OffSequence7m ago
Node.js WebCrypto in v22.22.3, v24.16.0, v26.3.0 is affected by CVE-2026-48933 (HIGH). Integer overflow in subtle.encrypt() can crash processes with inputs β‰₯ 2 GiB, causing DoS. Avoid large inputs while awaiting a fix. πŸ” https://radar.offseq.com/threat/cve-2026-48933-cwe-190-integer-overflow-in-nodejs--5c33db78fed81dbe #OffSeq #Nodejs #Vuln
OffSequence1h ago
CVE-2026-48618: Node.js HIGH severity vuln in TLS hostname handling (Unicode dot normalization flaw). Affects 22.22.3, 24.16.0, 26.3.0. No patch yet β€” restrict use & monitor vendor advisory. https://radar.offseq.com/threat/cve-2026-48618-cwe-176-improper-handling-of-unicod-6526a729870e7650 #OffSeq #NodeJS #Vulnerability #TLS #Security
codeinabox8h ago

Why Drizzle ORM couldn't publish new releases on NPM for a month

https://programming.dev/post/52559773

Why Drizzle ORM couldn't publish new releases on NPM for a month - programming.dev

Lemmy

Stewart X Addison9h ago

#NodeJS NPM 12 includes additional restrictions for security/supply chain integrity reasons. This can have a significant impact on certain use cases which rely on postinstall scripts to complete installations.

Here is an example case for the IBM MQ module which covers some of the problems. https://marketaylor.synology.me/?p=1912

There are ongoing discussions in https://github.com/nodejs/Release/issues/1161 as to whether this update should go into Node's existing releases. If you have a view feel free to let it be known there!

New NPM installation policies - Mark Taylor's Blog

Forthcoming changes to npm installation policies will affect how you install the ibmmq Node.js package. This article explains.

Mark Taylor's Blog
mastodon.raddemo.host17h ago

How to Install #Directus on #AlmaLinux #VPS

Here's a step-by-step guide detailing how to install Directus on AlmaLinux VPS.
What is Directus?
Directus is an open-source #headless #CMS and data platform that allows you to manage and interact with your database through a RESTful API or GraphQL API. It provides a modern, ...
Continued πŸ‘‰ https://blog.radwebhosting.com/install-directus-on-almalinux-vps/?utm_source=mastodon&utm_medium=social&utm_campaign=mastodon.raddemo.host #postgresql #contentmanagement #cmsapps #selfhosting #vpsguide #letsencrypt #npm #installguide #selfhosted #opensource #nodejs

codeinabox20h ago

Choose your fighter: benchmarking 5 WebSocket servers for Node.js

https://programming.dev/post/52532225

Choose your fighter: benchmarking 5 WebSocket servers for Node.js - programming.dev

Lemmy

OffSequence22h ago
ljharb shell-quote <=1.8.4 is impacted by CVE-2026-13311 (HIGH). Inefficient parsing can let attackers trigger DoS by blocking the Node.js event loop. Patch to 1.8.5+ now! πŸ›‘οΈ https://radar.offseq.com/threat/cve-2026-13311-cwe-407-inefficient-algorithmic-com-ed9f913ba365deea #OffSeq #InfoSec #NodeJS #CVE202613311
mastodon.raddemo.host1d ago
πŸš€ How to Install and Run Rocket.Chat on #Debian #VPS This article describes how to install and run Rocket.Chat on Debian VPS.
What is Rocket.Chat?
Rocket.Chat is an open-source communication platform designed for team collaboration and messaging, similar to Slack or Microsoft Teams. It offers a flexible, self-hosted alternative for businesses, communities, and developers who want full control ...
Continued πŸ‘‰ https://blog.radwebhosting.com/install-and-run-rocket-chat-on-debian-vps/?utm_source=mastodon&utm_medium=social&utm_campaign=mastodon.raddemo.host #nginx #selfhosting #nodejs #selfhosted #rocketchat #certbot
Node.js Release Watcher1d ago

2026-06-24, Version 26.4.0 (Current), @aduh95

Notable Changes [cde0daabcc] - (SEMVER-MINOR) doc: update blockList stability status to release candidate (alphaleadership) #63050 [b78f5a7537] - (SEMVER-MINOR) fs: support caller-supplied readFile() buffers (Matteo Collina) #63634 [417aacbc36] -...

https://github.com/nodejs/node/releases/tag/v26.4.0

#nodejs #javascript

Release 2026-06-24, Version 26.4.0 (Current), @aduh95 Β· nodejs/node

Notable Changes [cde0daabcc] - (SEMVER-MINOR) doc: update blockList stability status to release candidate (alphaleadership) #63050 [b78f5a7537] - (SEMVER-MINOR) fs: support caller-supplied readFil...

GitHub
mastodon.raddemo.host1d ago

How to Install #PeerTube on #Ubuntu VPS

This article provides an in-depth guide demonstrating how to install PeerTube on Ubuntu VPS.
What is PeerTube?
PeerTube is a decentralized, federated video hosting platform powered by WebTorrent and ActivityPub. It enables users to self-host video services and interact with other PeerTube ...
Continued πŸ‘‰ https://blog.radwebhosting.com/how-to-install-peertube-on-ubuntu-vps/?utm_source=mastodon&utm_medium=social&utm_campaign=mastodon.raddemo.host #vpsguide #videostreaming #fediverse #opensource #selfhosting #selfhosted #decentralized #letsencrypt #installguide #nodejs