Engineering

How can a Content Security Policy prevent XSS and other vulnerabilities?

Keeping code safe in the era of cybercrime is no small feat, and many age-old tactics remain just as effective ...

Deploying a Gatsby site to GitHub Pages from Travis CI

I recently worked on a simple static website for an open source project I have and took Gatsby for a ...

Shipping Kubernetes-native applications with confidence

A few months ago, our team began developing a new product. This new product has a few properties that differentiate ...

6 stages of refactoring a Jest test case

An underrated feature of Jest is customizing the way assertion errors that the console displays when tests fail are handled. ...

Mastering Node.js version management and npm registry sources like a pro

In continuation to the 10 npm security best practices guide we published earlier this year, I’d like to further explore ...

Introducing experimental integrity policies to Node.js

A recent experimental feature for introducing integrity policies landed in Node.js core 11.8.0. This capability, shipped in non LTS version ...

What is package lock json and how a lockfile works for yarn and npm packages?

What is package-lock.json? In this article we will discuss both npm’s package lock file package-lock.json as well as Yarn’s yarn.lock. ...

Node.js: How even quick async functions can block the Event-Loop, starve I/O

Yet another article about the Node.js Event-Loop