Security on the web, Node async/await, AR.js (JS Party #1)

In this first episode of JS Party, Mikeal Rogers, Alex Sexton, and Rachel White discuss security on the web and how SHA-1 is broken, Node.js v7.6 and async/await, and this week’s featured project AR.js.

Join the discussion

Changelog++ members support our work, get closer to the metal, and make the ads disappear. Join today!

Sponsors:

• Rollbar – Put errors in their place! npm install --save rollbar for error tracking in your Node.js apps.
• Toptal – Scale your team and hire from the top 3% of developers and designers with Toptal. Email [email protected] for a personal introduction.

Featuring:

• Mikeal Rogers – GitHub, X
• Rachel White – GitHub, X
• Alex Sexton – Website, GitHub, X

Show Notes:

The topics covered in today’s show:

• Security on the web
• SHA-1 is broken
• Node.js v7.6 gets async/await

Featured Project — AR.js.

• Stop using SHA-1
• The effects of SHA-1 on Git
• Multiformats
• Multihash and JS Multihash
• Observatory by Mozilla - a project designed to help developers, system administrators, and security professionals configure their sites safely and securely
• The PCI Security Standards Council - a global forum for the ongoing development, enhancement, storage, dissemination and implementation of security standards for account data protection.
• Node.js v7.6 gets async/await
• Experimenting with async/await
• co - Generator based control flow goodness for nodejs and the browser, using promises, letting you write non-blocking code in a nicer way.
• AR.js

Picks from the panel

Mikeal:

• regl - Declarative stateless rendering for WebG
• bits.coop

Alex:

• Observatory by Mozilla

Rachel:

• How Computers Read Pixels (Drawing on Canvas) — Mariko Kosaka

Something missing or broken? PRs welcome!