Tootfinder

🥳 Auto-Encrypt Localhost version 9.0.0 released
Bye bye, Windows.
• Windows is no longer supported as Microsoft is complicit in Israel’s genocide of the Palestinian people¹ and Small Technology Foundation² stands in solidarity with the Boycott, Divestment, and Sanctions (BDS) movement³. Windows is an ad-infested and surveillance-ridden dumpster fire of an operating system and, alongside supporting genocide, you are putting both yourself and others at risk by using it.
Enjo…

auto-encrypt-localhost
Automatically provisions and installs locally-trusted TLS certificates for Node.js https servers in 100% JavaScript (without any native dependencies like mkcert and certutil).

from my link log —
Deno: a runtime for TypeScript built with V8, Rust, and Tokio.
https://deno.land/
saved 2019-07-07 https://dotat.at/:/C5839.html

Deno, the next-generation JavaScript runtime
Deno features improved security, performance, and developer experience compared to its predecessor. It's a great time to upgrade your Node.js project to run on Deno.

2025 JavaScript Rising Stars
🧑‍💻 #RisingStars #javascript

2025 JavaScript Rising Stars
A complete overview of the JavaScript landscape in 2025: trends about frontend, fullstack and Node.js frameworks, React and Vue.js ecosystems, build tools, state management...

🥳 New Node Pebble release (version 5.3.0)
Thanks to the lovely folks at Let’s Encrypt tagging a new release of Pebble last night¹ (version 2.9.0), there’s now a new version of Node Pebble that uses it :)
https://codeberg.org/small-tech/node-pebble
Enjoy! 💕
¹

node-pebble
A Node.js wrapper for Let’s Encrypt’s Pebble (a small RFC 8555 ACME test server not suited for a production certificate authority)

I think I found a Node.js bug! https://github.com/nodejs/node/issues/61385

Well, less JS in the world would absolutely be an improvement to be honest.

Another way of dealing with many low-quality reports:
https://nodejs.org/en/blog/announcements/hackerone-signal-requirement

Node.js — New HackerOne Signal Requirement for Vulnerability Reports
Node.js® is a free, open-source, cross-platform JavaScript runtime environment that lets developers create servers, web apps, command line tools and scripts.

Just updated Node Pebble to support latest release version of Let’s Encrypt’s Pebble testing server.
#LetsEncrypt…

node-pebble
A Node.js wrapper for Let’s Encrypt’s Pebble (a small RFC 8555 ACME test server not suited for a production certificate authority)

Caught a bug over the holidays so I’m mostly resting, feeling sorry for myself, and taking the time to at least carry out some mindless housekeeping tasks (updating dependencies, etc.) on some of my Node modules.
Released updates to the following packages yesterday:
Tape-based Node.js testing:
• Tap monkey (https://

tap-monkey
A tap formatter that’s also a monkey.

🥳 @small-tech/syswide-cas v7.0.2 released
Enables Node.js to use custom Certificate Authorities (CAs) alongside the bundled root CAs.
https://codeberg.org/small-tech/syswide-cas#readme
• Drops legacy Node support
• Is now ESM
• Improved code quality
•…

syswide-cas
Enables Node.js to use custom Certificate Authorities (CAs) alongside the bundled root CAs. (Fork of syswide-cas by a now-defunct startup called Capriza.)

🥳 @small-tech/auto-encrypt-localhost version 9.0.1 released
Automatically provisions and installs locally-trusted TLS certificates for Node.js https servers (including Polka, Express.js, etc.) Unlike mkcert, 100% written in JavaScript with no external/binary dependencies. As used in Kitten¹
https://cod…

auto-encrypt-localhost
Automatically provisions and installs locally-trusted TLS certificates for Node.js https servers in 100% JavaScript (without any native dependencies like mkcert and certutil).

Node.js devs, so picture this: you run `npm install` and you get a bunch of packages with audit errors.
The only thing I want to know at that point is what’s the root package that these dependencies belong to? (Running npm audit fix is a last resort as I don’t like it fiddling around with the dependencies of nested packages.)
It’s also not a straightforward thing to do, but it’s nothing jq and a bit of piping can’t fix:
```bash
npm audit --json | jq -r '.vulnerabil…

🥳 Minor releases
• Auto Encrypt 5.1.0: Moves automatic IP address detection from top-level await to asynchronous createServer() method to enable servers that import to run offline when they’re running on localhost) and exports IPAddresses class so servers can carry out their own automatic IP address detection (IPv4 and IPv6) if they want full control over exactly which domains and IP addresses are included in provisioned TLS certificates.¹
• @small-tech/https: Re-exports IPAddres…

auto-encrypt/CHANGELOG.md at main
auto-encrypt - Automatically-provisioned TLS certificates for Node.js servers using Let’s Encrypt.

🥳 Multiple major releases today
• @small-tech/auto-encrypt v5.0.0 (https://codeberg.org/small-tech/auto-encrypt#readme)
• @small-tech/auto-encrypt-localhost v10.0.0 (

auto-encrypt
Automatically-provisioned TLS certificates for Node.js servers using Let’s Encrypt.