Web Development

Not to poke at React or any of the other popular frameworks, I'm sure they're suitable for Cybersecurity projects. They surely go through things like reviews and audits.

I'm asking from the perspective that web components are native to the browser and thus reducing what I think is called supply chain attacks (like if "npm install" introduces something it shouldn't).

Maybe the frameworks don't matter and depends on the browser/os/device it's run on?

Context: I have a p2p messaging app created with ReactJS and a separate project for a UI framework based on Lit. Both these projects can be a whole separate discussion. I was wondering if there could be any advantages to refactoring (or starting from scratch) the messaging-app to be based on the webcomponent ui framework.

Same question on Reddit with comments here. I have an answer there, but posting here in-case anything is being overlooked.

After 20 years, PNG is back with renewed vigor! A new PNG spec was just released.

Things I would like every young web engineer to learn:

• anything you can do in CSS + HTML, you should do in CSS + HTML
• framework du jour is not a platform, it's a high-interest loan against your future capacity. The platform is the platform
• understanding the memory hierarchy always matters
• client-side isn't easier than the server, and "generalists" usually suck at client-side. Mind the (packet) gap
• managers who are not technical are not useful
• put users first, always

Second-order things to learn:

• the way browsers work isn't static, but it also isn't changing that fast. Learn as much as you can and update every few years; particularly about networking and the rendering loop.
• JS is the slowest way to do anything on the web. Never let it become the way you do everything.
• a11y isn't nice-to-have, it's the job
• shipping fast almost never matters as much as quality, & there are simple heuristics you can use to understand the difference

https://voicengo.github.io/img-responsive/public/

cross-posted from: https://programming.dev/post/32376875

Biome is a formatter and linter for web languages: JavaScript, TypeScript, CSS, HTML, JSON, and GraphQL.

Version 2 adds type-aware lint rules and it is the first TypeScript linter that does not require tsc. Other new features include:

• Monorepo support
• GritQL Plugins
• Revamped, configurable import sorting
• Linter domains
• Bulk suppressions
• Analyzer assists
• Many new lint rules

Introducing Dim – a new framework that brings React-like functional JSX-syntax with JS. Check it out here:

🔗 Project: https://github.com/positive-intentions/dim

🔗 Website: https://dim.positive-intentions.com/

My journey with web components started with Lit, and while I appreciated its native browser support (less tooling!), coming from ReactJS, the class components felt like a step backward. The functional approach in React significantly improved my developer experience and debugging flow.

So, I set out to build a thin, functional wrapper around Lit, and Dim is the result! It's a proof-of-concept right now, with "main" hooks similar to React, plus some custom ones like useStore for encryption-at-rest. (Note: state management for encryption-at-rest is still unstable and currently uses a hardcoded password while I explore passwordless options like WebAuthn/Passkeys).

You can dive deeper into the documentation and see how it works here:

📚 Dim Docs: https://positive-intentions.com/docs/category/dim

This project is still in its early stages and very unstable, so expect breaking changes. I've already received valuable feedback on some functions regarding security, and I'm actively investigating those. I'm genuinely open to all feedback as I continue to develop it!

Firefox 139.0 released yesterday, with support for the Temporal JavaScript API.

I explored the API, writing down the most relevant interfaces into a reference or cheat sheet.

It's certainly and finally a thorough API for handling temporal information. Working with zoned datetime across time offsets and time zones can get very confusing, though.

I love how you can work with them though, especially with durations.

console.log(Temporal.PlainDateTime.from('2025-02-05T08:00:00'))

console.log(Temporal.Now.plainDateTimeISO("Europe/Berlin"))

console.log(Temporal.Now.plainDateTimeISO().add('PT2M0.2S').subtract('PT0.5S').since(Temporal.Now.plainDateTimeISO()))

console.log(Temporal.ZonedDateTime.from('2025-02-05T13:57:35.777888[Europe/Berlin]').withTimeZone('Europe/London'))

Hi everyone!

Yesterday I shared a post here about discovering independent websites. I spent the day working on a small prototype for a larger project I'd been working on called powRSS. It's nothing more than a simple RSS finder, reader, and now aggregator.

If you have a personal website or blog, I would strongly encourage you to leave a comment or send me an e-mail, as I'd love to add it to the public feed.

I hope some of you may find it useful :-)

Hey everyone, today I had a fun interaction with a fellow web developer regarding the discovery of independent websites and blogs.

In the /r/frontend subreddit, a writer named Fred shared a blog post titled "Small web is beautiful". One of the things he said which caught my attention was this:

I dream of a web that fosters healthy conversations, together with personal and intellectual growth. The world is diverse and fascinating, and we can be information explorers together. Whenever I write a longform blog post and share it with the world, I get people recommending me similar reads, which in turn I use to improve the original blog post (and my own personal knowledge). I love it when people challenge my ideas — as that opens my mind to unseen perspectives — and I wish the web was a safe place where this could happen much more often.

Which is pretty much what I love about the web as a medium for communication in the first place!

I left a comment on his blog post saying that the best and most meaningful connections I’ve made on the web have been through finding small independent websites owned by people and emailing them to say hello and thank you if an article was especially helpful or insightful. I also mentioned that I'm a big fan of smallweb search engines and directories like we had back in the day, so he asked me for recommendations.

I ended up writing a blog post on my website collecting some of my favorites and sending the post to him. He looked through my site and saw some of my interests in writing and literature so he sent me a project of his where he's collecting book epigraphs from various authors. Now, here's the fun part: turns out that when he started this project, he had shared and asked for help with the Ruby on Rails community (about 9 months ago) and I had already commented and given feedback on the project! Full circle moment reminding me how small the internet can be 😁

Same as above:

Can I create a CNAME record to point a subdomain to a webpage e.g. blog.example.com -> example.com/blog?

I would also like to know if I can do this to point subdomains to webpages on different websites.

e.g. bluesky.example.com -> bsky.app/profile/example.com

IP tells you where the request comes from, that’s it. It doesn’t tell you what language the user speaks. It looks like Google thinks otherwise, and many programmers are blindly repeating it for Google with no idea how do it properly.

You can now opt-in to requiring future uploads to the Chrome Web Store to be signed with a trusted private key.

Skip to slide 20.

🚀 Built my own toolbox of 10 free, browser-based dev tools – no sign-up, no install, no distractions.

🧰 Tools included: • JSON Formatter & Cleaner
• Password Generator
• Text Case Converter
• Regex Tester
• HTML Entities Encoder/Decoder
• URL & Base64 Encoder/Decoder
• Lorem Ipsum Generator
• Text Cleaner
• Hex to RGB Converter

🌐 Try them here: https://www.jscripted.com/devbox
Let me know if there's a tool you want added!