View profile

Fastify v4.3.0, Pino v8.3.0, Undici v5.8.0 and other Adventures in Nodeland - Issue #69

Matteo Collina
Matteo Collina
Hey Everyone! This week saw the release of Fastify v4.3.0, pino v8.3.0 (and v8.3.1), and a security release of Undici v5.8.0 for a few important security bugs. Go update!

I love receiving messages that show the impact that technologies I developed had across the globe. This last one was no exception:
Hi! I’ve been using Fastify since I started almost 4 years ago learning to program again. It’s powered every project I’ve ever made. Just wanted to express gratitude for its existence.
Matteo Collina
Are any of you using npm workspaces? How do you bump the version of the dependencies between the various internal packages.

packages/b depends on packages/a (v0.1.0)

If I release packages/a v0.2.0, I want packages/b dependency entry updated too.
If you like Adventures in Nodeland and would like to support my Open Source activities, consider sponsoring me on GitHub: https://github.com/sponsors/mcollina/
Fastify
Pino
  • sonic-boom v3.1.0 adds support for a fsync option to automatically flush to disk after every write. This is needed if you log to systemd and want your logs not to be buffered.
  • pino v8.3.0 ensures that if process.stdout is passed as a destination, that object is used and it’s not automatically converted to sonic-boom. v8.3.1 fixes a regression introduced in v8.3.0 when running pino within worker threads, such as inside vitest.
  • pino-socket v5.1.0 adds a backoff strategy before a reconnection and a queue to avoid losing packets. Check it out!
Node.js
I made a mistake while preparing the CVE details page for the July Security release and I typed v16.20.0 instead of v16.16.0. We are working to rectify that in the registries:
Release v5.8.0 · nodejs/undici · GitHub
News
How to use Fastify hooks? They are one of the most powerful features of Fastify. Read more on this article from Simon:
Use Fastify hooks to set headers on every response
In the last few years, Paolo Insogna and myself worked to make sure Node.js was robust against Slowloris attacks. Finally in Node v18 we are finally safe:
Did you enjoy this issue? Yes No
Matteo Collina
Matteo Collina @matteocollina

I write about my journey as a core contributor of Node.js, as an author and a maintainer of many modules - including Fastify and Pino. In addition, I speak at conferences, and I will add links to all my talks in case you missed one.

In order to unsubscribe, click here.
If you were forwarded this newsletter and you like it, you can subscribe here.
Created with Revue by Twitter.