Echo JS 0.11.0

Some good information here, though it applies to any application, not just node.  In general a lot of this should be common sense in terms of security.  However, usually newer developers, sometimes expediency in getting things done will often lead to scenarios that are much less than secure.

One of the reasons I like using something like React on the client (most UI frameworks are similar) is that by default rendering will not be open to client-side injection.  For the server side, all API calls via JSON.parse, and all parameterized queries is your best defense.

Another major offense I've seen a lot, is private/secure data in the JWT payload, which is *NOT* encrypted, only base64 encoded and signed.

Yeah, most X vs Y posts are very low quality, usually delete this class of posts, the user in question has had all posts deleted.

I wish... cryptocurrency would be near the top of the list...

I suggest, related to creating more components, is components that make fewer choices... if you have more than one or two if statements or conditionals in rendering, you should probably have a child component.

I also prefer redux for state management, so most of my components are pretty much a render method with hooks on my most recent app.

> You can write performant JS manually too, but it takes a lot of experience and discipline.

There are a lot of times I specifically write less performing code for clarity... Unless it's a real world performance issue in a given use case.  To me, TS is a lot like testing, it guides you into thinking things through.  Writing testable code, and having a disciplined directory/feature/module structure helps a lot too.

I prefer JS over C#, I prefer C# over TS ... C# (.Net Core) is open-source... I don't have to pay anyone to use it.

What it comes down to for me... I prefer JS over say C# for even server-side development.  Mainly because the lack of typing enforcement and flexibility.  If I'm using TypeScript, I may as well be using C# even if it's costing me in terms of time and velocity.

Rehash of some prior reporting.  Also, I wouldn't consider Go that similar to C.

What's interesting is the uptake in TypeScript ... personally, I don't like taking the time to enforce all the typing over JS.  But I do see the appeal.