Front-end Fire websiteBlue Collar Coder on YouTubeBlue Collar Coder on DiscordReach out via emailTweet at us on X @front_end_fireFollow us on Bluesky @front-end-fire.comSubscribe to our YouTube channel @Front-EndFirePodcast
--------
41:10
--------
41:10
Claude Code Levels Up: VS Code Extension, Checkpoints & Sonnet 4.5
Anthropic dropped a bunch of good Claude Code updates. There’s a new a native VS Code extension, a v2 of the terminal version of Claude, code checkpoints, and it’s all powered by Sonnet 4.5, Anthropic’s best coding model yet.On top of Claude’s glow up, the Google Chrome team launched a Chrome DevTools MCP. AI coding assistants will be able to debug web pages directly in a Chrome browser, including using DevTools to review network requests, console output and page structure, simulate user interactions, and even automate performance audits.In a poorly planned move, the CEO of Vercel tweeted a picture of himself meeting with the controversial Israeli Prime minister, Benjamin Netanyahu. This sparked a massive online backlash, some Vercel employees quit, and many customers are leaving the hosting site and vowing to stop using Next.js, as well. Timestamps:00:46 - Claude Sonnet and Claude Code updates7:55 - Chrome DevTools MCP13:50 - Vercel Drama19:03 - State of JS survey is open20:21 - GitHub’s plan to make npm more secure25:30 - Meta builds data center the size of 70 football fields29:04 - What’s making us happyLinks:Paige - Chrome DevTools MCPJack - Vercel’s in hot water after a selfie with Benjamin NetanyahuTJ - Claude Code levels upState of JS survey is openGitHub’s got a plan to make npm more secureMeta builds AI data center the size of 70 football fieldsPaige - Star Trek: Strange New Worlds season 3Jack - reactnorway.comThanks as always to our sponsor, the Blue Collar Coder channel on YouTube. You can join us in our Discord channel, explore our website and reach us via email, or talk to us on X, Bluesky, or YouTube.Front-end Fire websiteBlue Collar Coder on YouTubeBlue Collar Coder on DiscordReach out via emailTweet at us on X @front_end_fireFollow us on Bluesky @front-end-fire.comSubscribe to our YouTube channel @Front-EndFirePodcast
--------
41:58
--------
41:58
Adam Argyle on Cracking the 2025 Web Dev Interview
CSS wizard, and now Staff Design Engineer at Shopify, Adam Argyle, joins us on this episode to talk about what web development interviews are like in 2025 and what folks can do to stand out today.Links:Adam’s nerdy.dev websiteAdam’s Argyle Ink websiteAdam on YouTubeAdam on BlueskyAdam on GitHubAdam on XAdam on LinkedInhttps://nerdy.dev/cascading-secret-sauce https://www.capcut.com What Makes Us Happy this Week:Paige - Why Is This Interesting (WITI) newsletterTJ - Strands NYT gameJack - Final Destination seriesAdam - EP-1320 medieval - Clues By SamThanks as always to our sponsor, the Blue Collar Coder channel on YouTube. You can join us in our Discord channel, explore our website and reach us via email, or talk to us on X, Bluesky, or YouTube.Front-end Fire websiteBlue Collar Coder on YouTubeBlue Collar Coder on DiscordReach out via emailTweet at us on X @front_end_fireFollow us on Bluesky @front-end-fire.comSubscribe to our YouTube channel @Front-EndFirePodcast
--------
1:03:05
--------
1:03:05
npm Under Siege: The “Shai-Hulud” Worm Attack
The supply chain attacks on npm continue and this week, Crowdstrike’s npm packages fell victim to the “Shai-Hulud” worm. To mitigate the potential of downloading these malicious packages, consider pinning specific package versions in JS projects and using 2FA to publish new package versions to npm.Also this week, WebAssembly Specification (Wasm) released v3.0. This version dramatically expands the memory Wasm apps can use, supports multiple memory usage, and now allows garbage collection.It’s been a while since we last covered LLM options for folks who want to run their own models locally or in the browser, so Jack gives a quick rundown of some of the best options out today. There’s WebLLM from MLC, MediaPipe from Google, and ONNX from Microsoft, and although none are easily interchangeable with another, if cost, privacy, or working offline are concerns of your LLM-enabled app, these may be good options to explore.Chapter Markers:00:58 - npm supply chain attack16:28 - Wasm 3.023:34 - LLM options in the browser34:41 - Jack’s experience at CascadiaJS and a discussion on the value of in-person conferences in 202541:54 - GitHub’s new MCP registry43:26 - Microsoft Paint is getting project files46:54 - What’s making us happyLinks:Paige - “Shai-Hulud” supply chain attack on npm continues against Crowdstrike npm packages and pnpm 10.16 minimumReleaseAge settingJack - LLM options in the browser: WebLLM, MediaPipe, ONNXTJ - Wasm 3.0GitHub’s new MCP registryMicrosoft Paint is getting its own Photoshop-like project filesPaige - Great British Bake Off season 16 is back!Jack - YoyosTJ - phishyurl.comThanks as always to our sponsor, the Blue Collar Coder channel on YouTube. You can join us in our Discord channel, explore our website and reach us via email, or talk to us on X, Bluesky, or YouTube.Front-end Fire websiteBlue Collar Coder on YouTubeBlue Collar Coder on DiscordReach out via emailTweet at us on X @front_end_fireFollow us on Bluesky @front-end-fire.comSubscribe to our YouTube channel @Front-EndFirePodcast
--------
56:58
--------
56:58
npm’s Biggest Supply Chain Attack (and What We Learned)
Just 5 months ago we covered how Storybook 9 was in beta, and already Storybook 10 is in beta. The biggest change is that Storybook is going all in on ESM and dropping CJS support, which is making for some big performance gains and smaller bundle sizes.This past week, npm suffered the largest supply chain attack in its history when a prolific OSS maintainer got phished. Luckily, the attack was noticed and reported within the hour and it looks like the hackers got next to nothing for their efforts, but it serves as another reminder to be extra careful before clicking links in emails.In the same security vein, browser company Brave uncovered a security vulnerability in AI-browser Comet where malicious instructions on a web page could cause the agent to “go rogue” while it was being asked to summarize a page’s contents. Perplexity has since added more guardrails to try and mitigate this sort of thing, but be cognizant of the data and site access you’re giving to AI agents.Timestamps:1:12 - Storybook 107:53 - npm’s supply chain attack17:24 - Brave discloses a security vulnerability in Comet26:38 - You’re absolutely right!35:26 - What’s making us happyLinks:Paige - Storybook 10 beta and Storybook 9 featuresJack - npm just suffered the largest supply chain attack in its historyTJ - Brave discloses a security vulnerability in CometSomeone made a customizable website to count how many times Claude Code says “You’re absolutely right!” in a dayPaige - Silicon Valley TV showJack - Shokz OpenComm2 bone conduction headphonesTJ - macOS text message forwardingThanks as always to our sponsor, the Blue Collar Coder channel on YouTube. You can join us in our Discord channel, explore our website and reach us via email, or talk to us on X, Bluesky, or YouTube.Front-end Fire websiteBlue Collar Coder on YouTubeBlue Collar Coder on DiscordReach out via emailTweet at us on X @front_end_fireFollow us on Bluesky @front-end-fire.comSubscribe to our YouTube channel @Front-EndFirePodcast
--------
50:13
--------
50:13