Rafael Gonzaga | Node.js
@rafaelgss.dev
Node.js Technical Steering Committee member
Reposted by Rafael Gonzaga | Node.js
Before automated workflows, releasing @nodejs.org meant 20 manual steps. Now it’s one command. 👀
@ulisesgascon.com and @rafaelgss.dev share how the Node.js build team went from a rack of Raspberry Pis in someone’s garage to full release automation.
👉Build Team on GitHub: github.com/nodejs/build
@ulisesgascon.com and @rafaelgss.dev share how the Node.js build team went from a rack of Raspberry Pis in someone’s garage to full release automation.
👉Build Team on GitHub: github.com/nodejs/build
November 20, 2025 at 3:29 PM
Before automated workflows, releasing @nodejs.org meant 20 manual steps. Now it’s one command. 👀
@ulisesgascon.com and @rafaelgss.dev share how the Node.js build team went from a rack of Raspberry Pis in someone’s garage to full release automation.
👉Build Team on GitHub: github.com/nodejs/build
@ulisesgascon.com and @rafaelgss.dev share how the Node.js build team went from a rack of Raspberry Pis in someone’s garage to full release automation.
👉Build Team on GitHub: github.com/nodejs/build
Reposted by Rafael Gonzaga | Node.js
It was great working with you on this! As much as I dislike that we had to do this work, I think it is important that we did it so there is a thorough and accurate resource about the current state of things.
November 14, 2025 at 4:56 PM
It was great working with you on this! As much as I dislike that we had to do this work, I think it is important that we did it so there is a thorough and accurate resource about the current state of things.
Reposted by Rafael Gonzaga | Node.js
With npm supply chain attacks on the rise, secure publishing practices are becoming a pressing concern for anyone maintaining npm packages. ⚠️
We've released updated guidance to help maintainers reduce exposure, strengthen release processes, and protect the ecosystem: openjsf.org/blog/publish...
We've released updated guidance to help maintainers reduce exposure, strengthen release processes, and protect the ecosystem: openjsf.org/blog/publish...
Publishing More Securely on npm: Guidance from the OpenJS Security Collaboration Space | OpenJS Foundation
The OpenJS Security Collaboration Space has been working closely with GitHub’s npm team to understand how new security features affect projects and maintainers, especially as threats and tools keep ev...
openjsf.org
November 14, 2025 at 4:02 PM
With npm supply chain attacks on the rise, secure publishing practices are becoming a pressing concern for anyone maintaining npm packages. ⚠️
We've released updated guidance to help maintainers reduce exposure, strengthen release processes, and protect the ecosystem: openjsf.org/blog/publish...
We've released updated guidance to help maintainers reduce exposure, strengthen release processes, and protect the ecosystem: openjsf.org/blog/publish...
Thanks for your hard work on this @notwes.bsky.social
After a few months of targeted attacks on our ecosystem, followed by a confusing and rapidly changing response from @github.com, we wanted to put together some guidance for maintainers on how to help us all secure our supply chain together.
Here is that guidance 👇
Here is that guidance 👇
With npm supply chain attacks on the rise, secure publishing practices are becoming a pressing concern for anyone maintaining npm packages. ⚠️
We've released updated guidance to help maintainers reduce exposure, strengthen release processes, and protect the ecosystem: openjsf.org/blog/publish...
We've released updated guidance to help maintainers reduce exposure, strengthen release processes, and protect the ecosystem: openjsf.org/blog/publish...
November 14, 2025 at 4:53 PM
Thanks for your hard work on this @notwes.bsky.social
Reposted by Rafael Gonzaga | Node.js
Too many @nodejs.org users are running old versions 😬 The team is exploring changes to the release schedule to fix that.
@rafaelgss.dev shares all the details in our latest JavaScript Security Snapshot.
Be a part of the conversation on releases: github.com/nodejs/lts-s...
@rafaelgss.dev shares all the details in our latest JavaScript Security Snapshot.
Be a part of the conversation on releases: github.com/nodejs/lts-s...
November 13, 2025 at 5:45 PM
Too many @nodejs.org users are running old versions 😬 The team is exploring changes to the release schedule to fix that.
@rafaelgss.dev shares all the details in our latest JavaScript Security Snapshot.
Be a part of the conversation on releases: github.com/nodejs/lts-s...
@rafaelgss.dev shares all the details in our latest JavaScript Security Snapshot.
Be a part of the conversation on releases: github.com/nodejs/lts-s...
Reposted by Rafael Gonzaga | Node.js
Ever wonder why @nodejs.org drops new versions like clockwork? Here’s the scoop. ⏱️
@rafaelgss.dev shares all the details about the Node.js release schedule in our new series, JavaScript Security Snapshot.
@rafaelgss.dev shares all the details about the Node.js release schedule in our new series, JavaScript Security Snapshot.
November 11, 2025 at 3:28 PM
Ever wonder why @nodejs.org drops new versions like clockwork? Here’s the scoop. ⏱️
@rafaelgss.dev shares all the details about the Node.js release schedule in our new series, JavaScript Security Snapshot.
@rafaelgss.dev shares all the details about the Node.js release schedule in our new series, JavaScript Security Snapshot.
Done
@rafaelgss.dev any chance y'all could update the v8docs.nodesource.com to include 25.x? Pretty please :-)
v8docs
v8docs.nodesource.com
October 30, 2025 at 1:42 PM
Done
Reposted by Rafael Gonzaga | Node.js
i’m starting to get that “this word is weird now” feeling from hearing so many sentences like “releasers releasing releases” at the @nodejs.org collab summit
October 17, 2025 at 4:18 PM
i’m starting to get that “this word is weird now” feeling from hearing so many sentences like “releasers releasing releases” at the @nodejs.org collab summit
Reposted by Rafael Gonzaga | Node.js
Starting the day at the Node.js Collab Summit #nodejs #javascript
October 17, 2025 at 1:37 PM
Starting the day at the Node.js Collab Summit #nodejs #javascript
Reposted by Rafael Gonzaga | Node.js
Introducing 🥁🥁🥁 our JavaScriptLandia award recipients for this year!
Beyond building new features, our recipients guide others, maintain essential systems, document the hard parts, and strengthen the community every step of the way. 💙
Read more about our honorees here: hubs.la/Q03NQvx10
Beyond building new features, our recipients guide others, maintain essential systems, document the hard parts, and strengthen the community every step of the way. 💙
Read more about our honorees here: hubs.la/Q03NQvx10
October 16, 2025 at 2:19 PM
Introducing 🥁🥁🥁 our JavaScriptLandia award recipients for this year!
Beyond building new features, our recipients guide others, maintain essential systems, document the hard parts, and strengthen the community every step of the way. 💙
Read more about our honorees here: hubs.la/Q03NQvx10
Beyond building new features, our recipients guide others, maintain essential systems, document the hard parts, and strengthen the community every step of the way. 💙
Read more about our honorees here: hubs.la/Q03NQvx10
Reposted by Rafael Gonzaga | Node.js
I'm excited about net in permissions!
Node.js 25 is here! We have upgraded V8 to 14.1, bringing major JSON.stringify
performance improvements and JIT pipeline optimizations.
This release introduces the permission
model --allow-net, Web Storage is enabled by default, and more!
nodejs.org/en/blog/rele...
performance improvements and JIT pipeline optimizations.
This release introduces the permission
model --allow-net, Web Storage is enabled by default, and more!
nodejs.org/en/blog/rele...
Node.js
Node.js® is a free, open-source, cross-platform JavaScript runtime environment that lets developers create servers, web apps, command line tools and scripts.
nodejs.org
October 15, 2025 at 6:27 PM
I'm excited about net in permissions!
Node.js 25 is here! We have upgraded V8 to 14.1, bringing major JSON.stringify
performance improvements and JIT pipeline optimizations.
This release introduces the permission
model --allow-net, Web Storage is enabled by default, and more!
nodejs.org/en/blog/rele...
performance improvements and JIT pipeline optimizations.
This release introduces the permission
model --allow-net, Web Storage is enabled by default, and more!
nodejs.org/en/blog/rele...
Node.js
Node.js® is a free, open-source, cross-platform JavaScript runtime environment that lets developers create servers, web apps, command line tools and scripts.
nodejs.org
October 15, 2025 at 5:22 PM
Node.js 25 is here! We have upgraded V8 to 14.1, bringing major JSON.stringify
performance improvements and JIT pipeline optimizations.
This release introduces the permission
model --allow-net, Web Storage is enabled by default, and more!
nodejs.org/en/blog/rele...
performance improvements and JIT pipeline optimizations.
This release introduces the permission
model --allow-net, Web Storage is enabled by default, and more!
nodejs.org/en/blog/rele...
Reposted by Rafael Gonzaga | Node.js
Node.js v24.10.0 is out.
* Per-stream inspectOptions support in console
* Removal of util.getCallSite (in favour of util.getCallSites)
* Upgraded OpenSSL to 3.5.4 and npm to 11.6.1
* Various src and benchmark optimizations
https://nodejs.org/en/blog/release/v24.10.0
* Per-stream inspectOptions support in console
* Removal of util.getCallSite (in favour of util.getCallSites)
* Upgraded OpenSSL to 3.5.4 and npm to 11.6.1
* Various src and benchmark optimizations
https://nodejs.org/en/blog/release/v24.10.0
Node.js
Node.js® is a free, open-source, cross-platform JavaScript runtime environment that lets developers create servers, web apps, command line tools and scripts.
nodejs.org
October 13, 2025 at 2:22 PM
Node.js v24.10.0 is out.
* Per-stream inspectOptions support in console
* Removal of util.getCallSite (in favour of util.getCallSites)
* Upgraded OpenSSL to 3.5.4 and npm to 11.6.1
* Various src and benchmark optimizations
https://nodejs.org/en/blog/release/v24.10.0
* Per-stream inspectOptions support in console
* Removal of util.getCallSite (in favour of util.getCallSites)
* Upgraded OpenSSL to 3.5.4 and npm to 11.6.1
* Various src and benchmark optimizations
https://nodejs.org/en/blog/release/v24.10.0
Reposted by Rafael Gonzaga | Node.js
Reposted by Rafael Gonzaga | Node.js
Lots of GREAT progress and discussion on our @expressjs.bsky.social Performance Working Group. Thanks everyone who is participating as I think this is the second most (security comes first) impactful thing we could be working on.
For anyone interested in helping out: github.com/expressjs/pe...
For anyone interested in helping out: github.com/expressjs/pe...
GitHub - expressjs/perf-wg: Performance Working Group
Performance Working Group. Contribute to expressjs/perf-wg development by creating an account on GitHub.
github.com
September 17, 2025 at 4:04 PM
Lots of GREAT progress and discussion on our @expressjs.bsky.social Performance Working Group. Thanks everyone who is participating as I think this is the second most (security comes first) impactful thing we could be working on.
For anyone interested in helping out: github.com/expressjs/pe...
For anyone interested in helping out: github.com/expressjs/pe...
Reposted by Rafael Gonzaga | Node.js
Our goal is to provide guidance and tooling for perf based decisions to the maintainers under our umbrella.
Aligning our philosophy for how/what we monitor and how to interpret the results lets us be consistent across our 50+ packages. Ive been learning a lot so far, and big ty to @rafaelgss.dev
Aligning our philosophy for how/what we monitor and how to interpret the results lets us be consistent across our 50+ packages. Ive been learning a lot so far, and big ty to @rafaelgss.dev
Lots of GREAT progress and discussion on our @expressjs.bsky.social Performance Working Group. Thanks everyone who is participating as I think this is the second most (security comes first) impactful thing we could be working on.
For anyone interested in helping out: github.com/expressjs/pe...
For anyone interested in helping out: github.com/expressjs/pe...
GitHub - expressjs/perf-wg: Performance Working Group
Performance Working Group. Contribute to expressjs/perf-wg development by creating an account on GitHub.
github.com
September 17, 2025 at 9:05 PM
Our goal is to provide guidance and tooling for perf based decisions to the maintainers under our umbrella.
Aligning our philosophy for how/what we monitor and how to interpret the results lets us be consistent across our 50+ packages. Ive been learning a lot so far, and big ty to @rafaelgss.dev
Aligning our philosophy for how/what we monitor and how to interpret the results lets us be consistent across our 50+ packages. Ive been learning a lot so far, and big ty to @rafaelgss.dev
Node.js v24.6.0 is out💚
Highlights:
* Use your system’s trusted certificates with NODE_USE_SYSTEM_CA=1
* crypto: ML-DSA (KeyObject/sign/verify)
* http: server.keepAliveTimeoutBuffer
* zlib: Zstd dictionary support
* fs: Utf8Stream (from SonicBoom)
Changelog: nodejs.org/en/blog/rele...
Highlights:
* Use your system’s trusted certificates with NODE_USE_SYSTEM_CA=1
* crypto: ML-DSA (KeyObject/sign/verify)
* http: server.keepAliveTimeoutBuffer
* zlib: Zstd dictionary support
* fs: Utf8Stream (from SonicBoom)
Changelog: nodejs.org/en/blog/rele...
Node.js — Node.js v24.6.0 (Current)
Node.js® is a free, open-source, cross-platform JavaScript runtime environment that lets developers create servers, web apps, command line tools and scripts.
nodejs.org
August 15, 2025 at 2:59 PM
Node.js v24.6.0 is out💚
Highlights:
* Use your system’s trusted certificates with NODE_USE_SYSTEM_CA=1
* crypto: ML-DSA (KeyObject/sign/verify)
* http: server.keepAliveTimeoutBuffer
* zlib: Zstd dictionary support
* fs: Utf8Stream (from SonicBoom)
Changelog: nodejs.org/en/blog/rele...
Highlights:
* Use your system’s trusted certificates with NODE_USE_SYSTEM_CA=1
* crypto: ML-DSA (KeyObject/sign/verify)
* http: server.keepAliveTimeoutBuffer
* zlib: Zstd dictionary support
* fs: Utf8Stream (from SonicBoom)
Changelog: nodejs.org/en/blog/rele...
Hi folks,
We will have a Node.js core mentoring live stream today
Stay tuned!
We will have a Node.js core mentoring live stream today
Stay tuned!
July 18, 2025 at 3:35 PM
Hi folks,
We will have a Node.js core mentoring live stream today
Stay tuned!
We will have a Node.js core mentoring live stream today
Stay tuned!
Node.js v24.4.0 is out! 💚
What's new?
• crypto.hash() supports outputLength (XOF)
• fs.mkdtempSync() gets disposable mode
• --watch-kill-signal lands
• permission.has('addon') is now supported
• spawn() propagates permission flags
• sqlite adds readBigInts
More in: nodejs.org/en/blog/rele...
What's new?
• crypto.hash() supports outputLength (XOF)
• fs.mkdtempSync() gets disposable mode
• --watch-kill-signal lands
• permission.has('addon') is now supported
• spawn() propagates permission flags
• sqlite adds readBigInts
More in: nodejs.org/en/blog/rele...
nodejs.org
July 9, 2025 at 12:55 PM
Node.js v24.4.0 is out! 💚
What's new?
• crypto.hash() supports outputLength (XOF)
• fs.mkdtempSync() gets disposable mode
• --watch-kill-signal lands
• permission.has('addon') is now supported
• spawn() propagates permission flags
• sqlite adds readBigInts
More in: nodejs.org/en/blog/rele...
What's new?
• crypto.hash() supports outputLength (XOF)
• fs.mkdtempSync() gets disposable mode
• --watch-kill-signal lands
• permission.has('addon') is now supported
• spawn() propagates permission flags
• sqlite adds readBigInts
More in: nodejs.org/en/blog/rele...
May 30, 2025 at 7:05 PM
A warm welcome to our newest Node.js TSC member:
Filip Skokan!
Happy to see you onboard!
github.com/nodejs/node/...
Filip Skokan!
Happy to see you onboard!
github.com/nodejs/node/...
doc: add Filip Skokan to TSC by RafaelGSS · Pull Request #58499 · nodejs/node
Refs: nodejs/TSC#1740
cc: @panva
github.com
May 28, 2025 at 7:59 PM
A warm welcome to our newest Node.js TSC member:
Filip Skokan!
Happy to see you onboard!
github.com/nodejs/node/...
Filip Skokan!
Happy to see you onboard!
github.com/nodejs/node/...
Reposted by Rafael Gonzaga | Node.js
Folks, right now @rafaelgss.dev is doing an awesome livestram on m.twitch.tv/rafaelgss talking about Node.js threads, memory management and perfs. Join us!
RafaelGSS - Twitch
Node.js Core Mentoring
m.twitch.tv
May 16, 2025 at 7:54 PM
Folks, right now @rafaelgss.dev is doing an awesome livestram on m.twitch.tv/rafaelgss talking about Node.js threads, memory management and perfs. Join us!