Full-stack developer, passionate about AI and learning new things. Powered by coffee and curiosity.

December 2025, the RondoDox botnet operators have been targeting Next.js servers impacted by the React2Shell vulnerability.

The key themes that defined the year behind us will also shape the one ahead. The most-read articles of 2025 tracked a return ...

Bun 1.3 revolutionizes full-stack JavaScript development with unified database APIs and zero-config frontend setup.

This concept isn’t new—in fact, it is the essence of representational state transfer (REST). Instead of converting to a ...

React Native WebView is a community-maintained WebView component for React Native. It is intended to be a replacement for the built-in WebView (which was removed from core). Maintaining WebView is ...

Refer to the SDK documentation for instructions on getting started with using the SDK. Note: If you are using JavaScript in a non-browser environment, please see our server-side Node.js SDK, ...

Overview:  Web development frameworks focusing on performance, scalability, and long-term maintainability will be preferred by developers in 2026.React wit ...

In early December 2025, the React core team disclosed two new vulnerabilities affecting React Server Components (RSC). These issues – Denial-of-Service and Source Code Exposure were found by security ...

Attackers are using the vulnerability to deploy malware and crypto-mining software, compromising server resources and potentially intercepting wallet interactions on crypto platforms.

A new malware implant called EtherRAT, deployed in a recent React2Shell attack, runs five separate Linux persistence mechanisms and leverages Ethereum smart contracts for communication with the ...

Multiple China-linked threat actors began exploiting the React2Shell vulnerability (CVE-2025-55182) affecting React and Next.js just hours after the max-severity issue was disclosed. React2Shell is an ...