Thinking Fast and Slow in Application Security
Imagine if we applied behavioral economics principles to application security methodologies and practices, what would be able to unlock? System1 and System2, All Systems Go.
Imagine if we applied behavioral economics principles to application security methodologies and practices, what would be able to unlock? System1 and System2, All Systems Go.
Can Astro automatically import components in markdown files? Yes, it can! Here's how to do it thanks to Chris Swithinbank and his Astro Auto Import package.
This article explores the use of `Promise.withResolvers` in Node.js tests, providing examples and refactoring techniques to handle nested tests and signal their completion effectively. It also discusses the limitations of the `Promise.withResolvers` API in different Node.js versions.
Learn how to supercharge your Vue.js 3 app with TanStack Query. Discover efficient data fetching, caching, and state management in this practical refactoring guide.
The rise of zero dependency JavaScript with packages like `neotraverse` and the controversy around the `axobject-query` package demonstrate the different perspectives and trade-offs that developers and maintainers need to consider when building and maintaining JavaScript applications.
How about we try a different approach to ChatGPT, Google Gemini or Anthropic's Claude? Learn how to run a local LLM model for inference so you can access it offline and without incurring costs beyond your own hardware compute.
Current adoption craze for GenAI tools like ChatGPT bring hidden costs in the form of privacy, security, data leakage, latency and availability. The future isn't gloom though, as the future of LLMs is in local-first offline inference, open LLMs, consumer-grade GPU acceleration and micro fine-tuning model training. How and why? Read on.
Getting Playwright to work on Heroku wasn't smooth sailing. It looked for browser dependencies that weren't installed by default and not in the location it expected them. Here's how I did it and what I learned along the way.
Tired of seeing poor authentication patterns in Node.js applications and Express code examples? Here's a guide on how to avoid them and what to do instead
Learn how to block specific LAN client IPs from accessing YouTube and other media sites using AdGuard add-on and Home Assistant.
A break-down of how to set up Fastify to work on serverless Firebase Functions and access the request's rawBody to validate incoming HTTP webhooks requests from Lemon Squeezy.
You have an Astro blog? Now it's time to unlock the social sharing magic! Learn to wield OpenGraph meta tags configuration, crafting eye-catching previews. Optimize your website's social share game with these tips.
Follow these best practices to bootstrap a Node.js application configuration in a robust and maintainable way using env-schema.
Often smart home automation enthusiasts want to access their Home Assistant instance remotely. This can be done by exposing the Home Assistant instance to the internet. However, this is not a secure way to access Home Assistant remotely and pose the risk of cyber attacks. In this article, we will see how to use Tailscale VPN to securely access Home Assistant remotely.
Every Node.js application needs configuration management, but there are many ways to do it. You might have heard about `.env` files, and packages like dotenv, convict, env-schema so let's explore the different configuration patterns and how to use them.
Vue.js revolves around a reactivity system, which is unlike React. In this article, we will explore how to use the Vue.js 3 Composition API to create a reactive parent to child communication.
Do you ever struggle to come up with creative presentation titles? Let's build that while learning how to use Generative AI, Express and Trigger.dev with the OpenAI integration.
Process long-running tasks in Node.js with background jobs. Learn how to use BullMQ and Redis on Heroku to create a scalable and reliable background job processing system.
Level up your Node.js apps with env-schema! Manage configurations effortlessly and learn useful practices for building for configuration management.
A comprehensive guide to adopting Changesets for semantic versioning and publishing packages in monorepos and non-monorepo projects.
How to deploy a Vue 3 static site to Heroku with a Fastify Node.js backend server to serve the static files.
How to harness the power of streams in Fastify web applications without resorting to raw HTTP replies via reply.raw and reply.hijack().
I found a Local File Inclusion (LFI) security vulnerability in xmlhttprequest library but it's still unfixed.
proof-of-concept showing a denial of service vulnerability in a Node.js web server if it uses the xmlhttprequest library to make outgoing HTTP requests
Customizing AsciiDoc can be challenging at times, especially when it comes to admonitions. In this article, I'll show you how to apply custom admonition styles to your AsciiDoc book.