The avforums podcast brings you the latest tech, movie and gaming news, plus special features, interviews and show reports from the world of audio visual home entertainment
…
continue reading
Erik Onarheim and Kamran Ayub에서 제공하는 콘텐츠입니다. 에피소드, 그래픽, 팟캐스트 설명을 포함한 모든 팟캐스트 콘텐츠는 Erik Onarheim and Kamran Ayub 또는 해당 팟캐스트 플랫폼 파트너가 직접 업로드하고 제공합니다. 누군가가 귀하의 허락 없이 귀하의 저작물을 사용하고 있다고 생각되는 경우 여기에 설명된 절차를 따르실 수 있습니다 https://ko.player.fm/legal.
TypeScript.fm - The Friendly Show for TypeScript Developers와 비슷한 콘텐츠
Windows Weekly is about more than Windows. Veteran Microsoft insiders Paul Thurrott and Richard Campbell join Leo for a deep dive into the most valuable company in the world. From consumer to enterprise, AI to Xbox, Windows Weekly is the only Microsoft podcast you'll ever need. Records live every Wednesday at 2:00pm Eastern / 11:00am Pacific / 19:00 UTC.
…
continue reading
Tech News Briefing is your guide to what people in tech are talking about. Every weekday, we’ll bring you breaking tech news and scoops from the pros at the Wall Street Journal, insight into new innovations and policy debates, tips from our personal tech team, and exclusive interviews with movers and shakers in the industry.
…
continue reading
Technical interviews about software topics.
…
continue reading
Risky Business is a weekly information security podcast featuring news and in-depth interviews with industry luminaries. Launched in February 2007, Risky Business is a must-listen digest for information security pros. With a running time of approximately 50-60 minutes, Risky Business is pacy; a security podcast without the waffle.
…
continue reading
Industry expert Mikah Sargent, brings you interviews from tech journalists who make or break the top stories of the week. Get the freshest perspective and in depth insight into the fast-paced world of technology from Tech News Weekly. Records every Thursday at 2:00pm Eastern / 11:00am Pacific / 19:00 UTC.
…
continue reading
Android Backstage, a podcast by and for Android developers. Hosted by developers from the Android engineering team, this show covers topics of interest to Android programmers, with in-depth discussions and interviews with engineers on the Android team at Google. Subscribe to Android Developers YouTube → https://goo.gle/AndroidDevs
…
continue reading
Best Business Podcast (Gold), British Podcast Awards 2023 How do you build a fully electric motorcycle with no compromises on performance? How can we truly experience what the virtual world feels like? What does it take to design the first commercially available flying car? And how do you build a lightsaber? These are some of the questions this podcast answers as we share the moments where digital transforms physical, and meet the brilliant minds behind some of the most innovative products a ...
…
continue reading
Join Larry Mantle weekdays for lively and in-depth discussions of Los Angeles and Southern California news, politics, science, entertainment, the arts and more. More AirTalk at www.kpcc.org.
…
continue reading
Feel brighter every day with our 20-minute pop-biz news podcast. The 3 business stories you need, with fresh takes you can pretend you came up with — Pairs perfectly with your morning oatmeal ritual. Hosted by Jack Crivici-Kramer & Nick Martell. Formerly known as “Snacks Daily”, Nick and Jack continue their podcast independent from Robinhood.
…
continue reading
Player FM -팟 캐스트 앱
Player FM 앱으로 오프라인으로 전환하세요!
Player FM 앱으로 오프라인으로 전환하세요!
))
Anthropic's Bet on Bun, React2Shell, Vite 8 Beta, and Elves Spam npm | News | Ep 47
Manage episode 523424619 series 3642378
Erik Onarheim and Kamran Ayub에서 제공하는 콘텐츠입니다. 에피소드, 그래픽, 팟캐스트 설명을 포함한 모든 팟캐스트 콘텐츠는 Erik Onarheim and Kamran Ayub 또는 해당 팟캐스트 플랫폼 파트너가 직접 업로드하고 제공합니다. 누군가가 귀하의 허락 없이 귀하의 저작물을 사용하고 있다고 생각되는 경우 여기에 설명된 절차를 따르실 수 있습니다 https://ko.player.fm/legal.
News for the week of December 1, 2025: Anthrophic acquired Bun, React2Shell is pretty darn bad (and that's not all), plus "elf spam" packages on npm. From the community: tRPC vs. oRPC, demystifying TSConfig, and hash-slash (#/) project-relative import support in Node.
MCP in Practice Course
Watch now. Kamran shows you how to build a practical enterprise-grade MCP server with .NET, C#, and OAuth, hosted remotely on Azure. (Requires subscription)
Sponsored by Excalibur.js
Excalibur.js is the free and open source friendly TypeScript 2D game engine for the web. Learn to make web games with TypeScript or JavaScript! Excalibur comes out-of-the-box with everything you need, like physics, sprites, animations, sound effects, and first-party plugins for popular 2D gamedev tools.
- Homepage and Docs: https://excaliburjs.com
- Make Your First Game in 10 Minutes
- Join the Discord: https://discord.gg/9UemP985Uy
Chapters
- (00:00) - Welcome to the Show
- (04:09) - Kamran's MCP in Practice Course is Now Live on Pluralsight
- (08:35) - News: Anthropic Acquires the Bun JavaScript Runtime
- (13:41) - News: Vite 8 Beta with Rolldown
- (15:40) - News: tsdown 0.17 Release
- (17:10) - News: oxlint Brings Type-aware Linting in Alpha
- (17:50) - News: oxfmt Alpha is 30X Faster Than Prettier
- (18:45) - News: Gird Your Loins for Upcoming Node.js Security Releases
- (19:38) - News: React2Shell Remote Code Execution Exploit in RSC
- (26:55) - News: React2Shell Causes Yet Another Cloudflare Outage
- (28:16) - News: Santa's Elves Flood npm With Naughty "Gifts"
- (30:10) - News: SVG Clickjacking Exploit Using Filters
- (32:05) - Community Highlight: tRPC vs. oRPC for Your Next TypeScript Project?
- (33:15) - Community Highlight: Testing Vue Composables in TypeScript by John Franey
- (34:03) - Community Highlight: Formisch for React Quietly Released by Fabian Hillar
- (34:53) - Community Highlight: Building a Dinosaur Runner Game in Deno
- (36:19) - Community Highlight: Node Will Soon Support Project Root Import Paths
- (37:51) - Community Highlight: TSConfig Grimoire by Bjorn Lu
- (39:01) - Community Highlight: How is ESM vs. CJS Going? by Titus
- (40:45) - Community Highlight: Next Astro Release Supports Vite Environments API
- (41:18) - Bleet of the Week by Joke Bailey
- (42:10) - Cool Read: Godot Shaders Bible by Fabrizio Espendola
- (42:56) - Cool Watch: Cancellation Tokens by Stephen Toub
- (43:44) - Cool Game: Classic Game Zork is Released as Open Source
- (44:16) - Cool Tool: Helion, a Modern DOOM Engine
- (45:18) - Cool Watch: Modern .NET Serialization Attacks by Hampton Paulk
- (47:25) - Cool Reads: Architecture for Flow and Domain-driven Transformation
- (48:40) - The Minnesota Long Goodbye
News
- Bun: Bun is joining Anthropic
- ViteLand: Vite 8 Beta: The Rolldown-powered Vite
- ViteLand: Announcing Oxlint Type-Aware Linting Alpha
- ViteLand: The first Oxfmt alpha was released
- ViteLand: tsdown got a new release
- Node.js PSA: Prepare for Monday, December 15, 2025 Security Releases
- Cloudflare: Cloudflare outage on December 5, 2025
- Security: npm Sees Surge of Auto-Generated “elf-stats” Packages Published Every Two Minutes via (Sarah Gooding)
- Security: SVG Filters - Clickjacking 2.0 Ʊ lyra's epic blog
React2Shell Resources
- React2Shell Exploit: Critical Security Vulnerability in React Server Components
- Deep Dive: https://react2shell.com/
- Next.js: Security Advisory: CVE-2025-66478
- Deno Blog: React Server Functions / Next.js Vulnerability: Deno Deploy users protected
- Explainer: this is the worst case scenario by LowLevelEd
From the Community
- Temitope Oyedele: tRPC vs oRPC: Which is better for your next TypeScript project, and why?
- John Franey: How to test a Vue composable with TypeScript · JohnFraney.ca
- Fabian Hiller: Formisch for React just released (quietly) – the form library that powers SolidJS
- Deno: Build a browser game in Deno
- Hybrist: Node support for #/ wildcard (via Rob Palmer)
- Bjorn Lu: TSConfig Grimoire (via Rob Palmer)
- Wooorm: How is ESM from Common going?
- Astro: Next release of Astro will support Vite Environment API
Cool Links
- Cool Read: Godot Shaders Bible and Ghastly in Desmos by Fabrizio Espindola
- Cool Watch: Cancellation Tokens with Stephen Toub
- Cool Game: Preserving code that shaped generations: Zork I, II, and III go Open Source
- Cool Tool: Helion Engine, a modern DOOM engine in C#
- Cool Watch: Modern .NET Serialization Attacks by Hampton Paulk
- Cool Reads: Architecture for Flow and Domain-driven Transformation
Music
Seahorse Dreams by Kubbi (Spotify)
57 에피소드
공유
Manage episode 523424619 series 3642378
Erik Onarheim and Kamran Ayub에서 제공하는 콘텐츠입니다. 에피소드, 그래픽, 팟캐스트 설명을 포함한 모든 팟캐스트 콘텐츠는 Erik Onarheim and Kamran Ayub 또는 해당 팟캐스트 플랫폼 파트너가 직접 업로드하고 제공합니다. 누군가가 귀하의 허락 없이 귀하의 저작물을 사용하고 있다고 생각되는 경우 여기에 설명된 절차를 따르실 수 있습니다 https://ko.player.fm/legal.
News for the week of December 1, 2025: Anthrophic acquired Bun, React2Shell is pretty darn bad (and that's not all), plus "elf spam" packages on npm. From the community: tRPC vs. oRPC, demystifying TSConfig, and hash-slash (#/) project-relative import support in Node.
MCP in Practice Course
Watch now. Kamran shows you how to build a practical enterprise-grade MCP server with .NET, C#, and OAuth, hosted remotely on Azure. (Requires subscription)
Sponsored by Excalibur.js
Excalibur.js is the free and open source friendly TypeScript 2D game engine for the web. Learn to make web games with TypeScript or JavaScript! Excalibur comes out-of-the-box with everything you need, like physics, sprites, animations, sound effects, and first-party plugins for popular 2D gamedev tools.
- Homepage and Docs: https://excaliburjs.com
- Make Your First Game in 10 Minutes
- Join the Discord: https://discord.gg/9UemP985Uy
Chapters
- (00:00) - Welcome to the Show
- (04:09) - Kamran's MCP in Practice Course is Now Live on Pluralsight
- (08:35) - News: Anthropic Acquires the Bun JavaScript Runtime
- (13:41) - News: Vite 8 Beta with Rolldown
- (15:40) - News: tsdown 0.17 Release
- (17:10) - News: oxlint Brings Type-aware Linting in Alpha
- (17:50) - News: oxfmt Alpha is 30X Faster Than Prettier
- (18:45) - News: Gird Your Loins for Upcoming Node.js Security Releases
- (19:38) - News: React2Shell Remote Code Execution Exploit in RSC
- (26:55) - News: React2Shell Causes Yet Another Cloudflare Outage
- (28:16) - News: Santa's Elves Flood npm With Naughty "Gifts"
- (30:10) - News: SVG Clickjacking Exploit Using Filters
- (32:05) - Community Highlight: tRPC vs. oRPC for Your Next TypeScript Project?
- (33:15) - Community Highlight: Testing Vue Composables in TypeScript by John Franey
- (34:03) - Community Highlight: Formisch for React Quietly Released by Fabian Hillar
- (34:53) - Community Highlight: Building a Dinosaur Runner Game in Deno
- (36:19) - Community Highlight: Node Will Soon Support Project Root Import Paths
- (37:51) - Community Highlight: TSConfig Grimoire by Bjorn Lu
- (39:01) - Community Highlight: How is ESM vs. CJS Going? by Titus
- (40:45) - Community Highlight: Next Astro Release Supports Vite Environments API
- (41:18) - Bleet of the Week by Joke Bailey
- (42:10) - Cool Read: Godot Shaders Bible by Fabrizio Espendola
- (42:56) - Cool Watch: Cancellation Tokens by Stephen Toub
- (43:44) - Cool Game: Classic Game Zork is Released as Open Source
- (44:16) - Cool Tool: Helion, a Modern DOOM Engine
- (45:18) - Cool Watch: Modern .NET Serialization Attacks by Hampton Paulk
- (47:25) - Cool Reads: Architecture for Flow and Domain-driven Transformation
- (48:40) - The Minnesota Long Goodbye
News
- Bun: Bun is joining Anthropic
- ViteLand: Vite 8 Beta: The Rolldown-powered Vite
- ViteLand: Announcing Oxlint Type-Aware Linting Alpha
- ViteLand: The first Oxfmt alpha was released
- ViteLand: tsdown got a new release
- Node.js PSA: Prepare for Monday, December 15, 2025 Security Releases
- Cloudflare: Cloudflare outage on December 5, 2025
- Security: npm Sees Surge of Auto-Generated “elf-stats” Packages Published Every Two Minutes via (Sarah Gooding)
- Security: SVG Filters - Clickjacking 2.0 Ʊ lyra's epic blog
React2Shell Resources
- React2Shell Exploit: Critical Security Vulnerability in React Server Components
- Deep Dive: https://react2shell.com/
- Next.js: Security Advisory: CVE-2025-66478
- Deno Blog: React Server Functions / Next.js Vulnerability: Deno Deploy users protected
- Explainer: this is the worst case scenario by LowLevelEd
From the Community
- Temitope Oyedele: tRPC vs oRPC: Which is better for your next TypeScript project, and why?
- John Franey: How to test a Vue composable with TypeScript · JohnFraney.ca
- Fabian Hiller: Formisch for React just released (quietly) – the form library that powers SolidJS
- Deno: Build a browser game in Deno
- Hybrist: Node support for #/ wildcard (via Rob Palmer)
- Bjorn Lu: TSConfig Grimoire (via Rob Palmer)
- Wooorm: How is ESM from Common going?
- Astro: Next release of Astro will support Vite Environment API
Cool Links
- Cool Read: Godot Shaders Bible and Ghastly in Desmos by Fabrizio Espindola
- Cool Watch: Cancellation Tokens with Stephen Toub
- Cool Game: Preserving code that shaped generations: Zork I, II, and III go Open Source
- Cool Tool: Helion Engine, a modern DOOM engine in C#
- Cool Watch: Modern .NET Serialization Attacks by Hampton Paulk
- Cool Reads: Architecture for Flow and Domain-driven Transformation
Music
Seahorse Dreams by Kubbi (Spotify)
57 에피소드
모든 에피소드
×
플레이어 FM에 오신것을 환영합니다!
플레이어 FM은 웹에서 고품질 팟캐스트를 검색하여 지금 바로 즐길 수 있도록 합니다. 최고의 팟캐스트 앱이며 Android, iPhone 및 웹에서도 작동합니다. 장치 간 구독 동기화를 위해 가입하세요.
TypeScript.fm - The Friendly Show for TypeScript Developers와 비슷한 콘텐츠
The avforums podcast brings you the latest tech, movie and gaming news, plus special features, interviews and show reports from the world of audio visual home entertainment
…
continue reading
Windows Weekly is about more than Windows. Veteran Microsoft insiders Paul Thurrott and Richard Campbell join Leo for a deep dive into the most valuable company in the world. From consumer to enterprise, AI to Xbox, Windows Weekly is the only Microsoft podcast you'll ever need. Records live every Wednesday at 2:00pm Eastern / 11:00am Pacific / 19:00 UTC.
…
continue reading
Tech News Briefing is your guide to what people in tech are talking about. Every weekday, we’ll bring you breaking tech news and scoops from the pros at the Wall Street Journal, insight into new innovations and policy debates, tips from our personal tech team, and exclusive interviews with movers and shakers in the industry.
…
continue reading
Technical interviews about software topics.
…
continue reading
Risky Business is a weekly information security podcast featuring news and in-depth interviews with industry luminaries. Launched in February 2007, Risky Business is a must-listen digest for information security pros. With a running time of approximately 50-60 minutes, Risky Business is pacy; a security podcast without the waffle.
…
continue reading
Industry expert Mikah Sargent, brings you interviews from tech journalists who make or break the top stories of the week. Get the freshest perspective and in depth insight into the fast-paced world of technology from Tech News Weekly. Records every Thursday at 2:00pm Eastern / 11:00am Pacific / 19:00 UTC.
…
continue reading
Android Backstage, a podcast by and for Android developers. Hosted by developers from the Android engineering team, this show covers topics of interest to Android programmers, with in-depth discussions and interviews with engineers on the Android team at Google. Subscribe to Android Developers YouTube → https://goo.gle/AndroidDevs
…
continue reading
Best Business Podcast (Gold), British Podcast Awards 2023 How do you build a fully electric motorcycle with no compromises on performance? How can we truly experience what the virtual world feels like? What does it take to design the first commercially available flying car? And how do you build a lightsaber? These are some of the questions this podcast answers as we share the moments where digital transforms physical, and meet the brilliant minds behind some of the most innovative products a ...
…
continue reading
Join Larry Mantle weekdays for lively and in-depth discussions of Los Angeles and Southern California news, politics, science, entertainment, the arts and more. More AirTalk at www.kpcc.org.
…
continue reading
Feel brighter every day with our 20-minute pop-biz news podcast. The 3 business stories you need, with fresh takes you can pretend you came up with — Pairs perfectly with your morning oatmeal ritual. Hosted by Jack Crivici-Kramer & Nick Martell. Formerly known as “Snacks Daily”, Nick and Jack continue their podcast independent from Robinhood.
…
continue reading
Player FM -팟 캐스트 앱
Player FM 앱으로 오프라인으로 전환하세요!
Player FM 앱으로 오프라인으로 전환하세요!
