直近1週間の更新
2/15 (土)
![記事のアイキャッチ画像](images/feed-thumbnails/gk733gsfvg-150.jpeg)
スキーマバリデーションライブラリの標準インターフェース standard-schema
1azukiazusa のテックブログ2
![はてなブックマークアイコン](./images/hatenabookmark-icon.png)
スキーマバリデーションライブラリはここ数年で人気を集めています。多くのライブラリが登場する中で、standard-schema はスキーマバリデーションライブラリの標準インターフェースを提供します。これにより、エコシステムツールがユーザー定義の型検証ツールをより簡単に受け入れられるようにすることを目指しています。
14時間前
![記事のアイキャッチ画像](images/feed-thumbnails/q4acP3fsIy-150.jpeg)
Highlight yanked text in Neovim pawelgrzybek.com
Before Neovim, I used to use Helix, which follows the same editing model as Kakoune. Having experience with both, I must admit that I prefer Helix’s selection → action editing model. It is a lot more precise and less error-prone to see the selection before taking action upon it. Although this workflow is possible in Vim, it can be inefficient.Opinions and code editor disputes aside, there is a little trick in Neovim that enables nice feedback after yanking a portion of text. Look at the example
14時間前
![記事のアイキャッチ画像](./images/alternate-feed-image.png)
Conditional types in TypeScript 2ality – JavaScript and more
<p>In TypeScript, conditional types let us make decisions (think if-then-else expressions) – which is especially useful in generic types. They are also an essential tool for working with union types because they let use “loop” over them. Read on if you want to know how all of that works.</p>
15時間前
![記事のアイキャッチ画像](images/feed-thumbnails/Luxl0FgqhN-150.jpeg)
Advice to New Engineering Managers software engineering, open source projects, startups, product design, strategy, web performance, security, and more
Tips for being an effective engineering leader and how to avoid common pitfalls
15時間前
![記事のアイキャッチ画像](images/feed-thumbnails/UjP4w6T2IF-150.jpeg)
Support the open source projects you love this Valentine’s Day The GitHub Blog
Show your appreciation to the open source projects you love. You can help provide much-needed support to the critical but often underfunded projects that keep your infrastructure running smoothly. And remember—every day is a perfect day to support open source! 💖The post Support the open source projects you love this Valentine’s Day appeared first on The GitHub Blog.
1日前
![記事のアイキャッチ画像](images/feed-thumbnails/xPopSziYJA-150.jpeg)
Rainbow Selection in CSS Frontend Masters Boost RSS Feed
::selection is cool, but scoping it to selectors like :nth-child(5n+2) is even more fun, especially on a love filled ay like Valentine's Day.
1日前
![記事のアイキャッチ画像](images/feed-thumbnails/VwTBZ0Br-z-150.jpeg)
Ransomware in 2024: Record-Low Payment Rate Signals Changing Economics of Cybercrime Socket
Ransomware payment rates hit an all-time low in 2024 as law enforcement crackdowns, stronger defenses, and shifting policies make attacks riskier and less profitable.
1日前
![記事のアイキャッチ画像](images/feed-thumbnails/6vd0nWB-0c-150.jpeg)
JavaScript Temporal is Coming Frontend Masters Boost RSS Feed
Brian Smith on MDN: This is big news for web developers because working with dates and times in JavaScript will be hugely simplified and modernized. Temporal is designed as a full replacement for the Date object, making date and time management reliable and predictable. Temporal adds support for time zone and calendar representations, many built-in methods for […]
1日前
2/14 (金)
![記事のアイキャッチ画像](images/feed-thumbnails/BYGdfwRRcT-150.jpeg)
Searching for the cause of hung tasks in the Linux kernel The Cloudflare Blog
The Linux kernel can produce a hung task warning. Searching the Internet and the kernel docs, you can find a brief explanation that the process is stuck in the uninterruptible state.
1日前
![記事のアイキャッチ画像](images/feed-thumbnails/TCJwCpgmsP-150.jpeg)
SonarQube Server Wins DEVIES Award for Code Testing & Quality Management Blog RSS feed
SonarQube Server has been honored with a 2025 DEVIES Award, recognizing its commitment to delivering a top-tier code quality and security solution for developers and organizations worldwide.
1日前
![記事のアイキャッチ画像](./images/alternate-feed-image.png)
Handwriting an SVG Heart, With Our Hearts CSS-Tricks
A while back on CSS-Tricks, we shared several ways to draw hearts, and the response was dreamy. Now, to show my love, I wanted to do something personal, something crafty, something with a mild amount of effort.Handwriting an SVG Heart, With Our Hearts originally published on CSS-Tricks, which is part of the DigitalOcean family. You should get the newsletter.
1日前
![記事のアイキャッチ画像](images/feed-thumbnails/_-Uj-Otimo-150.jpeg)
Additional options for sharing deployments externally Vercel News
You can now with external collaborators. Previously, invitations, access requests, and shareable links were limited to the for a branch or custom aliases.share deploymentspreview URLThe share modal—accessible by selecting on a deployment page or from the menu—now allows sharing the specific deployment you are on or the always up-to-date for the branch.Share Vercel Toolbar preview URLRead more about . sharing deploymentsRead more
1日前
![記事のアイキャッチ画像](images/feed-thumbnails/zJX7RsAuC1-150.jpeg)
Automated DNS configuration with Domain Connect Vercel News
Vercel now supports , an open standard that simplifies DNS configuration. With one click, you can set up your domain without manually copying DNS records—saving time and reducing errors.Domain ConnectCloudflare-managed domains are now supported with more providers coming soon., and Vercel will detect if your domain qualifies for setup through Domain Connect, prompting you to proceed automatically or configure it manually.To get started: Add a new domain to your Vercel projectWe're also implement
1日前
![記事のアイキャッチ画像](images/feed-thumbnails/xqlZkHHwmn-150.jpeg)
Load Testing Web Applications With k6 Marmelab blog
Discovering load testing can help you better anticipate how an application behaves under different types of load.
1日前
![記事のアイキャッチ画像](images/feed-thumbnails/Up4Kmu5kxx-150.jpeg)
新規機能開発におけるユビキタス言語のパワー
2LegalOn Technologies Engineering Blog
![はてなブックマークアイコン](./images/hatenabookmark-icon.png)
ハッ(笑顔)ということで・・・ はじめに 株式会社LegalOn TechnologiesでEngineering Managerを務めているYoshiokaです。2024年7月の入社からまだ半年ですが、様々なプロジェクトに携わり、多くの学びを得ています。 本記事では、ドメイン駆動設計(DDD)における重要な概念「ユビキタス言語」に焦点を当てます。この概念は私にとって特に印象深く、日々の業務で早速活用できているため、その実践方法と、我々がヘビーユースしているNotionを活用した具体例を紹介したいと思います。
2日前
![記事のアイキャッチ画像](images/feed-thumbnails/G_T-cKm3wG-150.jpeg)
Firefox + custom elements + iframes bug
1Jake Archibald's blog
![はてなブックマークアイコン](./images/hatenabookmark-icon.png)
A tricksy Firefox bug and how to work around it.
2日前
![記事のアイキャッチ画像](images/feed-thumbnails/lI8i4bFZR8-150.jpeg)
Neovim file explorers pawelgrzybek.com
Creating new new files, deleting and moving them around is probably the second most frequent thing you use your text editor for besides writing code. Visual Studio Code, Sublime Text, Zed and other GUI editors use tree-like file explorers inside toggleable drawers. As much as this is useful and convenient for mouse-operable interfaces, it doesn’t really fit into the philosophy of modal editors like Neovim. We have plenty of options, so let me go through the ones I use.Three popular file explorer
2日前
![記事のアイキャッチ画像](./images/alternate-feed-image.png)
Mapped types in TypeScript 2ality – JavaScript and more
<p>A mapped type is a loop over keys that produces an object or tuple type and looks as follows:</p><pre><code class="language-ts">{[<span class="hljs-title class_">PropKey</span> <span class="hljs-keyword">in</span> <span class="hljs-title class_">PropKeyUnion</span>]: <span class="hljs-title class_">PropValue</span>}</code></pre><p>In this blog post, we examine how mapped types work and see examples of using them. Their most importing use cases are transforming objects and mapping tuples.</p>
2日前
![記事のアイキャッチ画像](images/feed-thumbnails/Y5AFp61tDo-150.jpeg)
SquareX founder Vivek Ramachandran talks browser security:‘The browser has to get more intelligent.’ 1Password Blog
According to security researcher, book author, and serial entrepreneur Vivek Ramachandran, we’re at a pivotal moment in cybersecurity. Gone are the days of relying on URL/domain analysis to identify threats. With so many employees spending the majority of their time in Chrome, Edge, Safari, or Firefox , Ramachandran thinks the browser is where security products need to innovate.Ramachandran sat down with Michael “Roo” Fey, Head of User Lifecycle & Growth at 1Password, on the Random But Memorable
2日前
![記事のアイキャッチ画像](images/feed-thumbnails/mVOfSr7zGf-150.jpeg)
Routing LLM prompts with Dagster and Not Diamond Dagster Blog
Learn how LLM routing with Not Diamond can improve accuracy, and cost savings in your AI workflows
2日前
![記事のアイキャッチ画像](images/feed-thumbnails/naxhORMKqc-150.jpeg)
Mocking in Node.js Has Just Changed Forever kettanaito.com
The two largest API mocking libraries in JavaScript now use the same interception algorithm.
2日前
![記事のアイキャッチ画像](images/feed-thumbnails/PU8WZbY4PC-150.jpeg)
Sunsetting Create React App
22React Blog
![はてなブックマークアイコン](./images/hatenabookmark-icon.png)
Today, we’re deprecating Create React App for new apps, and encouraging existing apps to migrate to a framework. We’re also providing docs for when a framework isn’t a good fit for your project, or you prefer to start by building a framework.
2日前
![記事のアイキャッチ画像](images/feed-thumbnails/QPQ2ZBukU5-150.jpeg)
Top AI Agent frameworks and platforms in 2025 WorkOS Blog
AI agent frameworks and platforms empower developers to build software that can reason, remember, and act independently. Which should you choose?
2日前
![記事のアイキャッチ画像](images/feed-thumbnails/3m_AAVBMG2-150.jpeg)
Understanding the OAuth 2.0 Client Credentials flow WorkOS Blog
Learn how to use OAuth for secure machine-to-machine communication with the Client Credentials flow.
2日前
![記事のアイキャッチ画像](images/feed-thumbnails/5JMoPNT9r1-150.jpeg)
Profiling MoonBit-Generated Wasm using Chrome MoonBit Blog
Profiling MoonBit-Generated Wasm using Chrome
2日前
![記事のアイキャッチ画像](images/feed-thumbnails/-mcv0eBXeP-150.jpeg)
?nodefine — a pattern to skip Custom Element definitions Zach Leatherman
The following code is a minimum viable custom element:class Nimble extends HTMLElement {}customElements.define("nim-ble", Nimble);The define call is typically packaged up in the component code (for ease of use) and not in your application code. I typically adapt this into a static function like so:class Nimble extends HTMLElement { static define(tagName) { customElements.define(tagName || "nim-ble", this); }}Nimble.define();On first glance, this might not offer much benefit, but depending on the
2日前
![記事のアイキャッチ画像](images/feed-thumbnails/0CtuR73Pyi-150.jpeg)
Announcing TypeScript 5.8 RC
1Daniel Rosenwasser, Author at TypeScript
![はてなブックマークアイコン](./images/hatenabookmark-icon.png)
Today we are excited to announce the Release Candidate (RC) of TypeScript 5.8! To get started using the Release Candidate, you can get it through npm with the following command: npm install -D typescript@rc Let’s take a look at what’s new in TypeScript 5.8! What’s New Since the Beta? Since our beta release, we have […]The post Announcing TypeScript 5.8 RC appeared first on TypeScript.
2日前
![記事のアイキャッチ画像](images/feed-thumbnails/RgqXJZ_kI1-150.jpeg)
require(esm) Backported to Node.js 20, Paving the Way for ESM-Only Packages
1Socket
![はてなブックマークアイコン](./images/hatenabookmark-icon.png)
require(esm) backported to Node.js 20, easing the transition to ESM-only packages and reducing complexity for developers as Node 18 nears end-of-life.
2日前
![記事のアイキャッチ画像](images/feed-thumbnails/LLFXBCaCxW-150.jpeg)
Launching Interop 2025 Mozilla Hacks – the Web developer blog
Interop 2025 continues the mission to make the web more consistent across browsers, building on 2024’s 95% interoperability score. This year, 19 focus areas target key developer needs and long-standing issues, including WebRTC improvements, Storage Access API, and CSS Zoom. The post Launching Interop 2025 appeared first on Mozilla Hacks - the Web developer blog.
2日前
![記事のアイキャッチ画像](images/feed-thumbnails/volfrZb3H_-150.jpeg)
If you're not using npm specifiers, you're doing it wrong
1Deno
![はてなブックマークアイコン](./images/hatenabookmark-icon.png)
One common way to import npm packages is with transpile services like esm.sh or unpkg.com, whichconverts npm modules to esm and hosts them on the web. However, since Deno 2, which supports npm natively, we recommend using npm specifiers. Here's why.
2日前
2/13 (木)
![記事のアイキャッチ画像](images/feed-thumbnails/bRyP8d2abN-150.jpeg)
Automatic Audit Logs: new updates deliver increased transparency and accountability
The Cloudflare Blog
We’re excited to announce the beta release of Automatic Audit Logs, offering greater transparency and control.
2日前
![記事のアイキャッチ画像](images/feed-thumbnails/d8U3Qu4nNA-150.jpeg)
Auto-Detect and Review AI-Generated Code from GitHub Copilot Blog RSS feed
Sonar can help you keep your AI-generated code from GitHub Copilot up to snuff - here’s how!
2日前
![記事のアイキャッチ画像](./images/alternate-feed-image.png)
Scroll Driven Animations Notebook CSS-Tricks
Adam’s such a mad scientist with CSS. He’s been putting together a series of “notebooks” that make it easy for him to demo code. He’s got one for gradient text, one for a comparison slider, another for accordions…Scroll Driven Animations Notebook originally published on CSS-Tricks, which is part of the DigitalOcean family. You should get the newsletter.
2日前
![記事のアイキャッチ画像](images/feed-thumbnails/E2otV7Fv6w-150.jpeg)
Support for React Router v7 Vercel News
Vercel now supports applications when :React Router v7used as a frameworkThis includes support for server-rendered React Router applications using Vercel's . Further, the Vercel preset intelligently splits application bundles across Vercel Functions, and supports custom server entry points.Fluid compute or learn more about .Deploy React Router to VercelReact Router on VercelRead more
2日前
![記事のアイキャッチ画像](images/feed-thumbnails/JQ7QjrCVg9-150.jpeg)
Using the step and pattern attributes to make number inputs more useful Piccalilli - Everything
If you ever have an HTML <input> element for numbers — <input type="number" /> — you might notice that it defaults to accepting integers as values, and increments and decrements by one. There's ways to make it accept, increment by, and decrement by decimal values too.The step attributeWhen you add the step attribute to your <input> element, it specifies how granular the numbers can be in the input.If you truly don't care what the value is, you can use step="any" like so:<input id="number" type="
2日前
![記事のアイキャッチ画像](images/feed-thumbnails/N-EkF97IdH-150.jpeg)
How To Test And Measure Content In UX Articles on Smashing Magazine — For Web Designers And Developers
The goal of content design is to reduce confusion and improve clarity. Yet often it’s difficult to pinpoint a problem as user feedback tends to be not specific enough. But: we can use a few simple techniques to assess how users understand and perceive content. Let’s take a look. Part of [Smart Interface Design Patterns](https://smart-interface-design-patterns.com) by yours truly.
2日前
![記事のアイキャッチ画像](images/feed-thumbnails/Cg6CMIVrz8-150.jpeg)
Collect All URLs Visited During Cypress Test Better world by better software
<p>Imagine you have a simple end-to-end test</p><ul><li>visit the page</li><li>find a link and click on it</li><li>confirm the browser g
2日前
![記事のアイキャッチ画像](images/feed-thumbnails/kQ0oboVbuN-150.jpeg)
Astro 5.3
1The Astro Blog
![はてなブックマークアイコン](./images/hatenabookmark-icon.png)
Astro 5.3 is here with faster page rendering, easier setup for experimental sessions, and more!
3日前
![記事のアイキャッチ画像](images/feed-thumbnails/sfve3NplZ6-150.jpeg)
Bolt 100K Open Source Fund StackBlitz Blog
We're doubling down on our support to Open Source in 2025 with a 100K fund targeted at web infrastructure and Bolt dependencies.
3日前
![記事のアイキャッチ画像](images/feed-thumbnails/Fbd1tQ6LGw-150.jpeg)
The Top 5 Scout Alternatives AppSignal
In this post, we compare Scout to five popular tools to help you find the best application monitoring tool for your needs.
3日前
![記事のアイキャッチ画像](images/feed-thumbnails/_B82JMh-6u-150.jpeg)
Turbocharge Testing: Run Playwright Tests in Parallel BrowserCat | Blog Articles
Speed up testing with Playwright's parallel execution features. Reduce test runtime and enhance CI pipeline efficiency.
3日前
![記事のアイキャッチ画像](images/feed-thumbnails/M1oyPmlM-_-150.jpeg)
What is Arcade.dev? An LLM tool calling platform WorkOS Blog
Large Language Models (LLMs) excel at producing text, but many applications need them to do more: raise GitHub issues, star a repository, or send Twilio messages in real time.
3日前
![記事のアイキャッチ画像](images/feed-thumbnails/9aFFwHO4vD-150.jpeg)
RBAC best practices WorkOS Blog
Ensure the right people have the right access. Check out our RBAC best practices guide and avoid common pitfalls.
3日前
![記事のアイキャッチ画像](./images/alternate-feed-image.png)
Regex Gone Wrong: How parse-duration npm Package Can Crash Your Node.js App NodeJS Security & NodeJS Secure Coding's Blog
An in-depth analysis of two critical availability vulnerabilities in the parse-duration npm package, showing how regex patterns can lead to event loop delays and memory crashes in Node.js applications.
3日前
![記事のアイキャッチ画像](./images/alternate-feed-image.png)
Release Notes for Safari Technology Preview 213 WebKit
Safari Technology Preview Release 213 is now available for download for macOS Sequoia and macOS Sonoma.
3日前
![記事のアイキャッチ画像](./images/alternate-feed-image.png)
Release Notes for Safari Technology Preview 213 WebKit
Safari Technology Preview Release 213 is now available for download for macOS Sequoia and macOS Sonoma.
3日前
![記事のアイキャッチ画像](images/feed-thumbnails/nfkznmZ6n1-150.jpeg)
My Dev Apps Setup (Winter 2025) Frontend Masters Boost RSS Feed
I think it’s fun to take stock of the tools we use as developers. You know, so we can look back and laugh at our primitive setups. And actually, to inspire you to share yours so I can steal all your better tools. Here’s a rundown of stuff I use, focused mostly on literal apps […]
3日前
![記事のアイキャッチ画像](images/feed-thumbnails/Bvk5r8eeef-150.jpeg)
PyPI Now Supports iOS and Android Wheels for Mobile Python Development Socket
PyPI now supports iOS and Android wheels, making it easier for Python developers to distribute mobile packages.
3日前
![記事のアイキャッチ画像](images/feed-thumbnails/H2HzU67rrQ-150.jpeg)
Leaking File Contents with a Blind File Oracle in Flarum Assetnote Research
Our security researchers identified a critical vulnerability inside Flarum (popular forum software) which allows attackers to read local files from the system.
3日前
![記事のアイキャッチ画像](images/feed-thumbnails/GT6hdGPL8f-150.jpeg)
GitHub Availability Report: January 2025 The GitHub Blog
In January, we experienced two incidents that resulted in degraded performance across GitHub services. The post GitHub Availability Report: January 2025 appeared first on The GitHub Blog.
3日前
![記事のアイキャッチ画像](images/feed-thumbnails/pWO3OLzA4_-150.jpeg)
How Typeform’s Video Questions boost engagement and drive growth Mux Blog - Video technology and more
Learn how Mux's scalable video infrastructure freed up Typeform to focus on innovation rather than maintaining an expensive & complex in-house video pipeline.
3日前
![記事のアイキャッチ画像](images/feed-thumbnails/FOW-eWMTH5-150.jpeg)
Announcing Interop 2025
1WebKit
![はてなブックマークアイコン](./images/hatenabookmark-icon.png)
Exciting news for web developers, designers, and browser enthusiasts alike — Interop 2025 is here, continuing the mission of improving cross-browser interoperability.
3日前
![記事のアイキャッチ画像](./images/alternate-feed-image.png)
Announcing Interop 2025 WebKit
Exciting news for web developers, designers, and browser enthusiasts alike — Interop 2025 is here, continuing the mission of improving cross-browser interoperability.
3日前
![記事のアイキャッチ画像](images/feed-thumbnails/H2HzU67rrQ-150.jpeg)
Advisory: Flarum LFI - CVE-2023-40033 Assetnote Research
Security Advisory: Our security researchers identified a critical vulnerability inside Flarum (popular forum software) which allows attackers to read local files from the system.
3日前
![記事のアイキャッチ画像](images/feed-thumbnails/XkER2Z1ShN-150.jpeg)
RCE in Progress WS_FTP Ad Hoc via IIS HTTP Modules (CVE-2023-40044) Assetnote Research
Over the last year or so, we've seen the mass exploitation of managed file transfer software. From GoAnywhere MFT, MOVEIt, and our own work on Citrix Sharefile. The threats towards enterprises through managed file transfer software has really hit home after the recent ransomware attack by Cl0p, leveraging a series of vulnerabilities in Progress MOVEIt.
3日前
![記事のアイキャッチ画像](images/feed-thumbnails/XkER2Z1ShN-150.jpeg)
Advisory: Progress WS_FTP RCE (CVE-2023-40044) Assetnote Research
Assetnote Security Advisory: An attacker can exploit this vulnerability without authentication, to execute arbitrary commands on the Progress WS_FTP server through the deserialization of untrusted data. An attacker must be able to access the WS_FTP web server and the Ad Hoc Transfer application in order to exploit this issue.
3日前
![記事のアイキャッチ画像](images/feed-thumbnails/W8xHAnvnH8-150.jpeg)
Citrix Bleed: Leaking Session Tokens with CVE-2023-4966
1Assetnote Research
![はてなブックマークアイコン](./images/hatenabookmark-icon.png)
It's time for another round Citrix Patch Diffing! Earlier this month Citrix released a security bulletin which mentioned "unauthenticated buffer-related vulnerabilities" and two CVEs. These issues affected Citrix NetScaler ADC and NetScaler Gateway.
3日前
![記事のアイキャッチ画像](images/feed-thumbnails/rlfNAidtfr-150.jpeg)
High Signal Detection and Exploitation of Ivanti's Pulse Connect Secure Auth Bypass & RCE
1Assetnote Research
![はてなブックマークアイコン](./images/hatenabookmark-icon.png)
Last week, Ivanti disclosed two critical vulnerabilities affecting Ivanti Pulse Connect Secure - CVE-2023-46805 (Authentication Bypass) & CVE-2024-21887 (Remote Command Execution).
3日前
![記事のアイキャッチ画像](images/feed-thumbnails/gNJgO539ec-150.jpeg)
Ivanti's Pulse Connect Secure Auth Bypass Round Two Assetnote Research
The Ivanti excitement continues! After an authentication bypass and command injection to kick off the year, Ivanti are following with a second authentication bypass and a privilege escalation. On January 22 Ivanti released this advisory describing the two new vulnerabilities in Ivanti Connect Secure, CVE-2024-21888 (privilege escalation) and CVE-2024-21893 (authentication bypass).
3日前
![記事のアイキャッチ画像](images/feed-thumbnails/sZoCLvZZH0-150.jpeg)
Continuing the Citrix Saga: CVE-2023-5914 & CVE-2023-6184 Assetnote Research
While most of the attention for vulnerabilities within Citrix has been on their NetScaler VPN product, we noticed that there were several other products offered by Citrix that require an on-premise deployment of a web application, that is sometimes internet facing. This piqued our interest and led us to investigate the security of these self-hosted applications.
3日前
![記事のアイキャッチ画像](images/feed-thumbnails/vdr00RqcDO-150.jpeg)
Two Bytes is Plenty: FortiGate RCE with CVE-2024-21762
1Assetnote Research
![はてなブックマークアイコン](./images/hatenabookmark-icon.png)
Early this February, Fortinet released an advisory for an "out-of-bounds write vulnerability" that could lead to remote code execution. The issue affected the SSL VPN component of their FortiGate network appliance and was potentially already being exploited in the wild. In this post we detail the steps we took to identify the patched vulnerability and produce a working exploit.
3日前
![記事のアイキャッチ画像](./images/alternate-feed-image.png)
Digging for SSRF in NextJS apps
6Assetnote Research
![はてなブックマークアイコン](./images/hatenabookmark-icon.png)
At Assetnote, we encounter sites running NextJS extremely often; in this blog post we will detail some common misconfigurations we find in NextJS websites, along with a vulnerability we found in the framework.
3日前
![記事のアイキャッチ画像](images/feed-thumbnails/8vSWqF1w-l-150.jpeg)
Advisory: Next.js SSRF (CVE-2024-34351) Assetnote Research
Assetnote Security Advisory: A Server-Side Request Forgery (SSRF) vulnerability was identified in Next.js Server Actions. If the Host header is modified, and the below conditions are also met, an attacker may be able to make requests that appear to be originating from the Next.js application server itself. An attacker is able to read the full HTTP response when successfully exploiting this SSRF issue.
3日前
![記事のアイキャッチ画像](./images/alternate-feed-image.png)
Why nested deserialization is harmful: Magento XXE (CVE-2024-34102) Assetnote Research
A critical, pre-authentication XML entity injection issue in Magento / Adobe Commerce (CVE-2024-34102), which Adobe rated as CVSS 9.8.
3日前
![記事のアイキャッチ画像](images/feed-thumbnails/ISl61eVOFS-150.jpeg)
Chaining Three Bugs to Access All Your ServiceNow Data
1Assetnote Research
![はてなブックマークアイコン](./images/hatenabookmark-icon.png)
Through the course of 3/4 weeks, we were able to find a chain of vulnerabilities that allows full database access and full access to any MID servers configured. This resulted in 3 separate CVE's.
3日前
![記事のアイキャッチ画像](./images/alternate-feed-image.png)
Insecurity through Censorship: Vulnerabilities Caused by The Great Firewall Assetnote Research
We detail several practical client-side attacks that can result from DNS poisoning observed for domains hosted in China. These attacks impact every domain on the Internet that uses a nameserver located in China, and it's estimated that more than 30 million domains are vulnerable to this.
3日前
![記事のアイキャッチ画像](./images/alternate-feed-image.png)
Leveraging An Order of Operations Bug to Achieve RCE in Sitecore 8.x - 10.x Assetnote Research
Local file disclosure in Sitecore 8.x to 10.x that can lead to RCE (CVE-2024-46938) due to an order of operations bug within a handler responsible for reading local files.
3日前
![記事のアイキャッチ画像](./images/alternate-feed-image.png)
Citrix Denial of Service: Analysis of CVE-2024-8534 Assetnote Research
An analysis of CVE-2024-8534, a memory safety vulnerability leading to memory corruption and Denial of Service in NetScaler ADC and Gateway.
3日前
![記事のアイキャッチ画像](./images/alternate-feed-image.png)
How an obscure PHP footgun led to RCE in Craft CMS Assetnote Research
Craft CMS is one of the most popular PHP-based CMSes globally, boasting over 150,000 sites worldwide. This blog post details a pre-authentication RCE vulnerability affecting Craft CMS versions below 4.13.1 and 5.5.1.
3日前
![記事のアイキャッチ画像](images/feed-thumbnails/tfc0REoKi5-150.jpeg)
How GitHub uses CodeQL to secure GitHub The GitHub Blog
How GitHub’s Product Security Engineering team manages our CodeQL implementation at scale and how you can, too.The post How GitHub uses CodeQL to secure GitHub appeared first on The GitHub Blog.
3日前
![記事のアイキャッチ画像](images/feed-thumbnails/w-MhBUenPp-150.jpeg)
Time To First Byte: Beyond Server Response Time Articles on Smashing Magazine — For Web Designers And Developers
Optimizing web performance means looking beyond surface-level metrics. Time to First Byte (TTFB) is crucial, but improving it requires more than tweaking server response time. Matt Zeunert breaks down what TTFB is, what causes its poor score, and why reducing server response time alone isn’t enough for optimization and often won’t be the most impactful change you can make to your website.
3日前
![記事のアイキャッチ画像](images/feed-thumbnails/Yiqefghyzi-150.jpeg)
Meetings & Space Chris Coyier
Seventeen bits of advice from Ariel Salminen on Leading Successful Product Teams. I really like all of them. Allow me to pluck off a few about meetings: People gotta work yo. Including yourself. You gotta give lots of time to let that happen. Context switching has a cost for some people, and I’ve found a […]
3日前
![記事のアイキャッチ画像](images/feed-thumbnails/kNXsRxJbr9-150.jpeg)
How to build an app dashboard with AI-powered Figma-to-code Builder.io Blog
Use AI-powered Figma-to-code to build dashboards and internal tools. Learn how AI streamlines the process from import to component mapping.
3日前
2/12 (水)
![記事のアイキャッチ画像](./images/alternate-feed-image.png)
Typecasting and Viewport Transitions in CSS With tan(atan2()) CSS-Tricks
We’ve been able to get the length of the viewport in CSS since… checks notes… 2013! Surprisingly, that was more than a decade ago. Getting the viewport width is as easy these days as easy as writing 100vw, but …Typecasting and Viewport Transitions in CSS With tan(atan2()) originally published on CSS-Tricks, which is part of the DigitalOcean family. You should get the newsletter.
3日前
![記事のアイキャッチ画像](images/feed-thumbnails/bkoAozhdeE-150.jpeg)
Sonar Earns SOC 2 Type II Compliance Blog RSS feed
Sonar achieves SOC 2 Type II compliance, reflecting its dedication to protecting customer data and ensuring the integrity of its operations now and in the future.
3日前
![記事のアイキャッチ画像](images/feed-thumbnails/Luxl0FgqhN-150.jpeg)
Don't bullshit software engineering, open source projects, startups, product design, strategy, web performance, security, and more
Be the authentic voice in a world of manufactured personas
3日前
![記事のアイキャッチ画像](images/feed-thumbnails/PkUjJTAlV3-150.jpeg)
Bridging the gap between design and code with v0 Vercel News
specializes in building developer-focused SDKs—to help developers build their products. They adopted v0 to bridge the workflow from design to code, using it to accelerate rapid prototyping and reduce implementation time.SpeakeasyRead more
3日前
![記事のアイキャッチ画像](images/feed-thumbnails/pH-ytkgevd-150.jpeg)
Manage multiple Vercel Function regions in the dashboard Vercel News
Pro and Enterprise plans can now select multiple regions for directly from the dashboard. This update simplifies configuration by removing the need to define regions in .Vercel Functionsvercel.jsonMulti-region support is available for all Vercel Functions and supports Vercel's implementation of , which encourages a that positions dynamic functions closer to your data.Fluid computedense global compute modelVisit to customize your regions or learn more about your project’s Settings tabconfiguring
3日前
![記事のアイキャッチ画像](images/feed-thumbnails/CmO19PRUwn-150.jpeg)
Redeploy without leaving project settings Vercel News
When updating project settings, such as environment variables, Vercel will now automatically prompt you to redeploy.A toast notification will appear when you change any settings that require a redeploy to take effect. After clicking , you can track the progress of your deployment.RedeployLearn more about .project settingsRead more
3日前
![記事のアイキャッチ画像](./images/alternate-feed-image.png)
Playwright Visual Testing; How Should Things Look? Scott Logic
This blog aims to explore the effectiveness of Playwright snapshot testing for regression against visual UI elements.
3日前
![記事のアイキャッチ画像](./images/alternate-feed-image.png)
Prioritize People Over Pay, Position and Product Remote Synthesis | Blog
Focus on the people you'll work with and for over specific salary goals, title or working on/with a cool product.
3日前
![記事のアイキャッチ画像](images/feed-thumbnails/pQnPwvwSHr-150.jpeg)
3ヶ月間の挑戦と成長:個人としての学びと成果を振り返る
1STORES Product Blog
![はてなブックマークアイコン](./images/hatenabookmark-icon.png)
はじめに テクノロジー部門QAグループの梅内です。 私は2023年8月からQAグループのテスターとして働いているのですが、QAは全くの未経験で入社しました。入社から約1年、やっと慣れてきたなと思っていた2024年7月にQAグループ内での新チームが発足し、新OSや新端末の対応方針の策定や、動作確認・検定の管理をする「保証スコープ管理チーム」の所属となりました。 「保証スコープ管理チーム」発足から約3ヶ月間、さまざまな課題に向き合いながら業務を進める中で、スケジュール管理やフロー整備、外部とのやり取りなど、多岐にわたる業務を経験しました。本記事では、その過程で取り組んだ業務や身につけたスキルを振り…
3日前
![記事のアイキャッチ画像](images/feed-thumbnails/fEoVLFgzNg-150.jpeg)
Dagster 1.10: Mambo No 5 Dagster Blog
Intuitive Concurrency Controls, Improved ELT integrations, and Developer Experience Upgrades
4日前
![記事のアイキャッチ画像](images/feed-thumbnails/7y_a9Ybyu2-150.jpeg)
Managing Asynchronous Operations in Node.js with AbortController AppSignal
We'll explore how AbortController works and how to manage async operations in Node with AbortController.
4日前
![記事のアイキャッチ画像](images/feed-thumbnails/xO-xQ_v0Q4-150.jpeg)
Integrate AppSignal with AWS Fargate in Python Flask AppSignal
Let's integrate AppSignal with a Flask application running on AWS Fargate.
4日前
![記事のアイキャッチ画像](images/feed-thumbnails/BmSBO6DzPW-150.jpeg)
Magento Security Release APSB25-08 [Impact Analysis] Sansec - experts in eCommerce security
APSB25-08 released on Feb 11th, 2025Critical Adobe Commerce/Magento security patches have just been released (CVSS 9.4/10)New versions: 2.4.4-p12, 2.4.5-p11, 2.4.6-p9, 2.4.7-p4, additionally 2.4....
4日前
![記事のアイキャッチ画像](images/feed-thumbnails/aY9SgWnW66-150.jpeg)
How to build RBAC with WorkOS and Node WorkOS Blog
Step-by-step tutorial that walks you through the necessary steps to add role-based access control (RBAC) to your app using WorkOS and Node.
4日前
![記事のアイキャッチ画像](images/feed-thumbnails/kwCiwz4oci-150.jpeg)
React "as" Prop Using TypeScript Playful Programming's Atom Feed
Learn how to type the "as" prop in React to dynamically change the rendered HTML tag.
4日前
![記事のアイキャッチ画像](images/feed-thumbnails/XvMGNoVLsw-150.jpeg)
Rails async queries by example Honeybadger Developer Blog
Rails' 7+ released the ability to utilize multiple threads out of the box which can drastically improve the performance of your application. Read this article to learn how Rails async queries work and when to use them.
4日前
![記事のアイキャッチ画像](images/feed-thumbnails/hfNRHHzq3Q-150.jpeg)
25+ Days of Expert-Led Workshops Coming in 2025 Frontend Masters Boost RSS Feed
All sorts of great stuff coming up for all our members. Intermediate React, Complete Go, CSS Basics, TypeScript Monorepos, and so much more.
4日前
![記事のアイキャッチ画像](images/feed-thumbnails/HAo3KJKSht-150.jpeg)
How to refactor code with GitHub Copilot
2The GitHub Blog
![はてなブックマークアイコン](./images/hatenabookmark-icon.png)
Discover how to use GitHub Copilot to refactor your code and see samples of it in action.The post How to refactor code with GitHub Copilot appeared first on The GitHub Blog.
4日前
2/11 (火)
![記事のアイキャッチ画像](images/feed-thumbnails/nZIhYcbpmF-150.jpeg)
Offline celebrations: how Christmas, NYE, and Lunar New Year festivities shape online behavior The Cloudflare Blog
This blog examines how diverse cultural celebrations — from Western Christmas to Orthodox and Lunar New Year festivities — shape global Internet traffic.
4日前
![記事のアイキャッチ画像](images/feed-thumbnails/OM9y4Yjgkw-150.jpeg)
The AI Revolution in Software Development: A New Era for Developers Blog RSS feed
What does the future of software development look like? Sonar's Harry Wang, VP of Growth & New Ventures, shares his expert insights.
4日前
![記事のアイキャッチ画像](images/feed-thumbnails/7TQ6Xn38vC-150.jpeg)
Split-tgz is now the default CLI archive deployment behavior Vercel News
Archive deployments are useful for deploying large projects with thousands of files from the CLI. We as a new archive option: . This new capability offered up to 30% faster uploads and avoided .previously released the split-tgz archive deploymentfile upload size limitsvercel deploy --archive=split-tgzWe’ve confirmed ’s stability and made it the default behavior for . This means the separate as the functionality and benefits power the default option.split-tgztgzsplit-tgztgzsplit-tgz option is now
4日前
![記事のアイキャッチ画像](images/feed-thumbnails/tK0PFHxKZ5-150.jpeg)
Vercel database templates now support any marketplace provider Vercel News
We’ve updated our database starter templates to support selecting any Postgres or Redis provider available in the Vercel Marketplace when deploying.These templates are now provider-agnostic, allowing developers to seamlessly integrate alternative database and key-value store solutions while maintaining the same developer experience.Check out the documentation to . learn how to deploy your ownRead moreRedis: , , Nuxt.jsNext.jsSvelteKitPostgres: , , , , Next.jsNuxt.jsSvelteKitKyselyDrizzle
4日前
![記事のアイキャッチ画像](images/feed-thumbnails/p-WhWQq-2Q-150.jpeg)
Accelerate your CI/CD Pipeline with BDD and Acceptance Testing Semaphore
Accelerate your CI/CD pipeline using BDD and acceptance testing to enhance collaboration, reduce delays, and ensure software quality.The post Accelerate your CI/CD Pipeline with BDD and Acceptance Testing appeared first on Semaphore.
4日前
![記事のアイキャッチ画像](images/feed-thumbnails/jLEOljrOxe-150.jpeg)
How to start a React Project [2025]
1Robin Wieruch - Freelance Web Developer
![はてなブックマークアイコン](./images/hatenabookmark-icon.png)
React starter kits (Vite, Next, Astro, Remix, React Router) which help React developers to start a React project in 2025 ...
4日前
![記事のアイキャッチ画像](images/feed-thumbnails/8huNiYvSKZ-150.jpeg)
Create React App Officially Deprecated Amid React 19 Compatibility Issues Socket
Create React App is officially deprecated due to React 19 issues and lack of maintenance—developers should switch to Vite or other modern alternatives.
4日前
![記事のアイキャッチ画像](./images/alternate-feed-image.png)
MIDI 再生ライブラリ Midy を作った marmooo's blog
MIDI 再生ライブラリを前々から欲しかったので、Midy というライブラリを作りました。ひとまず GM1 の再生に必要な機能は実装しているつもりです。このライブラリを作る前は FluidSynth を wasm にするのが無難ではあったと思いますが、wasm サイズが大き過ぎたり、確認が甘いだけかも知れませんが動作に納得がいかないところがありました。うまく使いこなせなかったので、再生負荷が低く、ライブラリのサイズが小さく、拡張性の高い実装が欲しかったです。Web での利用を想定して SF3 形式に対応していることは大前提です。構想段階の話@tonejs/midi で MIDI をパースし、Tone.js で再生処理を実装することを考えていました。Tone.js を使うとコントロールチェンジの実装が簡単かなと最初は思っていました。AudioBufferSourceNode を使った MIDI 再生は以下が参考にはなるのですが、GUI の実装と基盤ライブラリの実装が絡み合っていたり、バグがあったり、中身がよくわからないところが多いので、やはり自作することにしました。あとゼロから実装してい
5日前
![記事のアイキャッチ画像](images/feed-thumbnails/MFiusPiWOE-150.jpeg)
Q&A: Why 1Password is partnering with Oracle Red Bull Racing
11Password Blog
![はてなブックマークアイコン](./images/hatenabookmark-icon.png)
If you haven’t heard the news, 1Password is now the Exclusive Cybersecurity Partner of Oracle Red Bull Racing.Here at 1Password, we’ve long been fans of Formula 1® and the guts, passion, and engineering excellence that goes into winning a championship. Our team is thrilled by the opportunity to help Oracle Red Bull Racing provide trusted access to its critical systems and software, boosting productivity while strengthening its security posture.We sat down with Melton Littlepage, 1Password’s Chie
5日前
![記事のアイキャッチ画像](images/feed-thumbnails/K427-I-R_b-150.jpeg)
Your App Might Be Down; Let's Fix It – Introducing Sentry Uptime Monitoring
1Sentry Blog RSS
![はてなブックマークアイコン](./images/hatenabookmark-icon.png)
Even at Sentry, we're not immune to downtime. In a moment of "oh-the-irony," we once took down our own application with a bad migration. We were adding a field ...
5日前
![記事のアイキャッチ画像](images/feed-thumbnails/w_wyVmdS31-150.jpeg)
How to play a file in reverse with mpv Evan Hahn's blog
This post was last updated for mpv 0.39.Here’s how to use mpv to play a file in reverse:mpv --play-direction=backward my_video.mp4Or a shorthand:mpv --play-direction=- my_video.mp4However, it may not work well. To quote mpv’s docs:Backward playback is extremely fragile. It may not always work, is much slower than forward playback, and breaks certain other features. How well it works depends mainly on the file being played. Generally, it will show good results (or results at all) only if the star
5日前
![記事のアイキャッチ画像](images/feed-thumbnails/j8pkS-2VqE-150.jpeg)
ESLint v9.20.1 released ESLint Blog
Bug Fixes274f054 fix: fix RuleContext type (#19417) (Francesco Trotta)Documentationfe3ccb2 docs: allow typing in search box while dropdown is open (#19424) (Amaresh S M)93c78a5 docs: Add instructions for pnpm compat (#19422) (Nicholas C. Zakas)b476a93 docs: Fix Keyboard Navigation for Search Results (#19416) (Amaresh S M)ccb60c0 docs: Update README (GitHub Actions Bot)
5日前
![記事のアイキャッチ画像](images/feed-thumbnails/vArQqqGxwq-150.jpeg)
The battle against bots: How to detect and stop them WorkOS Blog
Bots are everywhere. How can you distinguish the bad from the good, and how can you stop them? Read our guide for practical steps on how to stop bots and protect your app.
5日前
![記事のアイキャッチ画像](./images/alternate-feed-image.png)
How I found an XSS in the Nuxt MDC Library for Markdown Content NodeJS Security & NodeJS Secure Coding's Blog
Are you using the Nuxt MDC library to render LLM generated content in your Nuxt.js apps? You want to read this article to understand how I came to find a Cross-site Scripting vulnerability identified today as CVE-2025-24981
5日前
![記事のアイキャッチ画像](images/feed-thumbnails/Luxl0FgqhN-150.jpeg)
Become a Better Engineering Manager with JQL software engineering, open source projects, startups, product design, strategy, web performance, security, and more
Using Jira queries to understand engineering trends and drive improvements
5日前
![記事のアイキャッチ画像](images/feed-thumbnails/4gwHdXrwq1-150.jpeg)
HTML Is Not a Programming Language… CSS Wizardry
Is HTML a programming language? In this short post, I explore why HTML is powerful, fundamental, and essential—but not a programming language. Discover why semantics matter less than practical value and why HTML deserves more respect.
5日前
![記事のアイキャッチ画像](images/feed-thumbnails/HDDWxhV8fH-150.jpeg)
Figma to Code with Windsurf and Visual Copilot Builder.io Blog
Visual Copilot and Windsurf streamline the Figma-to-code process, automating design conversion and enabling rapid feature development with AI assistance.
5日前
2/10 (月)
![記事のアイキャッチ画像](images/feed-thumbnails/IQQ_jpDePV-150.jpeg)
Optimizing Images for Web Performance Frontend Masters Boost RSS Feed
There is some low-hanging web performance fruit with images. Serving them in the right format, from a CDN, with the right HTML can be a big perf win.
5日前
![記事のアイキャッチ画像](./images/alternate-feed-image.png)
Organizing Design System Component Patterns With CSS Cascade Layers
1CSS-Tricks
![はてなブックマークアイコン](./images/hatenabookmark-icon.png)
I enjoy organizing code and find cascade layers a fantastic way to organize code explicitly as the cascade looks at it. The neat part is, that as much as it helps with "top-level" organization, cascade layers can be nested, which allows us to author more precise styles based on the cascade and inheritance.Organizing Design System Component Patterns With CSS Cascade Layers originally published on CSS-Tricks, which is part of the DigitalOcean family. You should get the newsletter.
5日前
![記事のアイキャッチ画像](images/feed-thumbnails/AqDx_JNemZ-150.jpeg)
QUIC action: patching a broadcast address amplification vulnerability The Cloudflare Blog
Cloudflare was recently contacted by researchers who discovered a broadcast amplification vulnerability through their QUIC Internet measurement research. We've implemented a mitigation.
5日前
![記事のアイキャッチ画像](./images/alternate-feed-image.png)
Make Any File a Template Using This Hidden macOS Tool CSS-Tricks
Stationery Pad is a handy way to nix a step in your workflow if you regularly use document templates on your Mac. The long-standing Finder feature essentially tells a file’s parent application to open a copy of it by default, ensuring that the original file remains unedited.Make Any File a Template Using This Hidden macOS Tool originally published on CSS-Tricks, which is part of the DigitalOcean family. You should get the newsletter.
5日前
![記事のアイキャッチ画像](images/feed-thumbnails/1HnbfLVWBV-150.jpeg)
Beyond the Hype: Are enterprise browsers just about security? Scott Logic
In this episode of Beyond the Hype, I'm joined by Bradon Rogers from Island, along with Scott Logic colleagues Dean Kerr and Robat Williams, to explore the potential of enterprise browsers to simplify security and enhance user productivity.
5日前
![記事のアイキャッチ画像](images/feed-thumbnails/0zcUWLEWtO-150.jpeg)
Six things that slow down your site's UX (and why you have no control over them) SpeedCurve Blog
Have you ever looked at the page speed metrics – such as Start Render and Largest Contentful Paint – for your site in both your synthetic and real user monitoring tools and wondered "Why are these numbers so different?"Photo by FreepikPart of the answer is this: You have a lot of control over the design and code for the pages on your site, plus a decent amount of control over the first and middle mile of the network your pages travel over. But when it comes to the last mile – or more specificall
5日前
![記事のアイキャッチ画像](images/feed-thumbnails/vm1T1AVY4i-150.jpeg)
RIE と lambroll で始める Lambda の CI/CD
26CyberAgent Developers Blog | サイバーエージェント デベロッパーズブログ
![はてなブックマークアイコン](./images/hatenabookmark-icon.png)
こんにちは。 AI 事業本部 AI クリエイティブディビジョンのエンジニアの佐藤 (@Rintaro ...
5日前
![記事のアイキャッチ画像](images/feed-thumbnails/yETOPbfZPa-150.jpeg)
LangChain: Streaming Structured Output in JavaScript Robin Wieruch - Freelance Web Developer
How to: Streaming Structured Output in JavaScript with LangChain. A step by step example on how to stream structured data in JavaScript with LangChain ...
5日前
![記事のアイキャッチ画像](images/feed-thumbnails/gwg0WOKot5-150.jpeg)
ArgoCD Tracking IDについて CyberAgent Developers Blog | サイバーエージェント デベロッパーズブログ
この記事では、ArgoCDのTracking IDを解説します。Resource Trackingド ...
6日前
![記事のアイキャッチ画像](./images/alternate-feed-image.png)
TypeScript: extracting parts of composite types via <code>infer</code> 2ality – JavaScript and more
<p>In this blog post, we explore how we can extract parts of composite types via the <code>infer</code> operator.</p><p>It helps if you are loosely familiar with conditional types. You can check out section <a href="https://exploringjs.com/tackling-ts/ch_computing-with-types-overview.html#conditional-types">“Conditional types”</a> in “Tackling TypeScript” to read up on them.</p>
6日前
![記事のアイキャッチ画像](images/feed-thumbnails/z85mmgKerD-150.jpeg)
Rails 8 Adds A New Script Folder By Default And Scripts Generator.
1Saeloun Blog
![はてなブックマークアイコン](./images/hatenabookmark-icon.png)
In Rails there is no official way to organize one-off scripts. Unlike recurring tasks, which are automated or scheduled to run at regular intervals (e.g., cron jobs or background workers), these scripts are standalone, ad-hoc scripts that are intended to be run only once or on rare occasions.BeforeBefore Rails 8, managing one-off or custom scripts was often chaotic because there was no dedicated folder for scripts that didn’t fit standard Rake tasks or background jobs. This lack of organization
6日前
![記事のアイキャッチ画像](images/feed-thumbnails/zRwP9fmFK9-150.jpeg)
Scaling up: Why Fine-Grained Authorization is key as your product moves upmarket WorkOS Blog
When your goal is selling to enterprises, sooner or later, you will have to leave RBAC for a fine-grained authorization model. Read more about why that is and how you can make the move.
6日前
![記事のアイキャッチ画像](images/feed-thumbnails/_7pTmrTE_L-150.jpeg)
How To Fix LCP Resource Load Duration DebugBear Blog
Loading large images can cause poor Largest Contentful Paint scores on your website. Find out how to check for long resource load duration and what you can do to fix it.
6日前
2/9 (日)
![記事のアイキャッチ画像](images/feed-thumbnails/9RLDtVBr1g-150.jpeg)
CSS Custom Functions are coming … and they are going to be a game changer! Bram.us
Chrome is currently prototyping CSS Functions, which is very exciting!
7日前
![記事のアイキャッチ画像](./images/alternate-feed-image.png)
TypeDoc: testing code examples in doc comments
12ality – JavaScript and more
![はてなブックマークアイコン](./images/hatenabookmark-icon.png)
<p>TypeDoc now lets us refer to parts of other files via <code>{@includeCode}</code>. In this blog post, I explain how that works and why it’s useful.</p>
7日前
![記事のアイキャッチ画像](images/feed-thumbnails/A6ZvetOMnG-150.jpeg)
Prettier 3.5: New objectWrap option, experimentalOperatorPosition option and TS config file support!
4Prettier Blog
![はてなブックマークアイコン](./images/hatenabookmark-icon.png)
This release includes a lot of bug fixes and the following new features:
7日前