#444 — September 17, 2025
Together with
⚛️ React Status
Cloudflare Dashboard Outage Rooted in a useEffect Mistake — The bug wasn’t caused by anything React-specific, but it’s uncommon to hear of the misuse of a React feature cascading into a service being overwhelmed with unnecessary requests resulting in an outage. A good reminder that these things can happen to anyone.
Lianza and Madruga (Cloudflare)
How to Keep package.json Under Control — Looking at an 863 megabyte node_modules folder in Val Town’s React app, Tom got to thinking about ‘dependency hygiene’ and some ways to keep things under control. Good tips and tool recommendations for managing the bulk.
Tom MacWright
AI Code Reviews Meet CLI Coding Agents — CodeRabbit CLI brings instant code reviews directly to your terminal, integrating with Claude Code, Cursor CLI, and other AI agents. While they generate code, CodeRabbit ensures it’s production-ready - catching bugs, security issues, and hallucinations before they hit your codebase.
CodeRabbit sponsor
React Server Components Support Across Frameworks — A comparison of support for aspects of the main RSC related functionality in Next.js, Vite, Waku, Forket, Parcel, React Router, and RedwoodSDK, along with the code used to test each one (which you might find useful as a reference in itself).
Krasimir Tsonev
IN BRIEF:
-
<Activity />is now available in React’s Canary release channel. You can learn more about the feature here. We also expect support to land in the next release of Next.js. -
The pnpm project has published a post about mitigating supply chain attacks and released pnpm 10.16 with a new
minimumReleaseAgesetting to prevent the installation of packages younger than a certain age. -
Kent C. Dodds dropped his React 19 cheat sheet a year ago and it remains useful and relevant.
-
If you’re a Vercel user, you might now be seeing your builds start up to 30% faster.
‘React Won by Default – And It’s Killing Frontend Innovation’ — An opinionated React thought-piece that’s provoked much discussion this week by poking at the downsides and inertia caused by ‘the React-by-default mindset.’ And we thought people said React was moving too quickly..? 😅
Loren Stewart
📄 Building ClickHouse-Powered APIs with React and MooseStack – MooseStack is a framework for building real-time analytical backends. Fiveonefour and ClickHouse
📄 Creating a ‘Current Location’ Map in Expo and React Native Louie Berwanger
📄 Redux in 2025: A Reliable Choice for Complex React Projects Stef van Wijchen
🔊 Discord’s Journey to React Native with Chas Jhin React Native Radio Podcast
🛠 Code, Tools & Libraries
Expo SDK 54 Released: A Big One for React Native Developers — The Expo framework continues its rapid ascent in the world of React Native with precompiled React Native iOS builds (for much shorter build times), iOS 26 and Liquid Glass support, and the use of React Native 0.81 and React 19.1. The new Expo File System has also become stable.
Hughes and Vatne (Expo)
📺 Simon Grimm has put together a video walking through all the significant changes in Expo 54 and why he’s excited about it.
Secure Your Agentic Apps with Auth for GenAI — Secure your agentic apps with features like User Authentication for AI agents, Token Vault, and more with Auth0’s Auth for GenAI (exclusively in Developer Preview).
Auth0 sponsor
Conform 1.10: A Type-Safe Form Validation Library — Gives you control over the form submission lifecycle from client to the server and exposes the form state through the useForm() hook. v1.10 improves Valibot integration with the future useForm hook.
Edmund Hung
💱 React Currency Input Field Component v4.0 — A component that aims to capture the nuances of currency input, if a freeform approach doesn’t cut it for you. Try it out with the live demo.
Chun Chan
-
React on Rails 16.0 – A way to integrate React with Ruby on Rails apps.
-
🗓️ DayPicker 9.10 – Component for creating date pickers, calendars, and date inputs.
-
TanStack Form 1.20 – Powerful, type-safe Web form state management.
-
TanStack Query 5.89 – Async state management and data fetching.
📰 Classifieds
$100 off yearly Frontend Masters membership! 250+ courses, personalized learning path, workshops with devs from GitHub & Netflix. Sale ends soon →
📢 Elsewhere in JavaScript
A roundup of some other interesting stories in the broader JavaScript landscape, in case you’ve missed them:
-
⚠️ The significant npm supply chain attack we mentioned last week is continuing to spread, and has affected hundreds more packages.
-
Dolt Workbench is a React-powered, Electron-packaged desktop app for working with SQL databases, and its team has shared the full automated release process it uses to package and release the app across multiple platforms at once.
-
Safari 26.0 has been released alongside macOS 26.0, iOS 26.0, etc. Along with a large variety of CSS enhancements and a new
<model>element for embedding 3D models onto web pages, every site can now “be a web app” on iOS and iPadOS if a user simply adds it to their home screen. -
Feedsmith 2.0 has been released – it’s a fast, all-in-one library for both parsing and generating web feeds (RSS, Atom, etc.)
-
Someone figured out how to host a web site on a disposable vaping device. The author references React briefly, saying that the vape’s 20KB of RAM may not be enough for our purposes.. 😅
Curated by Peter Cooper and Terence C. Gannon.
A Cooperpress publication.
#444 — September 17, 2025
Together with
⚛️ React Status
Cloudflare Dashboard Outage Rooted in a useEffect Mistake — The bug wasn’t caused by anything React-specific, but it’s uncommon to hear of the misuse of a React feature cascading into a service being overwhelmed with unnecessary requests resulting in an outage. A good reminder that these things can happen to anyone.
Lianza and Madruga (Cloudflare)
How to Keep package.json Under Control — Looking at an 863 megabyte node_modules folder in Val Town’s React app, Tom got to thinking about ‘dependency hygiene’ and some ways to keep things under control. Good tips and tool recommendations for managing the bulk.
Tom MacWright
AI Code Reviews Meet CLI Coding Agents — CodeRabbit CLI brings instant code reviews directly to your terminal, integrating with Claude Code, Cursor CLI, and other AI agents. While they generate code, CodeRabbit ensures it’s production-ready - catching bugs, security issues, and hallucinations before they hit your codebase.
CodeRabbit sponsor
React Server Components Support Across Frameworks — A comparison of support for aspects of the main RSC related functionality in Next.js, Vite, Waku, Forket, Parcel, React Router, and RedwoodSDK, along with the code used to test each one (which you might find useful as a reference in itself).
Krasimir Tsonev
IN BRIEF:
-
<Activity />is now available in React’s Canary release channel. You can learn more about the feature here. We also expect support to land in the next release of Next.js. -
The pnpm project has published a post about mitigating supply chain attacks and released pnpm 10.16 with a new
minimumReleaseAgesetting to prevent the installation of packages younger than a certain age. -
Kent C. Dodds dropped his React 19 cheat sheet a year ago and it remains useful and relevant.
-
If you’re a Vercel user, you might now be seeing your builds start up to 30% faster.
‘React Won by Default – And It’s Killing Frontend Innovation’ — An opinionated React thought-piece that’s provoked much discussion this week by poking at the downsides and inertia caused by ‘the React-by-default mindset.’ And we thought people said React was moving too quickly..? 😅
Loren Stewart
📄 Building ClickHouse-Powered APIs with React and MooseStack – MooseStack is a framework for building real-time analytical backends. Fiveonefour and ClickHouse
📄 Creating a ‘Current Location’ Map in Expo and React Native Louie Berwanger
📄 Redux in 2025: A Reliable Choice for Complex React Projects Stef van Wijchen
🔊 Discord’s Journey to React Native with Chas Jhin React Native Radio Podcast
🛠 Code, Tools & Libraries
Expo SDK 54 Released: A Big One for React Native Developers — The Expo framework continues its rapid ascent in the world of React Native with precompiled React Native iOS builds (for much shorter build times), iOS 26 and Liquid Glass support, and the use of React Native 0.81 and React 19.1. The new Expo File System has also become stable.
Hughes and Vatne (Expo)
📺 Simon Grimm has put together a video walking through all the significant changes in Expo 54 and why he’s excited about it.
Secure Your Agentic Apps with Auth for GenAI — Secure your agentic apps with features like User Authentication for AI agents, Token Vault, and more with Auth0’s Auth for GenAI (exclusively in Developer Preview).
Auth0 sponsor
Conform 1.10: A Type-Safe Form Validation Library — Gives you control over the form submission lifecycle from client to the server and exposes the form state through the useForm() hook. v1.10 improves Valibot integration with the future useForm hook.
Edmund Hung
💱 React Currency Input Field Component v4.0 — A component that aims to capture the nuances of currency input, if a freeform approach doesn’t cut it for you. Try it out with the live demo.
Chun Chan
-
React on Rails 16.0 – A way to integrate React with Ruby on Rails apps.
-
🗓️ DayPicker 9.10 – Component for creating date pickers, calendars, and date inputs.
-
TanStack Form 1.20 – Powerful, type-safe Web form state management.
-
TanStack Query 5.89 – Async state management and data fetching.
📰 Classifieds
$100 off yearly Frontend Masters membership! 250+ courses, personalized learning path, workshops with devs from GitHub & Netflix. Sale ends soon →
📢 Elsewhere in JavaScript
A roundup of some other interesting stories in the broader JavaScript landscape, in case you’ve missed them:
-
⚠️ The significant npm supply chain attack we mentioned last week is continuing to spread, and has affected hundreds more packages.
-
Dolt Workbench is a React-powered, Electron-packaged desktop app for working with SQL databases, and its team has shared the full automated release process it uses to package and release the app across multiple platforms at once.
-
Safari 26.0 has been released alongside macOS 26.0, iOS 26.0, etc. Along with a large variety of CSS enhancements and a new
<model>element for embedding 3D models onto web pages, every site can now “be a web app” on iOS and iPadOS if a user simply adds it to their home screen. -
Feedsmith 2.0 has been released – it’s a fast, all-in-one library for both parsing and generating web feeds (RSS, Atom, etc.)
-
Someone figured out how to host a web site on a disposable vaping device. The author references React briefly, saying that the vape’s 20KB of RAM may not be enough for our purposes.. 😅
Curated by Peter Cooper and Terence C. Gannon.
A Cooperpress publication.
发布者