Sebastian Beltran

I’m happy to announce that Express.js documentation has a new look! 🎉 This was a huge team effort with more than a year of work behind it. Thanks to everyone involved for the support and dedication that made this launch possible. expressjs.com/en/blog/2026-0…

webpack v5.107.0 blogpost is out: webpack.js.org/blog/2026-05-1… Thanks to @bjohansebas for taking the time to write this in a clear format!

@feross @SocketSecurity @ThriveCapital @a16z @AbstractVC @CapitalOne Congrats!

Today is a big day for @SocketSecurity. We just raised a $60M Series C at a $1B valuation, led by @ThriveCapital with participation from @a16z, @AbstractVC, and @CapitalOne Ventures. Total funding is now $125M. Four years ago, we started Socket because open source dependencies were flowing into production faster than anyone could vet them. AI has massively accelerated that. Code is being written, shipped, and deployed before any human reads it. Security has to operate at that same speed. One data point from Thrive's diligence that I keep coming back to: they first discovered Socket because @cursor_ai, @OpenAI, and @AnthropicAI all independently told them it was the most important security tool they'd adopted for AI-driven development. Three of the most sophisticated AI companies converging on the same vendor unprompted. Since our Series B, Socket has grown to more than 20,000 organizations, protecting over 1.5 million repositories and blocking more than 1,000 supply chain attacks every week. The team is now over 100 people. Three out of five FAANG companies are Socket customers. So are the companies building the most ambitious AI products: @AnthropicAI, @cursor_ai, @xai, @figma, @vercel, @Replit, @scale_AI, @GustoHQ, @Mercadolibre, and @cribl_io, alongside Fortune 100s in financial services and global media. What we've shipped since the last round: • Socket Firewall blocks malicious packages at install time, before they reach a developer's laptop or CI pipeline. Free for everyone. • Reachability analysis via our acquisition of Coana, eliminating 50-80% of irrelevant vulnerability alerts by focusing only on CVEs that are actually exploitable. • Socket Certified Patches for remediating exploitable CVEs in seconds without waiting on upstream maintainers. • Coverage extending to browser extensions, editor extensions, MCP servers, and AI tools via our acquisition of @secureannex. When the Axios compromise hit, our detection systems flagged the malicious dependency within six minutes. Within 24 hours, more than 2,000 organizations onboarded to Socket to block it. Where the funding goes: deeper investment in Firewall, massively expanding Certified Patches, moving protection closer to every point of install across the developer toolchain, and new product launches pushing Socket into a category we haven't entered before. We're hiring across engineering, sales, customer success, and threat intel. ❤️ Thank you to our customers, investors, and the open-source community for your support. Together, we’re making software safer for everyone.

@jonchurch @kettanaito I don't like it either, I want to do something more where a container runs the tests with that version. I think I had an issue about it in wiby, I just haven't had time to develop it."

@kettanaito Ive been toying with a scratch rewrite lately, I dont like the “open a PR” model that WIBY uses. If you find something that you think will work please do share your knowledge. Or even just write up what you think you want, can land changes to WIBY @bjohansebas is interested

I wish more developers spoke about ecosystem testing and how to efficiently set it up. I know Node.js does it. I know a few other projects do that. I've never seen anyone speaking about it. As someone whose projects have gathered a bit of an ecosystem, I want to know!

🥳 todos estamos muy contentos con el resultado

@gubiarpa @midudev Express nunca te abandonará

@midudev ¡Express es la vieja confiable!

¡Histórico! Nueva página web de Express.js, el framework web más importante de Node. Hecha con Astro, nueva documentación y en Español. → expressjs.com/es

@Anthony__JCH @midudev La mejor opción del mercado, nunca me arrepentiré de haber escogido esta tecnología para el rediseño

@midudev Astro lo má' duro del sistema

@midudev Fue bonito construir el sitio junto con mis compañeros, puede que hayamos tardado bastante pero el resultado fue genial

@fgbyte @midudev Commonjs es bastante utilizado aún más que ESM, y en un futuro se pasará a esm, solo danos tiempo que esto es Open Source

@midudev Cual es el afán de la doc de express de usar siempre Common JS 🙄

@nrjdalal @honojs @elysiaJS Killing Express is like killing jQuery , you just can’t

@bjohansebas it's time to give up and opt in for better alternatives, long live @honojs @elysiaJS

I’m happy to announce that Express.js documentation has a new look! 🎉 This was a huge team effort with more than a year of work behind it. Thanks to everyone involved for the support and dedication that made this launch possible. expressjs.com/en/blog/2026-0…

@filip_a__ Express is still alive and widely used, it’s just that we don’t have funding to ship new features all the time. We do this in our free time, and sometimes there simply isn’t much of it.

@bjohansebas ngl i thought express was dead.. havent used it in years and only see it in legacy software projects before i migrate them to something better 🫡

que la fuerza me acompañe en construir este circuito en 4 dias

@shubhuoulkar 🫡

@bjohansebas 💝

god, 20 PRs that are just AI-generated spam in the Express repo. With the little time I can dedicate to it, I still have to deal with that.

@_pi0_ hi!, please see github.com/unjs/httpxy/pu… and github.com/unjs/httpxy/pu… we want to release the new version of webpack-dev-server and this is blocking us, let me know if you need any help and thanks a lot for helping us

🚧 I am a little bit slower than usual at triaging issues and PRs in unjs, h3, and Nitro. Making my maintenance workflows more automated and secure. Please privately ping me if anything is real blocker.

@gameromandev @_August1_ @JLarky Join here slack-invite.openjsf.org so you can get in touch with the team (it’s a weird quarter for the whole team).

@bjohansebas @_August1_ @JLarky No

express doesn't even provide types? how are people still tollerating this

@gameromandev @_August1_ @JLarky for now everything would go into master, use how the infra for the types is set up in iconv-lite as a guide

@bjohansebas @_August1_ @JLarky Is there a branch or anything else that I should look at?

@gameromandev @_August1_ @JLarky are you in the OpenJS Slack?

@bjohansebas @_August1_ @JLarky I would like to help where possible

My first design in KiCad to send off for manufacturing a board for my Electronics 1 final project. It might not be much, but wow, I’m really happy to have learned this.