JavaScript Jabber Podcast Por Charles M Wood capa

JavaScript Jabber

JavaScript Jabber

De: Charles M Wood
Ouça grátis

Sobre este título

 Stay current on JavaScript, Node, and Front-End development. Learn from experts in programming, careers, and technology every week.

Become a supporter of this podcast: https://www.spreaker.com/podcast/javascript-jabber--6102064/support.Copyright Charles M Wood Economia Sucesso na Carreira
Episódios
  • Guarding the JavaScript Supply Chain: Preventing NPM Attacks with Feross Aboukhadijeh - JSJ 695

    Guarding the JavaScript Supply Chain: Preventing NPM Attacks with Feross Aboukhadijeh - JSJ 695
    Nov 1 2025
    Hey everyone—it’s Steve Edwards here, and in this episode of JavaScript Jabber, I’m joined by returning guest Feross Aboukhadijeh, founder of Socket.dev, for a deep dive into the dark and fascinating world of open source supply chain security. From phishing campaigns targeting top NPM maintainers to the now-infamous Chalk library compromise, we unpack the latest wave of JavaScript package attacks and what developers can learn from them.

    Feross explains how some hackers are even using AI tools like Claude and Gemini as part of their payloads—and how defenders like Socket are fighting back with AI-powered analysis of their own. We also dive into GitHub Actions vulnerabilities, the role of two-factor authentication, and the growing need for “phishing-resistant 2FA.” Whether you’re an open source maintainer or just someone who runs npm install a little too often, this episode will open your eyes to how much happens behind the scenes to keep your code safe.

    🔗 Links & Resources
    • Socket.dev – Protect your open source dependencies
    • Feross Aboukhadijeh on X (Twitter)
    • GitHub Actions Security Best Practices
    • TruffleHog Blog – On secrets exposure in Git repos


    Become a supporter of this podcast: https://www.spreaker.com/podcast/javascript-jabber--6102064/support.
    Exibir mais Exibir menos
    1 hora
  • Making Monorepos Breakproof with Anton Stoychev - JSJ 694

    Making Monorepos Breakproof with Anton Stoychev - JSJ 694
    Oct 24 2025
    In this solo-hosted episode, I (Steve Edwards) dive deep into the world of modern monorepos with special guest Anton Stoychev from Yotpo. Anton shares his journey from the early days of PHP and IE6 nightmares to his current work in front-end infrastructure, performance optimization, and developer tooling.

    We talk about the challenges of managing dependencies, upgrading tools without breaking your codebase, and the evolution of developer experience across teams and companies. Anton also introduces Breakproof, Yotpo’s open-source monorepo template designed to make dependency management and tool upgrades painless—even when working with multiple Node.js versions, runtimes like Bun and Deno, and complex CI environments.

    If you’ve ever struggled with upgrading Jest, ESLint, or TypeScript in a large monorepo, or you’re curious how to isolate dependencies to keep your codebase maintainable over time, this episode is a must-listen.

    🔗 Links & Resources
    • 🔧 Breakproof on GitHub: breakproof.dev
    • 🧠 Yotpo LTD on GitHub: Yotpo Breakproof Base Monorepo
    • 💬 Follow Anton Stoychev: stoychev.dev on BlueSky


    Become a supporter of this podcast: https://www.spreaker.com/podcast/javascript-jabber--6102064/support.
    Exibir mais Exibir menos
    1 hora e 14 minutos
  • Spec-Driven Development and the Future of AI IDEs with AWS’s Kiro - JSJ 693

    Spec-Driven Development and the Future of AI IDEs with AWS’s Kiro - JSJ 693
    Oct 9 2025
    In this episode of JavaScript Jabber, I sit down with AWS’s Clare Liguori and Erik Hanchett to talk about Kiro, a brand-new AI-powered IDE that’s reimagining the way developers build software. We dive into how Kiro takes “AI-assisted coding” to a new level through spec-driven development — a process that focuses on defining requirements and collaborating with AI to break projects into clear, manageable tasks.

    We unpack what sets Kiro apart from tools like Cursor and Copilot, explore its supervised vs. autopilot coding modes, and even talk about how it handles UI design, planning, and complex legacy codebases. Clare and Erik share behind-the-scenes insights on how Kiro was built using Kiro itself, what’s coming next for the platform, and how developers can join the early-access community to help shape its future.

    🔗 Links & Resources:
    • 🌐 Kiro Official Site
    • 🧠 AWS Developer Advocate Team


    Become a supporter of this podcast: https://www.spreaker.com/podcast/javascript-jabber--6102064/support.
    Exibir mais Exibir menos
    44 minutos
Ainda não há avaliações