💡 More: Socket offers a more accessible breakdown. There's also a GitHub issue discussing the matter. It's worth considering pinning your dependencies, preventing post-install scripts from running (can be configured with npm but is the default in pnpm and Bun) and/or using cooldowns for dependency updates (using minimumReleaseAge in npm or pnpm's approach).

Still Writing Tests Manually? Meticulous AI Is Here — Notion, Dropbox, Wiz and LaunchDarkly now use a testing paradigm they can’t work without. Built by former Palantir engineers, Meticulous automatically creates an evolving suite of E2E UI tests, delivering exhaustive coverage with no developer effort.

Meticulous sponsor

RELEASES:

• Inertia.js 3.0 – Glue between React, Vue and Svelte SPAs and non-JS server-side frameworks like Laravel, Rails and Django. More on v3 here.

• Node.js March 24, 2026 Security Releases - Including Node.js v25.8.2 (Current), v24.14.1 (LTS), v22.22.2 (LTS), and v20.20.2 (LTS).

• TanStack DB 0.6 – Now with persistence, offline support, and hierarchical data.

• Astro 6.1, Mantine 9.0, Ky 2.0 Prerelease, CKEditor 48.0, pnpm 10.33

📖  Articles and Videos

Signals: The Push-Pull Based Algorithm — A well-diagrammed ground-up explanation of how signals work internally, focusing on the push-pull algorithm at the core of reactivity in frameworks like Solid, Vue, and Angular.

Willy Brauner

📄 'I Decompiled the White House's New App' – Among the surprises in the React Native app are a cookie/paywall bypass injector and dynamic loading of JavaScript from a random user’s GitHub Pages... Thereallo

📄 Building a Scroll-Reactive 3D Gallery with Three.js, Velocity, and Mood-Based Backgrounds Houmahani Kane

📄 Why We Replaced Node.js with Bun for 5x Throughput Nick at Trigger

🛠 Code & Tools

Pretext: A Multiline Text Measurement and Layout Library — Cheng Lou, formerly a React core team member, caused a stir with this X post three days ago, racking up 22M impressions and getting 25k stars on this repo since. Why? People are very excited about the potential for real time web layouts! There are demos here if you want to see what the excitement is about, although the library itself is reasonably straightforward.

Cheng Lou

Knip v6: The Tool to Declutter Your JS/TS Projects — Knip is a go-to tool for finding and removing unused files, exports, and dependencies in projects. v6 integrates oxc for 2-4x performance gains (it tears through Astro in two seconds) and is largely a drop-in upgrade.

Lars Kappert

• Heat.js 5.1 (above) – Generate heat maps, charts, and statistics to visualize date-based activity. Now with point/line chart support.

• numpy-ts 1.2 – NumPy implementation for TypeScript and JavaScript. Now at ~50% native performance and with Float16 support. (Homepage)

• ts-blank-space 0.8 – Pure JavaScript type-stripper using the TypeScript 6 parser.

• RxDB 17.0 – Reactive NoSQL database for JS apps with local-first capabilities.

• filesize.js 11.0.15 – Converts byte counts into human-readable file size strings.

• 💳 React Stripe.js 6.0 – Components for Stripe.js and Stripe Elements.

• css-select 7.0 – CSS selector compiler and engine. Now ESM.

• ESLint Markdown Plugin 8.0 – Lint Markdown with ESLint.

📢  Elsewhere in the ecosystem

• JetBrains' Java/Kotlin IDE IntelliJ IDEA now includes core JavaScript and TypeScript features for free (no Ultimate subscription needed).

• Vercel explains the work going on to make Next.js work better across cloud platforms. The Adapter API provides a way for platforms to adjust apps to suit their environment. OpenNext, Netlify, Cloudflare, AWS Amplify, and Google Cloud are all on board.

• 🤖 GitHub has announced, starting late April, data (including inputs and snippets) from Free/Pro/Pro+ Copilot users will be used, by default, to help train future AI models. You can opt out.

• 🤖 A developer noticed Copilot edited an 'ad' into one of his PRs! GitHub's Martin Woodward explained (on X) why it happened and said the 'feature' has been disabled.

• 🔠 Looking for a new IDE font option? CodingFont lets you find your ideal choice visually using a bracket-style faceoff. Noto Sans Mono won for me – not one I'd considered before!