Search
145 results for “ulisesgascon”
-
🔖 The latest issue of my #newsletter is live, issue 013.
March recap: 12 CVEs across #undici, #Fastify, #Lodash & #pathtoregexp, a state-actor supply chain attack on #axios, and the #Nodejs security bug bounty paused 🔐
-
🔖 The latest issue of my #newsletter is live, issue 013.
March recap: 12 CVEs across #undici, #Fastify, #Lodash & #pathtoregexp, a state-actor supply chain attack on #axios, and the #Nodejs security bug bounty paused 🔐
-
🔖 The latest issue of my #newsletter is live, issue 013.
March recap: 12 CVEs across #undici, #Fastify, #Lodash & #pathtoregexp, a state-actor supply chain attack on #axios, and the #Nodejs security bug bounty paused 🔐
-
🔖 The latest issue of my #newsletter is live, issue 013.
March recap: 12 CVEs across #undici, #Fastify, #Lodash & #pathtoregexp, a state-actor supply chain attack on #axios, and the #Nodejs security bug bounty paused 🔐
-
🔖 The latest issue of my #newsletter is live, issue 012.
February in numbers: 5 CVEs patched across #Express & #Fastify, 5 releases shipped, and a hard conversation about whether #opensource security triage is still sustainable in the age of AI 🔐
-
🔖 The latest issue of my #newsletter is live, issue 012.
February in numbers: 5 CVEs patched across #Express & #Fastify, 5 releases shipped, and a hard conversation about whether #opensource security triage is still sustainable in the age of AI 🔐
-
🔖 The latest issue of my #newsletter is live, issue 012.
February in numbers: 5 CVEs patched across #Express & #Fastify, 5 releases shipped, and a hard conversation about whether #opensource security triage is still sustainable in the age of AI 🔐
-
🔖 The latest issue of my #newsletter is live, issue 012.
February in numbers: 5 CVEs patched across #Express & #Fastify, 5 releases shipped, and a hard conversation about whether #opensource security triage is still sustainable in the age of AI 🔐
-
🔖 The latest issue of my #newsletter is live, issue 011.
Secure publishing on #npm in 2026, major #Lodash security overhaul, updated security best practices, fresh #Express release backlog & ecosystem insights from talks, CVEs & community work ✨
-
🔖 The latest issue of my #newsletter is live, issue 011.
Secure publishing on #npm in 2026, major #Lodash security overhaul, updated security best practices, fresh #Express release backlog & ecosystem insights from talks, CVEs & community work ✨
-
🔖 The latest issue of my #newsletter is live, issue 011.
Secure publishing on #npm in 2026, major #Lodash security overhaul, updated security best practices, fresh #Express release backlog & ecosystem insights from talks, CVEs & community work ✨
-
🔖 The latest issue of my #newsletter is live, issue 011.
Secure publishing on #npm in 2026, major #Lodash security overhaul, updated security best practices, fresh #Express release backlog & ecosystem insights from talks, CVEs & community work ✨
-
🔖 The latest issue of my #newsletter is out, issue 010.
Stories from reviving #Expressjs & reimagining #Lodash, secure publishing on #npm, why #OSS doesn’t fail because of code, backlog updates & #OpenSSF #Scorecard ✨
-
🔖 The latest issue of my #newsletter is out, issue 010.
Stories from reviving #Expressjs & reimagining #Lodash, secure publishing on #npm, why #OSS doesn’t fail because of code, backlog updates & #OpenSSF #Scorecard ✨
-
🔖 The latest issue of my #newsletter is out, issue 010.
Stories from reviving #Expressjs & reimagining #Lodash, secure publishing on #npm, why #OSS doesn’t fail because of code, backlog updates & #OpenSSF #Scorecard ✨
-
🔖 The latest issue of my #newsletter is out, issue 010.
Stories from reviving #Expressjs & reimagining #Lodash, secure publishing on #npm, why #OSS doesn’t fail because of code, backlog updates & #OpenSSF #Scorecard ✨
-
✍️ El open source no falla por el código.
Falla por problemas de gobernanza, burnout y trabajo invisible.He escrito sobre lo que aprendí trabajando en #Expressjs y #Lodash:
https://blog.ulisesgascon.com/el-open-source-no-falla-por-el-codigo
-
✍️ El open source no falla por el código.
Falla por problemas de gobernanza, burnout y trabajo invisible.He escrito sobre lo que aprendí trabajando en #Expressjs y #Lodash:
https://blog.ulisesgascon.com/el-open-source-no-falla-por-el-codigo
-
✍️ El open source no falla por el código.
Falla por problemas de gobernanza, burnout y trabajo invisible.He escrito sobre lo que aprendí trabajando en #Expressjs y #Lodash:
https://blog.ulisesgascon.com/el-open-source-no-falla-por-el-codigo
-
✍️ El open source no falla por el código.
Falla por problemas de gobernanza, burnout y trabajo invisible.He escrito sobre lo que aprendí trabajando en #Expressjs y #Lodash:
https://blog.ulisesgascon.com/el-open-source-no-falla-por-el-codigo
-
✍️ Open source doesn’t fail because of code.
It fails because of governance gaps, burnout, and invisible work.I wrote down what I learned working on #Expressjs and #Lodash
https://blog.ulisesgascon.com/open-source-doesnt-fail-because-of-code
-
✍️ Open source doesn’t fail because of code.
It fails because of governance gaps, burnout, and invisible work.I wrote down what I learned working on #Expressjs and #Lodash
https://blog.ulisesgascon.com/open-source-doesnt-fail-because-of-code
-
✍️ Open source doesn’t fail because of code.
It fails because of governance gaps, burnout, and invisible work.I wrote down what I learned working on #Expressjs and #Lodash
https://blog.ulisesgascon.com/open-source-doesnt-fail-because-of-code
-
✍️ Open source doesn’t fail because of code.
It fails because of governance gaps, burnout, and invisible work.I wrote down what I learned working on #Expressjs and #Lodash
https://blog.ulisesgascon.com/open-source-doesnt-fail-because-of-code
-
🍕 The slides for my talk “What Comes After Chaos?” are now available
Stories and lessons from reviving #ExpressJS and reimagining #Lodash.
✨ Thanks to #Orbitant for the invitation!
-
🍕 The slides for my talk “What Comes After Chaos?” are now available
Stories and lessons from reviving #ExpressJS and reimagining #Lodash.
✨ Thanks to #Orbitant for the invitation!
-
🍕 The slides for my talk “What Comes After Chaos?” are now available
Stories and lessons from reviving #ExpressJS and reimagining #Lodash.
✨ Thanks to #Orbitant for the invitation!
-
🍕 The slides for my talk “What Comes After Chaos?” are now available
Stories and lessons from reviving #ExpressJS and reimagining #Lodash.
✨ Thanks to #Orbitant for the invitation!
-
🔧 The latest issue of my #newsletter is out, number 009.
It dives into the new #Lodash governance and #security era, the #Yeoman cleanup and reboot, the #Expressjs 6 modernization journey… and much more 🔥
-
🚀 Recent #Lodash updates focus on stronger #CI & #security posture!
✅ CI support expanded (Node 4 → 25)
🌐 New browser tests via #Playwright
📝 Docs now have dedicated CI
🔒 Added #OpenJS #CNA escalation policy
📊 Reporting #OSSF #Scorecard
🧯 New Incident Response Plan (#IRP)
🧠 Threat Model inspired by #Express & #Webpack
More details: https://blog.ulisesgascon.com/the-future-of-lodash