¡Ya disponible! Investigación de Telegram 2025 — los principales insights del año 
Web Dev PHP JS Design UI UX
Ir al canal en Telegram
@wwwdev #web #python #rust #go #cli #vuejs #laravel #php #js #css #nodejs We focus on sharing great links for Web Developers.
Mostrar más1 766
Suscriptores
-624 horas
-57 días
-830 días
Archivo de publicaciones
AWS has a new metadata capability for Amazon Simple Storage Service (S3) that enables users to attach rich, large-scale business context directly to their objects. The annotations feature allows users to store up to 1,000 named annotations per object, each up to 1 MB in size, in flexible formats like JSON, XML, YAML, or plain text. Annotations can be modified or deleted at any time without rewriting objects. The feature is available now in all AWS regions.
📰 WSL 3 will finally let Linux apps use your GPU and NPU without the performance tax
You probably can't run it yet, but it looks quite promising.
🔗 Source: https://www.xda-developers.com/wsl-3-will-finally-let-linux-apps-use-your-gpu-without-the-performance-tax/
Google will pay SpaceX $920 million per month from October 2026 to June 2029 to rent data center capacity. Google has the right to cancel the agreement in October if SpaceX doesn't provide the promised 110,000 Nvidia chips. Either party can cancel the agreement starting next year with 90 days' notice. This is the second major deal SpaceX has made in recent months to rent out compute capacity to a competitor. SpaceX is expected to go public on June 12 in a public offering that values the company at $1.77 trillion. https://www.wsj.com/tech/google-to-pay-spacex-nearly-1-billion-a-month-in-cloud-computing-deal-788d8aaa?st=fnHdHA
We Are (Still) Living in the Long Boring
https://freddiedeboer.substack.com/p/we-are-still-living-in-the-long-boring
Repost from Mundo JS
https://rexa-developer.github.io/tiks/
O tiks é uma biblioteca web que gera sons de interface em tempo real via Web Audio API, sem depender de arquivos de áudio, permitindo adicionar feedback sonoro leve e consistente a aplicações.
Oferece API simples, temas prontos e customizáveis, controle de volume, integração com frameworks e suporte a recursos modernos do navegador, focando em enriquecer a experiência sem aumentar o bundle.
Repost from Mundo JS
https://socket.dev/blog/attackers-hunting-high-impact-nodejs-maintainers
Atacantes (ligados ao grupo UNC1069, com conexão a atores da Coreia do Norte) estão realizando campanhas sofisticadas de social engineering contra maintainers de alto impacto do ecossistema Node.js/npm.
Eles usam personas falsas (como “Openfort”), constroem rapport por semanas via LinkedIn e Slack, e marcam videochamadas falsas (imitando Zoom/Teams) que levam à instalação de malware (RATs como WAVESHAPER, HYPERCALL etc.). O objetivo é comprometer a máquina do maintainer para roubar tokens npm e ganhar acesso de escrita em pacotes críticos.
Várias vítimas confirmadas ou alvo: Axios (já comprometido), Lodash, dotenv, Fastify, Pino, Undici, maintainers do Express, Mocha e até membros do Node.js TSC. Muitos desses pacotes têm centenas de milhões de downloads por semana (bilhões por mês).
2FA e até OIDC não protegem, pois o malware captura o estado após autenticação. A ameaça é profissional, persistente e em evolução.
