@kubikpixel@chaos.social»Deno vs. Oracle — Deno sammelt 200.000 US-Dollar im Kampf um die Marke JavaScript:
Um weitere Beweise dafür zu sammeln, dass JavaScript kein Markenname mehr ist, startet @… eine Fundraising-Kampagne.«
Da bin ich mal gespannt wie dies auskommt und ob sich deswegen evt. nebenher eine weitere Scriptsprache wieder hastig eine für Webanwendungen erstellt…
@arXiv_csSE_bot@mastoxiv.pageCASCADE: LLM-Powered JavaScript Deobfuscator at Google
Shan Jiang, Pranoy Kovuri, David Tao, Zhixun Tan
https://arxiv.org/abs/2507.17691 https://
@pavelasamsonov@mastodon.socialJavascript programmers be like
);
@aral@mastodon.ar.al
@stefan@gardenstate.sociallol. All the vercel express examples LIE! This branch of Tvmarks does not serve express routes. Instead it just serves the raw javascript as plaintext.
https://github.com/stefanhayden/tvmarks/tree/vercel-setup
@yaxu@post.lurk.org
@zachleat@zachleat.comToday’s esoteric HTML element is <kbd>
As in: please press <kbd>⌘</kbd> <kbd>R</kbd> repeatedly when AWS causes your JavaScript to fail to load.
https://developer.mozilla.org/en-US/docs/Web/HTML/Reference/Elements/kbd
@pixelcode@social.tchncs.de#JavaScript: “What's your birth date?”
Me: “Maybe 1?”
JavaScript: “Okay, so it's 1 May 2001”
https://jsdate.wtf/
@sean@scoat.esImagine a world where JavaScript code had the discipline of Super Mario Bros speedruns.
@kubikpixel@chaos.social»10 Gründe JavaScript zu hassen – oder zu lieben:
Drei Dekaden der Entwicklungsarbeit gehen auch an JavaScript nicht spurlos vorüber. Im Guten, wie im Schlechten.«
Hach ja, wie in jeder Programmiersprache macht deren Einsatz je nach Lösung seinen Sinn - JavaScript mMn nur bei Web-Oberflächen und dann aber bitte so Datenschutz sicher wie möglich in TypeScript.
🧑💻
@frankel@mastodon.topThe many, many, many #JavaScript runtimes of the last decade
https://buttondown.com/whatever_jamie/archive/the-many-many-many-…
@arXiv_csAI_bot@mastoxiv.pageClutch Control: An Attention-based Combinatorial Bandit for Efficient Mutation in JavaScript Engine Fuzzing
Myles Foley, Sergio Maffeis, Muhammad Fakhrur Rozi, Takeshi Takahashi
https://arxiv.org/abs/2510.12732
@publicvoit@graz.social
@fanf@mendeddrum.orgfrom my link log —
Why are 2025/05/28 and 2025-05-28 different days in JavaScript?
https://brandondong.github.io/blog/javascript_dates/
saved 2025-05-29
@compfu@mograph.socialOnce every few years I need to do some web development so I look at the state of html and javascript. Lo and behold, today is that day again.
I have now found out about web components, javascript modules, javascript template literals (like Python f-strings but you can pipe the string through a custom function that can rewrite the variables you put in curly brackets).
@hanno@mastodon.socialI want to add something to the XSLT issue. If you're looking for a medium-to-high-difficulty securtiy research project, here's one for you: check how many vulnerabilities that have been exploited with the help of JavaScript could also be exploited with XSLT, and how many security issues that causes. 🧵
@aral@mastodon.ar.alComing soon (likely this afternoon, I’m writing tests and docs and updating examples as we speak)…
This is the sort of thing you’ll be able to do with Markdown pages. Just pop any arbitrary JavaScript you want in the new script block in the front matter and then import and use components as well as plain old JavaScript tagged template variable interpolation (not shown in this example) inside your Markdown.
The screen has all the code (sans the end of the last line of CSS and the…
@niklaskorz@rheinneckar.social
@arXiv_csCR_bot@mastoxiv.pageThe Hidden DNA of LLM-Generated JavaScript: Structural Patterns Enable High-Accuracy Authorship Attribution
Norbert Tihanyi, Bilel Cherif, Richard A. Dubniczky, Mohamed Amine Ferrag, Tam\'as Bisztray
https://arxiv.org/abs/2510.10493
@samir@functional.computer@… I really appreciated how Java would make me jump through a few hoops to set a private variable in an object controlled by a dependency, but it would absolutely do it. It’s something I definitely miss when writing Rust.
In JavaScript, you can make objects via classes/prototypes, or by closing over local variables. The latter hides them because there’s no way to re…
@philip@mastodon.mallegolhansen.comSpotted this book on a trip to #PowellsBooks this afternoon, and as a self-proclaimed #JavaScript hater I’m genuinely curious to read it.
Will I suddenly turn into a fan? Perhaps not. But even a hater has a thing or two to learn.
@kubikpixel@chaos.social»`Uint8Array.prototype.toHex()`
The toHex() method of Uint8Array instances returns a hex-encoded string based on the data in this Uint8Array object.«
I've only just discovered this and I think it's a cool new feature in JavaScript. I am now surprised when almost all users have up-to-date web browsers in order to use it easily in the frontend WebDev.
🧑💻
@thomasfuchs@hachyderm.ioWhat I don't get is why does DHH even need so much funding and sponsorships for open source projects. Tens of thousands from framework, cloudflare and god knows who else.
When I made the (then) probably most popular JavaScript open source framework I got zero funding and sponsorship and was doing fine?
I'm not saying that people shouldn't get paid for work, but that dude is a fucking multi-millionaire who drives race cars as a hobby.
@metacurity@infosec.exchangeDOGE is still slashing government contracts, with around $2.2 billion in cyber contracts cut through August 2025.
Check out today's Metacurity for more on which contracts have been cut and other top infosec developments you should know, including
--18 popular JavaScript code packages were compromised by malware,
--WhatsApp former security chief accuses Meta of security and privacy flaws,
--Treasury sanctions Myanmar and Cambodia scam businesses and people,
--IC…
@jamesthebard@social.linux.pizzaGot all of the editable fields wired up and working along with the saves block finished. Things are coming along...
#pathfinder2e #characterSheet #javascript
@stephane_klein@social.coopJ'ai découvert l'outil de build Javascript avec cache remote nommé "nx"
#TIL
@grifferz@social.bitfolk.comI am keen to know more about the Anubis thing (last boost). I'm kind of surprised scraper bots adapted at all yet alone so quickly. I really bought Anubis's argument that implementing enough of a JavaScript to solve the challenge would multiply their CPU usage many times over and make it uneconomical.
@harrysentonbury@social.linux.pizzathis should keep yous out of trouble for a while :luna_moth: 🎹
#liveCoding
@lil5@social.linux.pizza @arXiv_csSE_bot@mastoxiv.pageOBsmith: Testing JavaScript Obfuscator using LLM-powered sketching
Shan Jiang, Chenguang Zhu, Sarfraz Khurshid
https://arxiv.org/abs/2510.10066 https://arx…
@arXiv_csCR_bot@mastoxiv.pageCharacterizing Phishing Pages by JavaScript Capabilities
Aleksandr Nahapetyan, Kanv Khare, Kevin Schwarz, Bradley Reaves, Alexandros Kapravelos
https://arxiv.org/abs/2509.13186 …
@gwire@mastodon.socialRegular reminder that SVG can include javascript. (Not SVG Tiny, though.)
https://arstechnica.com/security/2025/08/adult-sites-use-malicious-svg-files-to-rack-up-likes-on-facebook/
@aardrian@toot.cafeThree old post updates:
1. Alexander Lehner’s styles for accordions:
https://adrianroselli.com/2023/08/progressively-enhanced-html-accordion.html#Update056
2. Devin Prater asking for Google to do better:
@simon_brooke@mastodon.scotThis morning, for the first time ever, I asked an #LLM to translate a snippet of code for me, from #Javascript to #ClojureScript. It got it wrong, but it got enough of it right that it saved me some time…
@compfu@mograph.socialI've archived 2 forums on Autodesk's site related to the RV player. There's a big banner on top that these have been temporarily restored in read-only mode. Apparently ADSK shut them down and in doing so disappeared a large knowledge base for their products.
They'll disappear again sooner or later and there is a frustratingly low amount of developer info about #RV and
@arXiv_csPL_bot@mastoxiv.pageTry-Mopsa: Relational Static Analysis in Your Pocket
Rapha\"el Monat
https://arxiv.org/abs/2509.13128 https://arxiv.org/pdf/2509.13128
@gray17@mastodon.socialimprove news by adding to the end of any headline "I have a solution: wolves"
https://robmanuelfuckyeah.substack.com/p/ive-got-a-solution-wolves
@zachleat@zachleat.com✅ an HTML web site hosted on a disposable vape
⛔️ a JavaScript-heavy web site that feels like its loading from a disposable vape
@rasterweb@mastodon.socialAnd yet another day I'm glad I don't write code using JavaScript...
@frankel@mastodon.topA utility for posting across multiple social networks at once.
https://github.com/humanwhocodes/crosspost
@khalidabuhakmeh@mastodon.socialNextJS is a tool of the fascists… did not see that one coming. #javascript
https://americabydesign.gov/
@samueljohn@mastodon.worldYeah. I always find electron/chromium sus. https://infosec.exchange/@trailofbits/115147020192205039
@aral@mastodon.ar.alI haven’t added an example of how you implement migrations with Kitten’s¹ built-in JSDB database² yet but here’s one that I just used when renaming a field (property) in a table (JavaScript object) from “account” to “data” that illustrates the general granular approach you should take within persisted instances of JavaScript classes.
This is, of course, an advanced use case of the built-in JavaScript database that all Kitten apps have.
Kitten is simple for simple use cases. So ch…
@rigo@mamot.frGood to know that I have my dispute with Opera and Håkon Lie confirmed 20 years after. But would it really have meant that X-Forms would have widespread support ?
From: @…
https://
@shoppingtonz@mastodon.socialI'm sorry DuckDuckGo but it looks like you are force feeding your users with Microsoft JavaScript.
You see M$ doesn't give a **** about you.
THEY DON'T TRUST YOU...and that's why they are giving you THEIR JAVASCRIPT.
When serving an ad you could make the ad be natural as part of your web page...
that way I won't have to "accept ads"...I mean if I ALREADY accept your webpage.
EMBED YOUR ADS
Is this a tech problem? I think this …
@bmariusz@techhub.socialI’ve built quectoCMS, a very small content management system in Python using Flask and SQLite.
It stores pages, blocks, and comments in a single database file and uses plain HTML forms without JavaScript.
Everything fits into a few Python files and templates — easy to read, easy to modify.
Code: https://github.com/mabalew/quectocm…
@sean@scoat.esI had to (wanted to, really… more later) put together a web page with a bunch of evaluation data (not for work).
Chart.js is pretty nice for this.
https://www.chartjs.org/
@shochdoerfer@phpc.socialHow to work with Twig Components and Live Components in #Sylius?
I've documented my findings in the latest @… blog post:
@stevefoerster@social.fossdle.orgI just beat #MinesweeperOnline in 144 seconds on Expert mode!
https://minesweeperonline.com
I mean, the bad news is that I wasted 144 seconds of my life. The good news is that it was only 1…
@matths@toot.communitystill looking at these "zen geometry" like circles. #svg #svelte #javascript
@tgpo@social.linux.pizza @zachleat@zachleat.comI want to intercept Boolean coercion for objects in JavaScript: https://www.zachleat.com/web/boolean-coercion/
@cheeaun@mastodon.social👀 Interesting #MastoDev
@fanf@mendeddrum.orgit’s annoying that web devs are no longer able to analyse their web server access logs
instead they install javascript spyware, hand over all their user data to surveillance direct marketing firms, slap a cookie consent banner on it, and pretend this is ok
@jamie@boothcomputing.social@…
That "immediate run" really just implies an interpreted language. Python is a great example and probably a closer match than my JavaScript example.
@philip@mastodon.mallegolhansen.comToday is my manager’s last day, as his final move, he suggested I try to argue *for* the use of JavaScript for once.
What a fucking troll.
@jaygooby@mastodon.social`Old man yells at the javascript industrial complex` is one of my commit messages from yesterday.
Another is `fml` - things are going great!
@aral@mastodon.ar.alSo this is what one possible database migration scenario looks like in Kitten when you’re storing JavaScript objects (instances of JavaScript classes) in your database.
(In this case, I’m moving a VerifiedAccounts collection comprising VerifiedAccount instances to an Accounts collection comprising Account instances, which introduces an inVerified boolean to the model.)
See the Database App Modules Kitten tutorial for more:
@simon_brooke@mastodon.scotI've written my first little #Scittle app today, and I'm impressed. To be able to write in-browser code in #Clojure is so much nicer than #Javascript. I have some issues to fix and some enhancement…
@arXiv_qbioGN_bot@mastoxiv.pageUchimata: a toolkit for visualization of 3D genome structures on the web and in computational notebooks
David Kou\v{r}il, Trevor Manz, Tereza Clarence, Nils Gehlenborg
https://arxiv.org/abs/2509.13290 …
@arXiv_csCR_bot@mastoxiv.pageBreaking Obfuscation: Cluster-Aware Graph with LLM-Aided Recovery for Malicious JavaScript Detection
Zhihong Liang, Xin Wang, Zhenhuang Hu, Liangliang Song, Lin Chen, Jingjing Guo, Yanbin Wang, Ye Tian
https://arxiv.org/abs/2507.22447
@compfu@mograph.socialOh, if you are using NPM for your Javascript maybe don't push to production and revert things a bit? What a mess...
#javascript
@lil5@social.linux.pizza#gleam on JavaScript is a bad fit, will give #PureScript a go, Haskell but with the huge npm ecosystem. How purescript’s ffi handles will be a deciding factor.
#functionalprogramming
@tiotasram@kolektiva.socialShould we teach vibe coding? Here's why not.
Should AI coding be taught in undergrad CS education?
1/2
I teach undergraduate computer science labs, including for intro and more-advanced core courses. I don't publish (non-negligible) scholarly work in the area, but I've got years of craft expertise in course design, and I do follow the academic literature to some degree. In other words, In not the world's leading expert, but I have spent a lot of time thinking about course design, and consider myself competent at it, with plenty of direct experience in what knowledge & skills I can expect from students as they move through the curriculum.
I'm also strongly against most uses of what's called "AI" these days (specifically, generative deep neutral networks as supplied by our current cadre of techbro). There are a surprising number of completely orthogonal reasons to oppose the use of these systems, and a very limited number of reasonable exceptions (overcoming accessibility barriers is an example). On the grounds of environmental and digital-commons-pollution costs alone, using specifically the largest/newest models is unethical in most cases.
But as any good teacher should, I constantly question these evaluations, because I worry about the impact on my students should I eschew teaching relevant tech for bad reasons (and even for his reasons). I also want to make my reasoning clear to students, who should absolutely question me on this. That inspired me to ask a simple question: ignoring for one moment the ethical objections (which we shouldn't, of course; they're very stark), at what level in the CS major could I expect to teach a course about programming with AI assistance, and expect students to succeed at a more technically demanding final project than a course at the same level where students were banned from using AI? In other words, at what level would I expect students to actually benefit from AI coding "assistance?"
To be clear, I'm assuming that students aren't using AI in other aspects of coursework: the topic of using AI to "help you study" is a separate one (TL;DR it's gross value is not negative, but it's mostly not worth the harm to your metacognitive abilities, which AI-induced changes to the digital commons are making more important than ever).
So what's my answer to this question?
If I'm being incredibly optimistic, senior year. Slightly less optimistic, second year of a masters program. Realistic? Maybe never.
The interesting bit for you-the-reader is: why is this my answer? (Especially given that students would probably self-report significant gains at lower levels.) To start with, [this paper where experienced developers thought that AI assistance sped up their work on real tasks when in fact it slowed it down] (https://arxiv.org/abs/2507.09089) is informative. There are a lot of differences in task between experienced devs solving real bugs and students working on a class project, but it's important to understand that we shouldn't have a baseline expectation that AI coding "assistants" will speed things up in the best of circumstances, and we shouldn't trust self-reports of productivity (or the AI hype machine in general).
Now we might imagine that coding assistants will be better at helping with a student project than at helping with fixing bugs in open-source software, since it's a much easier task. For many programming assignments that have a fixed answer, we know that many AI assistants can just spit out a solution based on prompting them with the problem description (there's another elephant in the room here to do with learning outcomes regardless of project success, but we'll ignore this over too, my focus here is on project complexity reach, not learning outcomes). My question is about more open-ended projects, not assignments with an expected answer. Here's a second study (by one of my colleagues) about novices using AI assistance for programming tasks. It showcases how difficult it is to use AI tools well, and some of these stumbling blocks that novices in particular face.
But what about intermediate students? Might there be some level where the AI is helpful because the task is still relatively simple and the students are good enough to handle it? The problem with this is that as task complexity increases, so does the likelihood of the AI generating (or copying) code that uses more complex constructs which a student doesn't understand. Let's say I have second year students writing interactive websites with JavaScript. Without a lot of care that those students don't know how to deploy, the AI is likely to suggest code that depends on several different frameworks, from React to JQuery, without actually setting up or including those frameworks, and of course three students would be way out of their depth trying to do that. This is a general problem: each programming class carefully limits the specific code frameworks and constructs it expects students to know based on the material it covers. There is no feasible way to limit an AI assistant to a fixed set of constructs or frameworks, using current designs. There are alternate designs where this would be possible (like AI search through adaptation from a controlled library of snippets) but those would be entirely different tools.
So what happens on a sizeable class project where the AI has dropped in buggy code, especially if it uses code constructs the students don't understand? Best case, they understand that they don't understand and re-prompt, or ask for help from an instructor or TA quickly who helps them get rid of the stuff they don't understand and re-prompt or manually add stuff they do. Average case: they waste several hours and/or sweep the bugs partly under the rug, resulting in a project with significant defects. Students in their second and even third years of a CS major still have a lot to learn about debugging, and usually have significant gaps in their knowledge of even their most comfortable programming language. I do think regardless of AI we as teachers need to get better at teaching debugging skills, but the knowledge gaps are inevitable because there's just too much to know. In Python, for example, the LLM is going to spit out yields, async functions, try/finally, maybe even something like a while/else, or with recent training data, the walrus operator. I can't expect even a fraction of 3rd year students who have worked with Python since their first year to know about all these things, and based on how students approach projects where they have studied all the relevant constructs but have forgotten some, I'm not optimistic seeing these things will magically become learning opportunities. Student projects are better off working with a limited subset of full programming languages that the students have actually learned, and using AI coding assistants as currently designed makes this impossible. Beyond that, even when the "assistant" just introduces bugs using syntax the students understand, even through their 4th year many students struggle to understand the operation of moderately complex code they've written themselves, let alone written by someone else. Having access to an AI that will confidently offer incorrect explanations for bugs will make this worse.
To be sure a small minority of students will be able to overcome these problems, but that minority is the group that has a good grasp of the fundamentals and has broadened their knowledge through self-study, which earlier AI-reliant classes would make less likely to happen. In any case, I care about the average student, since we already have plenty of stuff about our institutions that makes life easier for a favored few while being worse for the average student (note that our construction of that favored few as the "good" students is a large part of this problem).
To summarize: because AI assistants introduce excess code complexity and difficult-to-debug bugs, they'll slow down rather than speed up project progress for the average student on moderately complex projects. On a fixed deadline, they'll result in worse projects, or necessitate less ambitious project scoping to ensure adequate completion, and I expect this remains broadly true through 4-6 years of study in most programs (don't take this as an endorsement of AI "assistants" for masters students; we've ignored a lot of other problems along the way).
There's a related problem: solving open-ended project assignments well ultimately depends on deeply understanding the problem, and AI "assistants" allow students to put a lot of code in their file without spending much time thinking about the problem or building an understanding of it. This is awful for learning outcomes, but also bad for project success. Getting students to see the value of thinking deeply about a problem is a thorny pedagogical puzzle at the best of times, and allowing the use of AI "assistants" makes the problem much much worse. This is another area I hope to see (or even drive) pedagogical improvement in, for what it's worth.
1/2
@datascience@genomic.social @jamesthebard@social.linux.pizzaThe Pathfinder 2E character sheet continues. The current "components" are all now linked to actual character sheet data. The skill functions all do what they're supposed to including some interesting edge cases. The ability scores can be edited, and the sheet auto-updates which took longer than it should have. I'm still not a fan of JavaScript/Vue though.
#programming
@buercher@tooting.chProbably the smallest Wiki you can make in JavaScript.
Tiny Wiki is 11 KB of JavaScript code enabling you to create and edit and search wiki pages.
https://belle-nuit.com/tiny-wiki/index.html?name=home
@yaxu@post.lurk.orgI'd like to publish conference proceedings as epub rather than pdf, as they're more accessible, can include videos etc. They're basically standardised bundles of HTML as far as I can tell, that can be downloaded onto ereaders etc.
However, web browsers can't natively read them, and I somehow can't find a nice and simple, fast and useable javascript thingie for making them readable online. Does it exist?
Every time I look into this sort of thing I don't und…
@zachleat@zachleat.comis there really no low-level mechanism to intercept boolean primitive coercion in JavaScript?
why can’t I extend `Boolean` to make `new MyBoolean(false)` be `falsy`? (I understand why it isn’t, but I want to make it so)
> Note: Unlike other type conversions like string coercion or number coercion, boolean coercion does not attempt to convert objects to primitives by calling user methods.
@groupnebula563@mastodon.sociali hate current webdev just because it's like "here's a massive JS library so you can run python in the browser" what no just use javascript
"here's a cool jquery thing that makes scrolling text" we have the `<marquee>` tag
@GroupNebula563@mastodon.sociali hate current webdev just because it's like "here's a massive JS library so you can run python in the browser" what no just use javascript
"here's a cool jquery thing that makes scrolling text" we have the `<marquee>` tag
@michabbb@social.vivaldi.net @gwire@mastodon.socialRoutinely ignoring Dependabot requests pays off again, probably.
https://cyberplace.social/@GossiTheDog/115169390397282254
@arXiv_csSE_bot@mastoxiv.pageEvaluating SAP Joule for Code Generation
Joshua Heisler, Johannes Reisinger, Andreas Fischer
https://arxiv.org/abs/2509.24828 https://arxiv.org/pdf/2509.24…
@fanf@mendeddrum.orgfrom my link log —
Apache ECharts: a JavaScript data visualization / graphing library.
https://echarts.apache.org/
saved 2025-08-05 https://
@zachleat@zachleat.com@… @… @… hmm… I wouldn’t trade a build step for a JavaScript server runtime dependency, long…
@khalidabuhakmeh@mastodon.socialHas anyone written a passkey web component with vanilla JavaScript?
@jamie@boothcomputing.social@…
BASIC was the FAFO language of the 1980's. A beginner could pretty easily create something that worked but it lacked a lot of the advanced features that "real programmers" used.
I think that language is something different for today. Not sure what but probably something like JavaScript.
@arXiv_csCR_bot@mastoxiv.pageEmpirical Security Analysis of Software-based Fault Isolation through Controlled Fault Injection
Nils Bars, Lukas Bernhard, Moritz Schloegel, Thorsten Holz
https://arxiv.org/abs/2509.07757
@kubikpixel@chaos.social»npm als Sicherheitsrisiko — Warum Angriffe zunehmen und wie man vorbeugen kann:
npm bleibt anfällig für Supply-Chain-Angriffe. Woran liegt das, was tun npm und GitHub dagegen und wie kann man seine eigenen Projekte schützen?«
Ich pers. bin kein JavaScript Freund aber nutze es für Web-Anwendungen. Ja es ist aufwändig die Libs und deren Abhängigkeiten durchzusehen und hindert leider auch von Hackern nicht.
🔧
@arXiv_csSE_bot@mastoxiv.pageGeoJSEval: An Automated Evaluation Framework for Large Language Models on JavaScript-Based Geospatial Computation and Visualization Code Generation
Guanyu Chen, Haoyue Jiao, Shuyang Hou, Ziqi Liu, Lutong Xie, Shaowen Wu, Huayi Wu, Xuefeng Guan, Zhipeng Gui
https://arxiv.org/abs/2507.20553
@tgpo@social.linux.pizzaI'm a Senior #Software Engineer with 20 years of professional experience.
I'm based in the USA and looking for #remote work.
I have primarily worked with web technologies such as #JavaScript
@matths@toot.communityI'm currently tinkering with the calculations behind these geometries, but I'm not sure about some of the parameters in order to make them completely generic. #svg #javascript #maths
@yaxu@post.lurk.org @zachleat@zachleat.comI do think the results of the above (even with a small sample) suggest that there is a big expectations mismatch in how security issues are communicated in the JavaScript ecosystem
@fanf@mendeddrum.orgfrom my link log —
Temporal_rs is here! The datetime library powering JavaScript Temporal in Boa, Kiesel, and V8.
https://boajs.dev/blog/2025/09/24/temporal-release
saved 2025-09-30
@sean@scoat.es@… “needed to implement our own find-in-page” is a compound code smell that tattles on the previous stink of “we should be rendering this on the server side, but here’s some fancy javascript instead”.
@arXiv_csCR_bot@mastoxiv.pageThunderhammer: Rowhammer Bitflips via PCIe and Thunderbolt (USB-C)
Robert Dumitru (Jing), Junpeng Wan (Jing), Daniel Genkin (Jing), Rick Kennell (Jing), Dave (Jing), Tian, Yuval Yarom
https://arxiv.org/abs/2509.11440
@khalidabuhakmeh@mastodon.socialIt’s kind of wild that every JavaScript dependency now requires some kind of build tool or package management.
@frankel@mastodon.topThe Real Cost of Poor #Documentation for Developers
https://andiku.com/blog/the-real-cost-of-poor-documentation-for-developers
@arXiv_csSE_bot@mastoxiv.pageInteroperability From OpenTelemetry to Kieker: Demonstrated as Export from the Astronomy Shop
David Georg Reichelt, Shinhyung Yang, Wilhelm Hasselbring
https://arxiv.org/abs/2510.11179
@philip@mastodon.mallegolhansen.comI don't want to:
* Work on "AI"
* Write software that ultimately exists to abuse its users
* Dogmatically follow patterns assumed to be "the way it's done"
I want to:
* Actively use my brain to craft quality solutions
* Engage with the problem domain!
* Avoid JavaScript, but if I can't, I'll live
@zachleat@zachleat.comCrashing out at how poorly npm (Microsoft) is handling this security incident. Eleventy is not affected any more but *lots* of other tools in the JavaScript ecosystem are!
Hours later and the compromised package versions are still public…
Maybe don’t install anything from npm today, folks.
@fanf@mendeddrum.orgfrom my link log —
Linear-time matching of JavaScript regular expressions.
https://dl.acm.org/doi/10.1145/3656431
saved 2025-07-16 https://
@kubikpixel@chaos.social»Benutz' einfach verficktes HTML«
Ja sehr rau aber auch sehr ehrlich. Zu viele machen Webseiten zu umständlich auf Frameworks die sie nur um ca. ~30% wirklich nutzen und abgesehen davon ist PHP so wie JavaScript sehr langsam. Für die meiste Firmen reicht mMn eine statische Webseite vollkommen aus die aber regelmässig inhaltlich aktualisiert wird.
🧑💻 h…
@sean@scoat.esToday I created a new Pull Request on GitHub, copied the URL out of the address bar, and pasted into our dev chat.
The URL I pasted is not the URL I intended to copy, but it was instead a URL I’d viewed earlier this morning. I don’t know which part failed here.
Was it the new GitHub-only-cares-about-AI terrible User Interface trying to be clever about address rewrites in their garbage JavaScript-pretending-to-be-a-web-page?
Or maybe it was Orion, a browser I wish I didn’t t…
@fanf@mendeddrum.orgfrom my link log —
ohm: a JavaScript library and PEG-based language for building parsers.
https://github.com/harc/ohm
saved 2021-03-27 https://
@arXiv_csSE_bot@mastoxiv.pageJS-TOD: Detecting Order-Dependent Flaky Tests in Jest
Negar Hashemi, Amjed Tahir, Shawn Rasheed, August Shi, Rachel Blagojevic
https://arxiv.org/abs/2509.00466 https://
@arXiv_csSE_bot@mastoxiv.pageJSProtect: A Scalable Obfuscation Framework for Mini-Games in WeChat
Zhihao Li, Chaozheng Wang, Zongjie Li, Xinyong Peng, Zelin Su, Qun Xia, Haochuan Lu, Ting Xiong, Man Ho Lam, Shuzheng Gao, Yuchong Xie, Cuiyun Gao, Shuai Wang, Yuetang Deng, Huafeng Ma
https://arxiv.org/abs/2509.24498
