Open source modules, and especially npm, are undoubtedly awesome. However, they also represent an undeniable and massive risk. You’re introducing someone else’s code into your system, often with little or no scrutiny. Each component may have vulnerabilities (~14% of them do!), may be compromised, or even be outright malicious. Multiply that risk by hundreds of dependencies, and you have a recipe for disaster. In this talk we’ll show how you can mitigate this risk without losing productivity. We’ll share more data more about the risk; show how to find & fix known vulnerabilities in these dependencies; discuss how to prioritize the ones worthy of manual inspection & suggest what to monitor in production.
Asynchronous programs can be confusing, hard to follow, difficult to debug and, quite frankly, just down right annoying to write. Mouse & touch events in the browser, XHR requests, node's various event emitters... - what if there was a way to model all of these eventual values in the exact same way? RxJS allows us to do exactly this with the Observable. Boasting a rich set of composable operators, you can begin to unravel your spaghetti code and author declarative transformation pipelines that are simply not possible otherwise.
I would like to do a beginner level talk on Node. As someone who is just starting to learn Node, I want to share my experience and make a walkthrough presentation. I haven't decided whether I will be building a game or not.