#javascript

#javascript

In a newly discovered supply chain attack, attackers last week targeted a range of npm-hosted JavaScript type testing utilities, several of which were successfully compromised to distribute malware.

npm has taken down all versions of the real Stylus library and replaced them with a 'security holding' page, breaking pipelines and builds worldwide that rely on the package.

Building a custom progress bar from scratch requires boilerplate JavaScript using XMLHttpRequest and its upload.onprogress event.

"This was a stealth miner, designed to avoid detection by staying below the radar of both users and security tools," security researcher Himanshu Anand said.

BoxLang does not include an embedded client-side charting library, but it assists in building charts by allowing integration with client-side libraries like Chart.js.

The latest JavaScript specification introduces a built-in global Iterator object, enhancing the functional programming capabilities of iterable collections with improved lazy evaluation and syntax.

Object.entries() returns an array of [key, value] pairs for all the owned properties of an object, enabling various array methods for manipulation.

I've shared Josh Comeau links many times here and his ability to explain technical matter with incredibly simple and well-built demos is easily the best in the industry.

document.addEventListener('DOMContentLoaded', function() { const bodyClass = document.body.className; const searchInput = document.getElementById('PqmIc_title'); if (bodyClass.includes('competitions')) { searchInput.placeholder = 'Search competitions by title, keywords...'; } else if (bodyClass.includes('freebies')) { searchInput.placeholder = 'Search freebies by title, keywords...'; } });

The Resize Observer, Mutation Observer, and Intersection Observers APIs are significantly more performant than their predecessors, providing efficient ways to monitor changes in DOM elements.

The real test of a tool isn't its feature list, but whether it saves you time and solves a real, recurring problem without adding unnecessary complexity.

Resizing an image is typically 4x-5x faster than using the quickest ImageMagick and GraphicsMagick settings due to its use of libvips.

Sticky design elements enhance user experience by keeping important site features visible during scrolling, which is particularly beneficial for navigation and accessibility.

One of the first things we're doing [with clients] is saying, 'OK, let's look at your site with JavaScript turned off. That's what the AI is seeing.'

The awareness of an API has less to do with how long it's been around, and more to do with its applicability to the problems we're trying to solve.