Node.js received new security update

Developers recommend every user to update Node.js as soon as possible
12 July 2017   3275
JavaScript

Lightweight interpreted or JIT-compiled programming language with first-class functions

Developers of Node.js recently released new security update. Update is important and they strongly recommend to upgrade Node.js's ASAP.

All non-updated versions of v4.x through to v8.x inclusive are vulnerable to an issue that can be used by an external hacker. The severity of this vulnerability is high and users of the affected versions should update their Node.js's as soon as possible.

List of non-updated vulnerable versions:

  • Versions 4.x of Node.js
  • Versions 6.x of Node.js 
  • Versions 7.x of Node.js 
  • Versions 8.x of Node.js

 Additionally, developers had provided the list of Node.js-specific security flaws. Among them:

  • Constant Hashtable Seeds (CVE pending)
  • Vulnerabilities in dependencies

According to the official website, updates are now available for all active Node.js release lines, including 7.x line. They include the fix for the high severity vulnerability, one additional lower priority Node.js vulnerability in the 4.x release line, as well as some lower priority fixes for Node.js dependencies across the current release lines.

Downloads

Frontend News Digest 1 - 7.02

How to Create a WP Site with JAMstack, formatting dates in JS with Intl.DateTimeFormat, Edge DevTools now supports more languages and more
07 February 2020   455

Greetings! I hope your week went great! Here's new frontend technologies news digest.

Check the MongoDB One-to-Many Relationship tutorial with Mongoose examples, the CO2 emission of the websites new NodeJS update and other interesting things

Guides

  • How To Create A Headless WordPress Site On The JAMstack

Tutorial on simple way to create a WordPress site

  • MongoDB One-to-Many Relationship tutorial with Mongoose examples

Guide about Mongoose - the most popular way to use MongoDB from Node.js.

  • Formatting dates in JavaScript with Intl.DateTimeFormat

Check the modern way to format dates in a region friendly way using native APIs, as now supported all major browsers and both Node

Articles

  • CO2 emissions on the web

Learn the lever of CO2 emissions websites produce by consuming a lot of energy for its activity

  • Bringing the Microsoft Edge DevTools to more languages

Now Edge's DevTools support more languages

Video

  • Chrome 80 - What’s New in DevTools

Updates

  • massCode

Snippets manager for developers

  • micro-jaymock

Tiny API mocking microservice for generating fake JSON data

  • Node v13.8.0 (Current)

Another update of popular solution

  • Electron 8.0.0

Major release of popular JS based solution