Back to News
4 min read

Node.js Digest #24: New Bun and Node.js, Lodash Evolution, Sandbox SDK, Vite+

Node.js Digest #24 by Oleksandr Zinevych

Hello, community! The Avenga team is here with our regular monthly digest of the most interesting news from the world of Node.js and everything related to server-side JavaScript.

A Few More Quick News Items

Node.js v24 is now LTS. You can read about what that means here.

Just a reminder that GitHub has taken on the task of making npm a tiiiny bit more secure. You can review the changes to token generation here.

What's going on with Express 6 and what the future plans are — you can read about it here.

Something to Read

Can you import a module from torrents? If you don't think too hard about why you'd ever need this, it makes for an interesting technical challenge that Evan Hahn tried to solve.

Hugging Face isn't just for AI — it's for Node.js too. Thomas Steiner managed to spin up a Node.js server there and wrote about how he did it in his blog.

Personally, I never quite hit it off with Python. So I'm especially happy when someone switches from Python to Node.js, like the author of this article.

Have you heard of DTrace? If not, now's a good chance to learn about it and see how it can be used, thanks to this article by Tyler Hillery.

Liran Tal explains how to properly use npx.

In his presentation, Ruy Adorno talks about the current state of affairs in Node.js. This should probably go in the "something to watch" category, but there's no video — only slides — so you'll have to read them.

Matteo Collina explains in his blog why noop functions are a good choice for tasks where performance is critical. In 99% of cases, you won't need this level of optimization, but if you ever encounter that 1%, you'll know what to use.

If you're even slightly interested in the topic of AI and AI agents (and who isn't these days — you need to know the face/logo of what's going to replace you, right?), you're probably aware that security is a very pressing issue, just like for the rest of software. Here's a really good article on the topic.

Two articles from Piotr Zarycki worth paying attention to. The first is a historical deep dive into why NaN !== NaN in JavaScript. And the second breaks down how AWS took down half the internet this month.

How to create your own router based on URLPattern.

Matt Smith reflects on async loops and how to write them properly.

Something to Watch

This month I highly recommend checking out the published videos from this year's Nordic.js. Here are some talks worth paying attention to:

Want to contribute to Node.js but don't know how? Rafael Gonzaga will tell you in his stream:

A review of Cursor 2 by Theo Browne:

Updates/Releases

Runtimes: Node.js v25.1, Node.js v22.21.1, Node.js v24.11.0, Bun v1.3.1.

Frameworks: Nest.js v11.1.8, Serverless v4.23.0.

Libraries: pnpm v10.20, Dependency-cruiser v17.2, Pino.js v10.1.

A Few More Interesting Things

We're promised access to Vite+ soon. A new web development tool that does a bit of everything. You can read more here.

Listening to Matteo Collina is always interesting, especially when it's about using Python in Node.js. Unfortunately, registration is required.

Have you heard of Atlas? A quick review from Fireship.

To Stay on Top of the Memes