Search results

Alvin Ashcraft 🐿️ @alvinashcraft@hachyderm.io
Public

🚀React Native Windows v0.81 is here!!

devblogs.microsoft.com/react-n

🚀React Native Windows v0.81 is here!! | React Native

App developers require performance, stability, and cross-platform consistency such as fast startups, smooth UI, and seamless code sharing across Windows, Android, and iOS as these factors directly impact user experience, development efficiency, and business outcomes. High performance and stability ensure apps run reliably and respond quickly, leading to satisfied users and fewer support issues. Cross-platform […]

devblogs.microsoft.com · React Native

0
0
0
Sophia Brandt :vim: @sbr@hachyderm.io
Public

Heya folks! 👋

My name is Sophia, I work as a software developer in Germany.

This is my account, so I'll focus on , command-line tools, , front-end .
Other accounts 👉 please see my bio.

I love to try out different programming languages like , , , , , etc.

In my free time I enjoy reading, playing pen & paper RPGs or learning new languages like .

0
0
0
Austin Zani :BlobhajReach: @zaniad@mastodon.social
Public

I never did a Mastodon so here we go.

My name is Austin and I love my family, Sports, Music, and Tech.

I am a software developer at . At my job currently I work primarily with , , and . I know some and hope to publish an app in the AppStore in 2023. I am going to try to here.

I am a fan of the , , , , , , and .

0
0
0
:g_awkward: Shye :autism:🇬🇧:he_him_p: @shye@deadrobots.social
Public

I'm thinking of learning React/NextJS/Typescript. Is this a good idea?
I know HTML and CSS like the back of my hand, and half know Javascript (and PHP). I've been building websites on and off for 25 years.
A year ago I started putting thought and research into creating my own CMS for the flexibility (and having a hobby project).
I started learning Laravel, mostly because 10 years ago I had wanted to learn it, though I never got around to it. Plus I figured I would be able to pick it up quite easily, already having an understanding of how PHP works.
But over this last year, I've not been able to engage with learning it, wondering if there is any point learning something (getting on a bit now) that still leads to a clunky PHP app that needs constant maintainence.
I figure instead, I could use NextJs for the frontend, and a headless flexible open source data management / cms for the backend.
I would think it would take me at least a year of learning and practice to become adequate enough. So, I'm trying to decide if this is where I should put my energy - or if there is something else I should be putting focus on, if I'm going to start properly learning something new to me.

0
1
0
Soso @sgued@pouet.chapril.org
Public

sgued.fr/blog/react-rce/

Lessons learned from React's RCE

In the last few weeks, 3 vulnerabilities where found in the React web application framework. The first one, a server-side remote code execution (CVE-2025-55182) is the worst a vulnerability can get for a web framework. The two other ones are a denial of service (CVE-2025-67779), and a source code exposure (CVE-2025-55183), much less dangerous, yet still impactful. There are already a lot of writeups published talking about how these vulnerabilities happened, but I didn't see much about being said about preventative measures that would have limited the damage. In this entry, I'll explore potential mitigations that could have been applied ahead of time to prevent these vulnerabilities or at least limit their severity.

sgued.fr · SGued

Link author: Soso@sgued@pouet.chapril.org

0
0
0
Asbjørn Ulsberg @bitbear@icosahedron.website
Public

The untold history of web development:

1990: HTML invented.
1994: CSS invented to fix HTML.
1995: JS invented to fix HTML/CSS.
2006: jQuery invented to fix JS.
2010: AngularJS invented to fix jQuery.
2013: React invented to fix AngularJS.
2014: Vue invented to fix React & Angular.
2016: Angular 2 invented to fix AngularJS & React.
2019: Svelte 3 invented to fix React, Angular, Vue.
2019: React hooks invented to fix React.
2020: Vue 3 invented to fix React hooks.
2020: Solid invented to fix React, Angular, Svelte, Vue.
2020: HTMX 1.0 invented to fix React, Angular, Svelte, Vue, Solid.
2021: React suspense invented to fix React, again.
2023: Svelte Runes invented to fix Svelte.
2024: jQuery still used on 75% of websites.

(By twitter.com/fireship_dev)

x.com · X (formerly Twitter)

0
0
0
Konstantin 🔭 @konstantin@hachyderm.io
Public

I will never understand the urge the use a library designed to provide reactive DOM updates as a server framework. Here I am, wasting time parametrising my queries while some are shipping unprotected “eval()” in what looks like a very abstracted gRPC service.

github.com/vercel/next.js/secu

A vulnerability affects certain React packages<sup>1</sup> for versions 19.0.0, 19.1.0, 19.1.1, and 19.2.0 and frameworks that use the affected packages, including Next.js 15.x and 16.x using the A...

RCE in React Server Components

A vulnerability affects certain React packages<sup>1</sup> for versions 19.0.0, 19.1.0, 19.1.1, and 19.2.0 and frameworks that use the affected packages, including Next.js 15.x and 16.x using the A...

github.com · GitHub

0
0
0
Osumi Akari @oageo@c.osumiakari.jp
Public

Reactのサーバーコンポーネント(RSC)に脆弱性(CVE-2025-55182)が発見されたらしいので記事を書きました。

(高く見積もられがちではありますが)CVSS10と極めて危険ですので、速やかなアップデートが必要となります。
19.0.019.1.019.1.119.2.0の4バージョンに影響があるとされていますので、確認を行うことをおすすめします。

また、Next.js等のReactに依存しているフレームワークにも影響があります。
Akamaiによればこの脆弱性による攻撃はまだ確認されていないようですが、いつこの脆弱性をついた攻撃が始まるかは不明です。早めの対策をおすすめします。

ReactにCVSS10の脆弱性、サーバーサイドでのデシリアライズに欠陥が存在し攻撃者はHTTPリクエストのみで任意のコードを実行可能 - osumiakari.jp
www.osumiakari.jp/articles/20251204-react2shell-cvss10/

ReactにCVSS10の脆弱性、サーバーサイドでのデシリアライズに欠陥が存在し攻撃者はHTTPリクエストのみで任意のコードを実行可能

Next.jsにも影響が及ぶ、修正版が既に提供済みであるため速やかなアップデートを

www.osumiakari.jp · Osumi Akari.jp

Link author: Osumi Akari@oageo@c.osumiakari.jp

0
0
0
Osumi Akari @oageo@c.osumiakari.jp
Public

Reactのサーバーコンポーネント(RSC)に脆弱性(CVE-2025-55182)が発見されたらしいので記事を書きました。

(高く見積もられがちではありますが)CVSS10と極めて危険ですので、速やかなアップデートが必要となります。
19.0.019.1.019.1.119.2.0の4バージョンに影響があるとされていますので、確認を行うことをおすすめします。

また、Next.js等のReactに依存しているフレームワークにも影響があります。
Akamaiによればこの脆弱性による攻撃はまだ確認されていないようですが、いつこの脆弱性をついた攻撃が始まるかは不明です。早めの対策をおすすめします。

ReactにCVSS10の脆弱性、サーバーサイドでのデシリアライズに欠陥が存在し攻撃者はHTTPリクエストのみで任意のコードを実行可能 - osumiakari.jp
www.osumiakari.jp/articles/20251204-react2shell-cvss10/

ReactにCVSS10の脆弱性、サーバーサイドでのデシリアライズに欠陥が存在し攻撃者はHTTPリクエストのみで任意のコードを実行可能

Next.jsにも影響が及ぶ、修正版が既に提供済みであるため速やかなアップデートを

www.osumiakari.jp · Osumi Akari.jp

Link author: Osumi Akari@oageo@c.osumiakari.jp

0
0
0
0
0
0
sergio_101 @sergio_101@social.sixdegreesofohio.com
Public

I finally wrote and deployed my first app this week.

I have played with and for the past few decades, but I haven’t dug hard into django as every app i have worked on or overseen would not benefit much from the admin interface.

I am the only one working on this app, and it's for me only, and I didn't care if the admin interface adhered to a very specific design spec. In fact, i am the only one wjho will probably ever see the admin interface.

More attached…

0
0
0
0
0
0
AmyFou 🕊️ @amyfou@lingo.lol
Public

#introduction

I am a (non-tenure track, uni) interested in every single thing about , esp ones, & Side gig in ( lol). I love and will ask you too many questions about your etc . Proud fan. Love 👋

0
0
0
sergio_101 @sergio_101@social.sixdegreesofohio.com
Public

I have been using web frameworks for decades, but have not had the opportunity to use . I am working on a small personal project, with one dev, me! I picked Django for the admin interface. But had trouble getting through the tutorials because they were huge.

I found a perfect tutorial for someone in my headspace.

Thanks, @ehmatthesEric Matthes for a SUPER useful tutorial. I have gone half way through, and this is perfect. More detail in the responses in this toot.

link: mostlypython.com/django-from-f

Django from first principles

Most Django tutorials and resources start by running two commands: django-admin startproject, followed by manage.py startapp. This is a reasonable way for experienced Django developers to start new projects, because it sets up an overall structure that makes sense for most web apps. This approach is not necessarily best,

www.mostlypython.com · Mostly Python

0
0
0
Keith J Grant @keithjgrant@front-end.social
Public

😅 So I did not fully appreciate the power of hashtags on this place when I wrote my , so I'm giving it a second go.

• I'm a front-end web developer in Spokane, WA. I work for Red Hat on Ansible Controller using , , . I don't write so much here as I have at previous gigs, but, I'm okay at that too…

• I'm the author of CSS in Depth 📘 manning.com/books/css-in-depth

• I enjoy mixing and have my recipes available in a : sidecar.us

The cover for CSS in Depth

CSS in Depth - Keith J. Grant

Master advanced CSS techniques and best practices to create stunning, modern web designs.

www.manning.com · Manning Publications

0
0
0
0
0
0
0
0
0
남정현 @rkttu@hackers.pub
Public

TypeScript와 React에 File-based App 서버를 부착하여 단순하지만 완결성있는 풀 스택 개발 환경을 구축할 수 있습니다. 여기에 AGENTS.md 파일이나 mcp.json을 추가한다면 풀 스택 프로젝트에 바이브코딩까지 얹을 수 있겠습니다.

https://forum.dotnetdev.kr/t/typescript-react-file-based-app-c-api/13812

AGENTS.md

AGENTS.md is a simple, open format for guiding coding agents. Think of it as a README for agents.

agents.md

2
0
0
PloneConf 2025 @ploneconf@plone.social
Public

👋 Heading to Plone Conference 2025 in Jyväskylä this October?

🍂 October can be crisp and colorful in Finland! 🇫🇮

🧥 Pack a jacket, gloves & comfortable shoes – mornings & evenings can be chilly (or not, it will be a surprise!)

☕ Inside it’s cozy, outside stay comfy & enjoy the autumn colors (like pitch black 😜 )!

🎟️ To get your tickets at: 2025.ploneconf.org/tickets

0
0
0
PloneConf 2025 @ploneconf@plone.social
Public

🚀 The Plone Conference 2025 in Jyväskylä on October 13–19, 2025 – hosted by the University of Jyväskylä, Finland 🇫🇮

👉 A week full of learning, networking & inspiration

👉 International and Finnish IT professionals from experienced to new

👉 Talks & workshops on Plone, Python, web development & open source innovation 🤯

👉 Special one-day event: PyCon Finland on Oct 17, dedicated to Python 🐍

🎟️ Tickets: 2025.ploneconf.org/tickets

0
0
0
PloneConf 2025 @ploneconf@plone.social
Public

PyCon Finland 2025 Schedule Published! 🎉
Join us on Friday, October 17th in Jyväskylä for a full day of Python talks and networking.

Featured talks include:
- Keynote: "Muuttolintujen Kevät - Automatic Bird Sound Classifier" by Patrik Lauha
- "Building RAG AI Applications with MariaDB Vector and Python" by Robert Silén
- "Using Python with Satellites, Lessons from a Staff Engineer" by Jeremy Mayeres

2025.ploneconf.org/schedule/py

0
0
0

React - useCallback & useMemo Misuse

Shahar Amir @shaharamir@hackers.pub

The `useCallback` and `useMemo` hooks in React are designed to optimize performance by memoizing functions and values, but using them indiscriminately can lead to unnecessary overhead. These hooks are beneficial when dealing with expensive calculations or when passing stable references to deeply nested child components. However, for simple operations like basic arithmetic or simple function declarations, the memoization provided by these hooks adds complexity without any performance gain. Overusing `useMemo` and `useCallback` introduces extra CPU cycles and can confuse developers, making the code harder to maintain. It's more efficient to apply these hooks selectively, focusing only on the parts of your application where they provide a tangible benefit, ensuring that React remains fast and your code stays clean.

Read more →
5
0
0