Friday, 19 May, 2017 UTC


Below you can find RisingStack's collection of the most important Node.js news, projects, updates & security leaks from this week:

1. Launching Ignition and TurboFan in V8

Today we are excited to announce the launch of a new JavaScript execution pipeline for V8 5.9 that will reach Chrome Stable in M59. With the new pipeline, we achieve big performance improvements and significant memory savings on real-world JavaScript applications.
The new pipeline is built upon Ignition, V8’s interpreter, and TurboFan, V8’s newest optimizing compiler. These technologies should be familiar to those of you who have followed the V8 blog over the last few years, but the switch to the new pipeline marks a big new milestone for both.

2. Packing a Kubernetes Microservices App with Helm

This post shows how we packed our Kubernetes microservices app with Helm and made them easy to reproduce in various environments.
At RisingStack we use Kubernetes with tens of microservices to provide our Node.js monitoring solution for our SaaS customers. During the last couple of months, we were asked by many enterprises with strict data compliance requirements to make our product available as an on-premises solution. So we had to find a solution that makes easy for them to install Trace as a single piece of software and hides the complexity of our infrastructure.

3. How Four Native Developers Wrote An Electron App

Electron is a well-known on-ramp for web developers to build desktop apps using familiar web technologies: HTML, CSS, and JavaScript.
Our situation was different. Everyone on the GitHub Desktop team is a native developer by trade—three from the .NET world and one from Cocoa. We knew how to make native apps, so how and why did we end up here?

4. Developing Microservices - Node, React, and Docker

In this post you will learn how to quickly spin up a reproducible development environment with Docker to manage a number of Node.js microservices.
The end goal of this post is to organize the technologies from the above image into the following containers and services:

5. Sharp - High performance Node.js image processing

The typical use case for this high speed Node.js module is to convert large images in common formats to smaller, web-friendly JPEG, PNG and WebP images of varying dimensions.
npm install sharp
Resizing an image is typically 4x-5x faster than using the quickest ImageMagick and GraphicsMagick settings. Colour spaces, embedded ICC profiles and alpha transparency channels are all handled correctly. Lanczos resampling ensures quality is not sacrificed for speed.

6. Automatically Build and Publish Node and Electron Applications for Linux

This is an introduction to and electron-builder, tools that enable you to deliver your Node and Electron applications to millions of Linux users.
Packaging for Linux used to be hard, but that has changed: the Snapcraft team have built a platform that makes it simple to build and publish your applications so they run on all the major Linux distributions. It gives you tools to deliver updates at a high frequency without compromising stability. Push a commit and it will automatically build for free in the store for your users.
Vulnerable npm Packages Discovered:

Medium severity

  • Regular Expression Denial of Service (ReDoS) - amqp-match package, ALL versions

Low severity

  • Regular Expression Denial of Service (ReDoS) - ms package, versions <2.0.0
Previously in the Node.js Weekly
In the previous Node.js Weekly Update we read about Writing Secure Node Code, Project Glimpse, Post-Mortem Diagnostics, using Docker Compose & more..
We help you to stay up-to-date with Node.js on a daily basis too. Check out our Node.js news page and its Twitter feed!