Skip to main content
Category

Announcement

OpenSSF Project Alpha-Omega Invests in the OpenJS Foundation and jQuery to Help Secure the Consumer Web

By Announcement, Blog, jQuery, jQuery Security

By: Robin Ginn, Executive Director, OpenJS Foundation and Brian Behlendorf, General Manager, OpenSSF

Today, we’re excited to share that the Open Source Security Foundation (OpenSSF) Project Alpha-Omega is committing $350,000 to reduce potential security incidents for jQuery by helping modernize its consumers and its code.

This is the second funded project coming from the OpenSSF to the OpenJS Foundation, the neutral home for JavaScript and the web. Earlier this year OpenSSF selected Node.js as its initial project, committing $300,000 to focus on improving supply chain security. 

OpenJS, working with the jQuery maintainers and industry experts, will undertake three core initiatives under this grant: an ecosystem risk audit, an expansion of its infrastructure modernization project, and a web modernization campaign.

“There’s a lot of work to be done to help secure the consumer web,” said Michael Scovetta, Alpha-Omega co-lead and Principal Security PM Manager at Microsoft. “We believe partnering with the vendor-neutral OpenJS Foundation is a great way to communicate out broadly to developers and to work with technology partners to reduce potential security incidents for jQuery. This is a wide ranging effort that is by no means simple.” 

jQuery Core is still actively maintained, and the maintainers have taken steps to consolidate and modernize its infrastructure with support from the OpenJS Foundation including migrating and improving its CDN. jQuery is still used by 77% of the world’s top 10 million websites, but one-third of those sites are still using 15-year-old legacy jQuery 1.x when they should be using a much more current version.

As part of its modernization initiative, OpenJS Foundation has also helped jQuery with two projects under the jQuery umbrella through a careful transition: jQuery UI and jQuery Mobile. However, there is much work to be done to fully understand and mitigate potential risks.  

“The use of ubiquitous technologies like jQuery is invisible to most, however potential problems could affect millions of websites. And, there’s no one-size-fits-all solution. This is exactly the type of project that the OpenSSF is looking to support, and we are excited to be working on our second project with the OpenJS Foundation, helping to advance open source security for all,” said Michael Winser, Alpha-Omega co-lead and Group Product Manager for Software Supply Chain Security and CI/CD at Google. “We are pleased to be committing to this project with the OpenJS Foundation and jQuery.”

The OpenJS Foundation  and OpenSSF are looking forward to working closely together to help developers around the globe improve their open source security readiness!


If you’re interested in finding out how you can help, please contact the OpenJS Foundation via https://openjsf.org/collaboration/.

Node.js 19 is now available!

By Announcement, Blog, Node.js

The release of Node.js 19 is now available! Node.js 19 replaces Node.js 18 as our current release line, with Node.js 18 being promoted to long-term support (LTS) next week.

What do these two releases mean? Node.js 19 is ready for early feature testing, and Node.js 18 LTS will be fully ready for production deployments starting next week, October 25.

Rafael Gonzaga from Nearform and Ruy Adorno from Google have been working as the release leads for this version.

“With over 1,150 commits since the last release, Node.js continues to improve along a broad spectrum of functionality. Improvements in connectivity, performance and throughput are important parts of Node.js 19. We’ve been working hard on making Node.js more secure and performant, and I believe we are getting better and better. If you’re in active deployment, Node.js 18 LTS is for you. If you’re interested in getting access to features early, Node.js 19 is ready,” said Rafael Gonzaga, Node.js Core Member. “Many thanks to our open source contributors for making Node.js better and better.”

What’s exciting about Node.js 19 is that you can expect new releases approximately every two weeks, always keeping you up to date with the latest features and changes. Since this is an odd-numbered release line, Node.js 19 will not be promoted to LTS. You can read more about our release policy at https://github.com/nodejs/release.

The increased frequency of Node.js releases means that cool features are now being added over time, yet Node.js 19 includes several updates.

“Node.js releases are fundamentally a team effort, and, more broadly, a community effort. Node.js 19 and Node.js 18 LTS are great examples of this with input and code from a wide range of developers,” said Ruy Adorno, Node.js Release Working Group Chair and Senior Software Developer, Google. “Try out Node.js yourself, and if you have contributions, we are very interested in working with you.”

Main updates for Node.js 19

  • HTTP(S)/1.1 KeepAlive by now set by default
  • Custom ESM Resolution Adjustments
  • Dropped support for DTrace/SystemTap/ETW
  • Updated V8 JavaScript engine to 10.7
  • llhttp 8.1.0

HTTP(S)/1.1 KeepAlive by default

Node.js now sets keepAlive to true by default. Outgoing HTTP or HTTPs connections will automatically use HTTP 1.1 Keep-Alive. It could be set this way before but specific parameters needed to be set. Now it’s by default. This means better performance and throughput by default.

Custom ESM Resolution Adjustments

Node.js has removed the –experimental-specifier-resolution flag. Its functionality can now be achieved via custom loaders. 

Dropped support for DTrace/SystemTap/ETW

DTrace can be used to get a global overview of a running system, such as the amount of memory, CPU time, filesystem and network resources used by the active processes. It can be an important tool, but keeping it up-to-date is complex, and it was decided we don’t have personnel to properly support it. If you are interested in helping to bring DTrace back, an issue has been opened here: github.com/nodejs/node/issues/44550

Updated V8 JavaScript engine to 10.7

The V8 engine is what powers Node.js. It parses and runs your JavaScript inside a Node environment. Node.js follows updates to the V8 JavaScript engine closely. 

This version includes a new feature to the JavaScript API: `Intl.NumberFormat`. `Intl.NumberFormat` v3 API is a new TC39 ECMA402 stage 3 proposal extending the pre-existing Intl.NumberFormat.

llhttp 8.1.0

This project is a port of http_parser to TypeScript. It is used to generate the output C source file, which can be compiled and linked with an embedder’s program like Node.js. It parses both requests and responses. The parser is designed to be used in performance HTTP applications. The Node.js team is regularly improving llhttp with new API features and new callbacks.

Try it out today

To download Node.js v19.0.0, visit: https://nodejs.org/en/download/current/.  Check out the release post at https://nodejs.org/en/blog/release/v19.0.0, which contains the list of commits included in this release. The team would love to hear your feedback! 

“Thank you to Rafael and Ruy for taking on this release, and thank you to our community – your feedback is so important for the iteration of Node.js,” said Senior Software Engineer at Red Hat, Node.js TSC Member, and prior major release steward, Bethany Griggs. “As a long time maintainer of Node.js, hearing from the community allows us to push these releases more efficiently.”

Testing your applications and modules with Node.js 19  helps to ensure the future compatibility of your project with the latest Node.js changes and features.

For the timeline of Node.js releases, check out the Node.js Release Schedule.

“We look forward to what the community will build with the release of Node.js 19,” said OpenJS Foundation Executive Director Robin Ginn. “With each release, the team is quickly working to ensure developers are always up to date and able to test out new features.”

Thank you

We’d like to thank all of the Node.js collaborators and contributors, as this release and upcoming ones are a direct result of their efforts!

New Company, New Member: Platformatic Joins the OpenJS Foundation

By Announcement, Blog

Modern and scalable API platform aimed at simplifying back-end development created by two Node.js and Fastify veterans

SAN FRANCISCO – September 12, 2022 – The OpenJS Foundation, providing vendor-neutral support for sustained growth within the open source JavaScript community, is announcing today that Platformatic has joined as a silver member. The OpenJS Foundation is home for critical open source JavaScript projects including Appium, Dojo, Jest, jQuery, Node.js, webpack, and more.

Just announced last week, Platformatic is a startup company with a platform that aims to remove the friction from backend development. It is created by OpenJS Foundation Board Director and Fastify creator Matteo Collina, and Luca Maraschi, a seasoned executive.

Platformatic will continue to invest in Node.js and Fastify ecosystems, and release new open source tools.

“We are excited to welcome Platformatic as the newest member of the OpenJS Foundation,” said OpenJS Foundation Executive Director, Robin Ginn. “I’m always inspired by the creative collaboration that the founders of Platformatic bring to advance JavaScript development, and know that Platformatic will bring this energy to the foundation.”

“We are pleased to see Platformatic investing in the OpenJS Foundation so early on in their company’s inception,” said OpenJS Foundation Board Chairperson, Todd Moore. “We believe that having a neutral home at the foundation will increase the company’s collaboration and awareness among important developer communities.”

“Platformatic wants to create the best experience for backend developers. Our goal is to remove friction for backend developers, which is ambitious but can be done,” said Matteo Collina, Co-Founder and CTO of Platformatic. “To be clear, I’m not stopping my work maintaining Node.js and Fastify. Platformatic’s roots are in Node.js and Fastify, and as a team, we plan to invest in both the Node.js and Fastify ecosystems even more so by supporting the OpenJS Foundation.”

“Bringing backend developers to the forefront is more important than ever, and supporting the OpenJS Foundation is an important connection to many important developer communities. With the exponential growth of digital experiences and users, the so-called ‘front-end’ has been massively disrupted in the past few years. However, backend development is the missing piece,” said Luca Maraschi, Co-Founder and CEO of Platformatic. “We want to position Platformatic at the intersection of platform engineering challenges and delivery. By creating a foundation of modern APIs, Platformatic is set to remove barriers for delivery.”

Platformatic will announce soon the platform is generally available; follow them on Twitter for the latest updates.

With a mission to help support the sustainable growth of JavaScript by operating as a neutral organization that hosts projects and funds activities, the OpenJS Foundation invites all companies that depend on JavaScript to join as members. If you are an individual and want to get involved, please check out JavaScriptLandia.

OpenJS Resources

To learn more about how you could be a part of the OpenJS Foundation, click here.

The OpenJS Foundation is committed to supporting the healthy growth of the JavaScript ecosystem and web technologies by providing a neutral organization to host and sustain projects, as well as collaboratively fund activities for the benefit of the community at large. The OpenJS Foundation is made up of 35 open source JavaScript projects including Appium, Dojo, jQuery, Node.js, and webpack and is supported by 30 corporate and end-user members, including GoDaddy, Google, IBM, Intel, Joyent, Microsoft and Netflix. These members recognize the interconnected nature of the JavaScript ecosystem and the importance of providing a central home for projects which represent significant shared value. 

About Linux Foundation

Founded in 2000, the Linux Foundation and its projects are supported by more than 3,000 members. The Linux Foundation is the world’s leading home for collaboration on open source software, hardware, standards, and data. Linux Foundation projects are critical to the world’s infrastructure including Linux, Kubernetes, Node.js, ONAP, Hyperledger, RISC-V, and more. The Linux Foundation’s methodology focuses on leveraging best practices and addressing the needs of contributors, users, and solution providers to create sustainable models for open collaboration. For more information, please visit us at linuxfoundation.org.

Capital One Joins OpenJS Foundation

By Announcement, Blog

As a highly-regulated and tech-forward company, Capital One has released more than 25 solutions and made more than 1,500 contributions to 135 different open source projects

SAN FRANCISCO – September 8, 2022 – The OpenJS Foundation, providing vendor-neutral support for sustained growth within the open source JavaScript community, is announcing today that Capital One© has joined as a new silver member. The OpenJS Foundation is home for critical open source JavaScript projects including Appium, Dojo, Jest, jQuery, Node.js, webpack, and more.

“JavaScript is a key technology tool in financial services, and we are excited to work with Capital One as our newest OpenJS Foundation member. We look forward to their leadership in contributing to JavaScript and FinTech, benefiting their customers worldwide and the broader open source community,” said Robin Ginn, OpenJS Foundation Executive Director, “Capital One has been a great collaborator in open source and we welcome the continued technical expertise in helping to move JavaScript and Node.js development forward.”

As a part of its 10-year technology transformation, Capital One made an open source-first commitment to software development and established an Open Source Program Office in 2015. Today, the company relies on the JavaScript/Node.js ecosystem for a significant portion of its software development and delivery for both internal and external facing systems. In an effort to give back to the open source community, Capital One has released more than 25 solutions and made more than 1,500 contributions to approximately 135 different open-source projects.

“Capital One has been utilizing JavaScript and Node.js for years to increase our speed and agility in delivering breakthrough products and experiences for our customers,” said Franz Zemen, VP, Software Engineering at Capital One. “We are proud to join the OpenJS Foundation and collaborate with its members to give back to the open source community by supporting and maintaining the open source software that we all need.”

“Capital One has been a long time proponent of open source technology in financial services,” said Todd Moore, OpenJS Foundation Board Chairperson. “By creating a neutral home for the JavaScript ecosystem, the OpenJS Foundation’s goal is to drive broad adoption and ongoing development of key JavaScript solutions. We know that welcoming Capital One as an OpenJS Foundation member will help build open source tools in FinTech and strengthen the overall JavaScript community.”

With a mission to help support the sustainable growth of JavaScript by operating as a neutral organization that hosts projects and funds activities, the OpenJS Foundation invites all companies that depend on JavaScript to join as members. If you are an individual and want to get involved, please check out JavaScriptLandia.

OpenJS Resources

To learn more about how you could be a part of the OpenJS Foundation, click here.

OpenJS Node.js Certification Program

OpenJS Latest News and Blogs

OpenJS Slack Workspace 

About OpenJS Foundation

The OpenJS Foundation is committed to supporting the healthy growth of the JavaScript ecosystem and web technologies by providing a neutral organization to host and sustain projects, as well as collaboratively fund activities for the benefit of the community at large. The OpenJS Foundation is made up of 35 open source JavaScript projects including Appium, Dojo, jQuery, Node.js, and webpack and is supported by 30 corporate and end-user members, including GoDaddy, Google, IBM, Intel, Joyent, Microsoft and Netflix. These members recognize the interconnected nature of the JavaScript ecosystem and the importance of providing a central home for projects which represent significant shared value. 

About Capital One

Capital One Financial Corporation (www.capitalone.com) is a financial holding company whose subsidiaries, which include Capital One, N.A., and Capital One Bank (USA), N.A., had $307.9 billion in deposits and $440.3 billion in total assets as of June 30, 2022. Headquartered in McLean, Virginia, Capital One offers a broad spectrum of financial products and services to consumers, small businesses and commercial clients through a variety of channels. Capital One, N.A. has branches located primarily in New York, Louisiana, Texas, Maryland, Virginia, New Jersey and the District of Columbia. A Fortune 500 company, Capital One trades on the New York Stock Exchange under the symbol “COF” and is included in the S&P 100 index. Visit Capital One About for more information.  

About Linux Foundation

Founded in 2000, the Linux Foundation and its projects are supported by more than 2,950 members. The Linux Foundation is the world’s leading home for collaboration on open source software, hardware, standards, and data. Linux Foundation projects are critical to the world’s infrastructure including Linux, Kubernetes, Node.js, ONAP, Hyperledger, RISC-V, and more. The Linux Foundation’s methodology focuses on leveraging best practices and addressing the needs of contributors, users, and solution providers to create sustainable models for open collaboration. For more information, please visit us at linuxfoundation.org.

A Warm Welcome to our New OpenJS Board Directors

By Announcement, Blog

As of August 2022, we have three new members on the OpenJS Foundation Board of Directors. They are filling positions on the Silver level and Community level. We are excited for them to bring their expertise to the OpenJS Foundation! 

The board sets technical policy, including “mission and vision statements, describing the overarching scope of foundation initiatives, technical vision, and direction.”

How Members Are Chosen

According to our bylaws, each Platinum member is entitled to appoint one Director to the board, and the Platinum Directors are eligible to serve as chairperson and vice-chairperson. Gold and Silver members vote among themselves to select their representatives. The Board also includes community representation, with two Community Directors nominated by the Cross Project Council (CPC) and its chartered committees with staggered elections.

New Silver Board Members

Abigail Cabunoc Mayes, Silver Director, GitHub

Abby leads GitHub’s open source maintainer programs where she works to help maintainers – and the open source ecosystem – thrive. Before joining GitHub, Abby led Mozilla’s open source engagement strategy for MozFest and trustworthy AI. She founded and led Mozilla Open Leaders, a program that has worked with over 600 open projects globally. She is active in the open source ecosystem as a current or past member of a variety of committees and editorial boards including the Journal of Open Source Software, the Mozilla Open Source Support Awards, and SustainOSS.

Paula Paul, Silver Director, Nearform

Paula has a rich career in software engineering, from mainframe product development at IBM to championing innovative open source and developer experience efforts in her current role as a Field CTO with NearForm. She is a distinguished engineer, author, speaker, angel investor, and mentor who is passionate about diversity and inclusion in engineering. Paula also serves on the Grace Hopper Open Source Day committee for AnitaB.org.

New CPC Board Director

Matteo Collina, CPC Board Director

Matteo is a prolific Open Source author in the JavaScript ecosystem and modules he maintains are downloaded more than 60 billion times a year. Previously he was Chief Software Architect at NearForm. In 2014, he defended his Ph.D. thesis titled “Application Platforms for the Internet of Things”. Matteo is a member of the Node.js Technical Steering Committee focusing on streams, diagnostics and http. He is also the author of the fast logger Pino and the Fastify web framework. Matteo is an renowned international speaker after more than 60 conferences, including OpenJS World, Node.js Interactive, NodeConf.eu, NodeSummit, JSConf.Asia, WebRebels, and JsDay. He is also co-author of the book “Node.js Cookbook, Third Edition” edited by Packt. In the summer he loves sailing the Sirocco.

First Ever JavaScriptLandia Awards Celebrate Community Leaders

By Announcement, Blog

From OpenJS World, Austin, TX – The OpenJS Foundation is celebrating 6 key community leaders, honoring them with the first ever JavaScriptLandia Awards for contributions to education, standards, security and more. Award Winners were recognized onstage at OpenJS World on Tues, June 7, and received a plaque and digital badge.

JavaScriptLandia is the home of the OpenJS Foundation’s individual supporter program, where community members can pledge support for OpenJS projects, maintainers, and get more involved in the community while earning badges and other perks.

The nominations for the awards opened in March and were sourced from the broader JavaScript community. Nominations were reviewed by OpenJS Foundation CPC members, board members, and staff and were chosen by consensus.

There were 6 awards available: Unsung Hero, Leading By Example, Outstanding Contribution from a New Arrival, and the Pathfinder Awards, one for Standards, one for Education, and one for Security. 

Unsung Hero nominees are recognized for their willingness to do things that aren’t high profile, glamorous, or even fun, but are important for a well-functioning project and community. Unsung Heroes often do this work with a smile, even if they aren’t being recognized regularly for their contributions. 

Leading by Example nominees are known for demonstrating leadership qualities in their communities that reflect OpenJS Foundation values, like being humble, helpful and hopeful. Exemplary leaders embody open source in spirit and in practice, and inspire others to do the same.

Outstanding Contribution from a New Arrival nominees are new participants in our project spaces who are making a big difference – from contributing new ideas, new leadership on a project workstream, helping with project operations, to community building and more. These individuals are rising stars who help bring fresh energy to our projects.

Pathfinder Awards nominees are people from across the JavaScript ecosystem who have made significant contributions in key areas for OpenJS, including Education, Standards, and Security. These individuals not only move things forward, they bring people along with them as they go, helping to light the way for all. 

The JavaScript Awards recipients were: 


Bethany Griggs – Unsung Hero – “Beth has always been a mighty force for node.js behind the scenes. She puts in tremendous work for the project on the release team, but that work often goes unrecognized. In addition to her service to the project, Beth volunteers on other openjs committees and makes herself available to help the foundation in a variety of ways, from the marketing committee, to the programming committee, to supporting people in the foundation slack and more. Beth is truly a hero, and it’s time to sing her praises!

Matteo Collina – Leading By Example – “Matteo is a steady leader in both the Node and the Fastify communities. He’s a strong technical leader but he also helps people grow, mentoring them and supporting new contributors. Matteo always tackles problems head on and in a collaborative way. He’s passionate about his work, and it’s absolutely inspiring and infectious!”

Darshan Sen – Outstanding Contribution from a New Arrival – I’ve seen Darshan contribute across a number areas within the Node.js project. With his first commit having landed in the Node.js repo just over a year ago, he is now a significant contributor and a member of the Technical Steering Committee. He interacts in a respectful and impactful way and jumps into discussions to express his opinions and help move them forward.  As a relatively new arrival he’s ramped up quickly and contributes across a broad range of topics. I think he’s a great example of coming to the project, talking with people, asking for help/info when needed and then making significant contributions.”

Tzviya Siegman – Pathfinder Award for Standards – “Tzviya edits and works on epub specifications, as well as ARIA specifications, at the W3C. She has served on the W3C’s advisory board for some time, and she works hard to improve the experience of new standards community participants through the Positive Work Environment WG. She was instrumental in getting the W3C to update their code of conduct in 2019.”

Liran Tal – Pathfinder Award for Security – “Liran is a tireless advocate for security in the JS ecosystem. He works hard to build bridges, educate developers about security issues, and support Open Source projects working to improve their security posture. Liran has served on the Node security team and is always available to support developers!”

Wes Bos – Pathfinder Award for Education – “Wes is responsible for teaching hundreds of developers how to write React, Node, CSS, tweak their VSCode setups, upgrade their dev environment and so much more. He’s also one of the nicest people in the broader js community, which makes learning from him feel that much better.

To find out more about JavaScriptLandia and how to join, see: https://javascriptlandia.com/ 

OpenJS World 2022: OpenJS Foundation Welcomes Urban Computing Foundation, vis.gl and kepler.gl

By Announcement, Blog, OpenJS World

Testing, Security and Visualization are major themes of OpenJS World, currently being held in Austin, TX, June 6-10

The OpenJS Foundation is announcing that the Urban Computing Foundation (UCF) has partnered with OpenJS to form the Open Visualization Collaboration Space. The Open Visualization Collaboration Space provides  a place to openly govern the most comprehensive and widely adopted visualization libraries based on WebGL. UCF is also merging its day-to-day operations and budgets into OpenJS where it will govern these projects and more under the new OpenJS Open Visualization Collaboration Space. Two of its most popular visualization projects – vis.gl and kepler.gl – are moving under the umbrella of the OpenJS Foundation.

Vis.gl is a suite of frameworks for GPU powered data visualization and analysis of large datasets on the web. It is one of the most widely adopted WebGL visualization libraries, with close to 100K daily downloads from npm. kepler.gl is a data-agnostic, high-performance web-based application for visual exploration of large-scale geolocation data sets. The kepler.gl demo app has 30k weekly users.

“The Urban Computing Foundation has nurtured multiple great data visualization projects that have become widely used, adding important pieces to the JavaScript ecosystem. There is immense potential for big data to be better visualized and better utilized through the web. Improved visualization tools are key to improving JavaScript in fields like geospatial analysis, data-driven mapping, self-driving cars, and more,” said Robin Ginn, OpenJS Foundation executive director. “We’re very excited to have UCF merge with OpenJS to broaden its developer engagement for the exciting area of data visualization.”

Historically UCF was a home for Mapzen and related projects. In recent years it became a host for the WebGL geospatial visualization projects Kepler.gl and Vis.gl, including multiple Vis.gl sub-projects. 

OpenJS also welcomes four UCF members who are now members of the OpenJS Foundation: Foursquare, HERE Technologies, Joby Aviation, and Uber. Open visualization technologies are core to each of these companies’ leadership positions in the market, and by supporting the foundation, they are supporting the infrastructure and long-term growth of key open source projects that they rely on.​

Vis.gl

The offerings of vis.gl are packaged and best represented by its flagship framework, deck.gl. It has been integrated with most popular base map providers such as Mapbox, Google Maps and ArcGIS; bindings to use with React, Python/Jupyter, R, Vega and CUDA; libraries that tackle 3D geometry editing (nebula.gl), animation (hubble.gl), autonomous vehicles (AVS), multiplexed bioimaging (Viv), etc. Companies including Google, ESRI, CARTO, Foursquare and Cesium have contributed for the project to work with their libraries or data formats. 

“The vis.gl projects are under active development and use, and have great potential for being used widely. We wanted to be connected to an organization like the OpenJS Foundation to support activities that help build growth and popularity. We were already well aligned with the OpenJS Foundation goals, and I believe this is an excellent path forward for both the developers and users of vis.gl and kepler.gl,” said Chris Gervang, Joby Aviation senior visualization engineer. “We look forward to these next steps.” 

Kepler.gl

kepler.gl is one of the most powerful open source browser-based geospatial analysis visualization tools. The kepler.gl demo app is open to all and has 30k weekly users. It is especially well known in geospatial analytics and visualization fields. It has been integrated with Jupyter Notebooks, Jupyter Labs, VSCode, Tableau, and Apache Superset. Users include Unfolded (acquired by Foursquare), Uber, and Carto. And there are many more companies in the mobility space that are using kepler.gl internally for geospatial analysis.

More from OpenJS World 2022 and the OpenJS Foundation: Testing and Security

The OpenJS Foundation recently announced that popular JavaScript testing framework Jest is joining as an Impact Project. Jest and its assets are being donated proudly by Meta Open Source. Jest is a JavaScript testing framework. It allows you to write tests with an API with little configuration. Jest currently has over 17 million weekly downloads and 38,000+ GitHub stars, making it the most used testing framework in the JavaScript ecosystem. It consistently ranks as one of the JavaScript libraries with the highest satisfaction, and is used by companies of all sizes including Amazon, Google, Meta, Microsoft, and Stripe. Jest 28 was just released.

Open Source Security Foundation (OpenSSF) selected Node.js as its initial project to improve supply chain security. Node.js is the first open source community to be supported by OpenSSF’s Alpha-Omega Project. Alpha-Omega committed $300k to bolster the Node.js security team and vulnerability remediation efforts through the rest of 2022, with a focus on supporting better open source security standards and practices.

Maintainers across the OpenJS Foundation-hosted projects through their Cross Project Council are also seeking to leverage its better together approach by sharing best practices, guidance, and support among OpenJS and other JavaScript projects in the ecosystem. Today they announced the new OpenJS Security Working Group comprised of members from across the CPC and OpenJS leadership.

Together, they hope to reduce the risk and set ambitious security goals for all OpenJS projects. They intend to further define, document, communicate, and measure in an open and transparent way.

More specifically, the CPC security goals include:

  • Strengthening the security and sustainability of the OpenJS projects to improve the software supply chain.
  • Increasing security contributions (time, people and resources) from public and private organizations, and security communities.
  • Increasing collaboration among security communities and JavaScript project maintainers.

OpenJS Resources

Click here to learn more about how you could be a part of the OpenJS Foundation, and view these additional resources:

About OpenJS Foundation

The OpenJS Foundation is committed to supporting the healthy growth of the JavaScript ecosystem and web technologies by providing a neutral organization to host and sustain projects and collaboratively fund activities for the benefit of the community at large. The OpenJS Foundation is currently home to 39 open source JavaScript projects, including Appium, Dojo, Electron, jQuery, Node.js, and webpack. It is supported by 30 corporate and end-user members, including GoDaddy, Google, IBM, Intel, Joyent, Microsoft, and Netflix. These members recognize the interconnected nature of the JavaScript ecosystem and the importance of providing a central home for projects which represent significant shared value. 

About Linux Foundation

Founded in 2000, the Linux Foundation is supported by more than 1000 members and is the world’s leading home for collaboration on open source software, open standards, and open hardware. Linux Foundation projects like Linux, Kubernetes, Node.js, and more are considered critical to developing the world’s most important infrastructure. Its development methodology leverages established best practices and addresses the needs of contributors, users, and solution providers to create sustainable models for open collaboration. For more information, please visit their website.

Jest Project Moves to OpenJS Foundation with Meta Open Source Contribution

By Announcement, Blog, Jest

The OpenJS Foundation is announcing that popular JavaScript testing framework Jest is joining as an Impact Project! Jest and its assets are being donated proudly by Meta Open Source.

Jest is a JavaScript testing framework. It allows you to write tests with an API with little configuration. As the Jest team likes to say, Jest makes testing “delightful.”

Jest currently has over 17 million weekly downloads and 38,000+ GitHub stars, making it the most used testing framework in the JavaScript ecosystem. It consistently ranks as one of the JavaScript libraries with the highest satisfaction, and is used by companies of all sizes including Amazon, Google, Meta, Microsoft, and Stripe. Jest 28 was just released.

“We are excited to welcome Jest into the OpenJS Foundation. Building a community requires dedicated people and great technology, which Jest has been doing since 2011. Jest is used commonly in enterprise production environments and open source projects and will benefit from a reliable structure for open governance and legal support,” said Robin Ginn, OpenJS Foundation executive director. “As the vendor-neutral home to almost 40 open source projects, Jest already fits in well with our ecosystem of projects. We look forward to providing resources and support to Jest to help their community to grow.”

“Jest has been working to follow the OpenJS Foundation principles around operating transparently, openly, and collaboratively. Joining the OpenJS Foundation allows our team to make greater investments to grow contributors and impact,” said Rick Hanlon, Front End Engineer on React Core at Meta and Jest Core Contributor. “This is a big step forward for Jest. I want to thank the sponsors and contributors who have helped get us this far and who will continue to play an important role in Jest’s next stage.”

“We have been a community-led project for quite some time. We believe in community-led development, and continually strengthening our community, and joining the OpenJS Foundation will help us strengthen and broaden our community,” said Simen Bekkhus, developer at Folio and Jest lead maintainer. “I see this as a very positive change and a way for the Jest community to flourish.”

“Big thanks to Meta Open Source. JavaScript developers worldwide will benefit from having Jest be part of the OpenJS Foundation. This move strengthens the JavaScript ecosystem and will help the Jest developer community to continue to grow,” said Joe Sepi, OpenJS Foundation Cross Project Council chairperson and Open Tech Program Director at IBM. “Congratulations to the whole Jest team and community.”

“By moving to the OpenJS Foundation, we are becoming more open and welcoming to first-time community members and contributors. Open governance is key to the next step in our evolution as a community,” said Christian Bromann, OpenJS Foundation Cross Project Council Member representing the WebdriverIO project and Founding Engineer, Stateful, Inc. “I personally have learned you can earn a living by following your passion in life. We are making Jest a more inclusive community because we believe this is the best way to build a strong, vibrant community that will allow you to follow your passion.”

Just like all OpenJS projects, Jest is entering the foundation as an incubating project while they complete the on-boarding checklist process. Projects in this phase can be designated as an At-Large or Impact Stage project.

There are four different types of projects hosted by the OpenJS Foundation: Impact projects are generally large, mature projects. At-Large projects are new, stable projects with minimal needs. Incubation projects are in the process of joining the OpenJS Foundation. And Emeritus projects have completed their lifecycle and are retired. In addition, the CPC oversees an Incubation process for projects which seek to be hosted by the OpenJS Foundation.

To find out how your project can join the OpenJS Foundation see: https://openjsf.org/projects/ 

Jest Resources

OpenJS Resources

Click here to learn more about how you could be a part of the OpenJS Foundation, and view these additional resources:

About OpenJS Foundation

The OpenJS Foundation is committed to supporting the healthy growth of the JavaScript ecosystem and web technologies by providing a neutral organization to host and sustain projects and collaboratively fund activities for the benefit of the community at large. The OpenJS Foundation is currently home to 39 open source JavaScript projects, including Appium, Dojo, Electron, jQuery, Node.js, and webpack. It is supported by 30 corporate and end-user members, including GoDaddy, Google, IBM, Intel, Joyent, Microsoft, and Netflix. These members recognize the interconnected nature of the JavaScript ecosystem and the importance of providing a central home for projects which represent significant shared value. 

About Linux Foundation

Founded in 2000, the Linux Foundation is supported by more than 1000 members and is the world’s leading home for collaboration on open source software, open standards, and open hardware. Linux Foundation projects like Linux, Kubernetes, Node.js, and more are considered critical to developing the world’s most important infrastructure. Its development methodology leverages established best practices and addresses the needs of contributors, users, and solution providers to create sustainable models for open collaboration. For more information, please visit their website.

About Meta Open Source

Jest is one of over 800 active projects from Meta within the worldwide open source community. Meta has long been a supporter of open source software and the open source community. In addition to making a lot of its engineering work publicly available including sharing research, code, designs, and engineering work, Meta also invest in organizations that are important for the long-term sustainability of the open source ecosystem. To learn more about Meta’s open source efforts, please visit Meta Open Source