Matt Travi
LightNews LightNews
matt.travi.org
Matt Travi
@matt.travi.org
220 followers 380 following 6 posts
DivOps Engineer. OSS Maintainer: semantic-release, repository-settings, form8ion
Posts Replies Media Videos
matt.travi.org
I'm headed to GitHub Universe next week. Anyone in my network going to be there that would be interested in meeting up while there?
October 23, 2025 at 2:58 AM
Reposted by Matt Travi
anildash.com
Okay, for the folks who asked: here's the majority AI view, writing up the reasonable, thoughtful view on AI that the vast majority of people in tech hold, that gets overshadowed by the bluster and hype of the tycoons trying to shill their nonsense. anildash.com/2025/10/17/t... Please share!
The Majority AI View - Anil Dash
A blog about making culture. Since 1999.
anildash.com
October 17, 2025 at 7:29 PM
Reposted by Matt Travi
socket.dev
🚨 npm phishing alert!
Attackers are sending emails from spoofed [email protected] addresses linking to a typosquatted clone site (npnjs.com) to steal credentials. This attack is designed to hijack npm accounts. Careful with those email links: socket.dev/blog/npm-phi... #nodejs #JavaScript
July 18, 2025 at 8:20 PM
Reposted by Matt Travi
jasnell.me
For no reason at all, I feel the need to remind folks that Node.js is not in competition with other runtimes like Deno or Bun. Companies compete. For profit entities compete. Private equity competes. Non-profits do not compete. Non-profits just exist. Use Node.js, use Deno, use Bun, use what works..
May 31, 2025 at 3:08 AM
Reposted by Matt Travi
rwklau.bsky.social
New @nodejs.org 18.20.8 release. This is the last planned release of Node.js 18 before it reaches End-of-Life at the end of April 2025. You are recommended to update to Node.js 20 or 22 to continue to receive security updates after that date.
nodejs.org/en/blog/rele...
Node.js — Node v18.20.8 (LTS)
Node.js® is a JavaScript runtime built on Chrome's V8 JavaScript engine.
nodejs.org
March 27, 2025 at 1:41 PM
Reposted by Matt Travi
thetnholler.bsky.social
🔑 under-discussed point — why they were on signal:
March 25, 2025 at 11:59 AM
Reposted by Matt Travi
oscard0m.bsky.social
We want to get some early feedback on this tool. Is there anyone in my network working in OSS who could be interested to try it out? It will be just a few minutes!
gravity.ci Gravity @gravity.ci · Mar 19
Gravity is live 🪐 and we think you’re gonna love it. It’s a CI tool that keeps your build artifacts in check—so you don’t accidentally ship bloated JS bundles, oversized images, huge CSS files, or other assets.

Built by @mainmatter.com

Learn more ➡️ mainmatter.com/blog/2025/03...

🧵1/4
Keeping Artifact Sizes Under Control - Mainmatter
Staying on top of asset sizes can be challenging. Gravity is a developer tool that helps teams catch regressions early.
mainmatter.com
March 24, 2025 at 11:24 AM
Reposted by Matt Travi
naugtur.pl
I need examples of vulnerabilities reported against npm packages that maintainers of the package or another package depending on it were annoyed by.
Doesn't have to be fresh, last 5 years is ok.

Respond with ghsa link or package+version - I can look it up myself.

(repost for reach a lot please)
March 21, 2025 at 10:53 AM
Reposted by Matt Travi
bbaskin.bsky.social
Great sticker ITW
March 8, 2025 at 1:45 PM
Reposted by Matt Travi
shoshana.bsky.social
Imagine your car becoming so hated that owners are like "please let them think I'm driving a Buick!"
A Tesla where the owner has put a Buick logo on the center of the trunk, a Buick badge under the left taillight and a LaCrosse CX badge under the right taillight.
March 5, 2025 at 5:36 PM
Reposted by Matt Travi
troutgirl.bsky.social
All y'all investing your careers in generative AI should be keeping a close eye on cases like this. It's early but so far every judge has ruled in favor of copyright holders and against the idea that LLM outputs fall under fair use. If they ALSO rule that code repos with LLM-produced work in them
wired.com WIRED @wired.com · Feb 11
Thomson Reuters has won the first major AI copyright case in the US. The decision has big implications for the battle between generative AI companies and rightsholders.
Thomson Reuters Wins First Major AI Copyright Case in the US
The Thomson Reuters decision has big implications for the battle between generative AI companies and rightsholders.
wrd.cm
February 11, 2025 at 9:47 PM
Reposted by Matt Travi
benlesh.bsky.social
🚨PSA: When copying GitHub URLs, always hit "Y" first!

Hitting "Y" adds the current SHA to the URL. This ensures your link doesn't break as the repository changes over time.
An image highlighting the SHA in the URL after hitting the "Y" key on GitHub
February 7, 2025 at 3:37 PM
Reposted by Matt Travi
devlead.se
Want to influence priorities in an OSS project? Here's the secret: demand nothing, be kind, and if possible roll up your sleeves to contribute. OSS thrives on collaboration, not demands. #OpenSource #OSS
December 28, 2024 at 7:45 AM
Reposted by Matt Travi
cucumberbdd.bsky.social
It’s a big day for Cucumber: we’re back in community ownership.

cucumber.io/blog/open-so...
Cucumber is back in Community Ownership | Cucumber
Today is a big day for Cucumber.
cucumber.io
December 20, 2024 at 6:42 AM
Reposted by Matt Travi
home-assistant.io
As we continue to grow and evolve, so does our commitment to making Home Assistant more inclusive, accessible, and aligned with the diverse needs of our community. To that end, we’re launching an annual survey—and we hope you’ll take part! 👇🏼

home-assistant.typeform.com/communitysur...
A graphic created by our graphic designer, Clelia Rella. The light background has an a green and blue abstract plant where the leaves are communication bubbles and the top stem a couple rain drops on the right half of the image, our Home Assistant antenna on the left side barely visible. Our Home Assistant logo is in the top left. Text overlay reads: Understanding our community The 2024 Home Assistant Survey
December 16, 2024 at 9:59 PM