lodash just had its first ever 100M+ download week on npm that's a 70% YoY increase

its frustrating that the remote claude code env is missing some tools. For me its the missing gh cli that really hurts, for reading issues/PRs or otherwise doing read against GH So I created this StartSession script which ensures it is installed in remote sessions www.npmjs.com/package/@jon...

i do like the computer

In my OSS archaelogy efforts I keep bumping into the defunct Component.js pre-npm registry and UI framework paradigm Just found this video explainer from their homepage focusing on the ui component runtime system, really capturing a point in time www.youtube.com/watch?v=gtz7...

I spent almost $3k on Google BigQuery by accident while exploring dependency relationships in the deps.dev dataset WOOF

Our goal is to provide guidance and tooling for perf based decisions to the maintainers under our umbrella. Aligning our philosophy for how/what we monitor and how to interpret the results lets us be consistent across our 50+ packages. Ive been learning a lot so far, and big ty to @rafaelgss.dev

There are 39 ads on a given article from for my town’s local paper beyond cooked www.gainesville.com/story/news/l...

The Pitt: every week Brad Pitt unveils a new pit full of bullshit and throws people into it. Everyone loves the pit

I just learned that setting process.noDeprecation = true Silences dep notifications from node, its what —no-deprecation flag ends up setting I know its hacky, but how hacky?

🚀 Exciting Announcement today! Express v5 is officially "latest" and we have started the maintenance period for v4. Read more about the release and our LTS plans in our blog post: expressjs.com/2025/03/31/v...

Not sure this is the one, but pretty sure it is. @bjohansebas.bsky.social has been doing such great work it is awesome to see this kind of recognition! Well deserved.

I love getting nerdsniped on HTTP spec related stuff, and am glad I quit my job to have space in my life for this was fun to figure out what probably happened with content-disposition having in incomplete regex for parsing extended filename parameters: github.com/jshttp/conte...

Whats the purpose here of exfil to oastify vs requestbin? Does oastify enrich the exfil or is it just a convenient and innocuous endpoint?

top tier scam message

Approach open source as an infinite, open game. Prioritize purpose over goals, collaboration over competition, and legacy over ownership

Woah I didnt realize you can create your own algorithmic feeds! But also like hey @bsky.app which one of you is the Alf freak? 👀 docs.bsky.app/docs/starter...

So what are github action threats for public repos? Talking about allowing CI on PRs from forks Assume that im using “pull_request” trigger and have the default perms for actions GH defaults you to having to approve runs. In the above scenario, is it really a risk to let all of them run?

Still extremely enjoying the wipeout soundtrack from @coldstorage.bsky.social open.spotify.com/artist/1TvIL...