Weekly Update 122: More languages, more opportunities
This is a copy of our weekly newsletter for developers which you can subscribe to here.
Thank you for the great response to our request for Language Leaders last week. We're pleased to welcome the following DuckDuckHack language leaders!
- rasikapohankar (C)
- sahildua2305 (C++)
- hchienjo (CSS)
- akanshgulati (HTML)
- marti1125 (Java)
- GuiltyDolphin (Perl)
- gautamkrishnar (PHP)
- PJHampton (Python)
- rajkmaurya111 / raj-maurya (R)
- kotoshenya (Ruby)
Whether there's a language leader or not, everyone is invited to help improve the search experience for the languages above. If you'd like to help, you can:
- Look at the new and active projects, and open issues in the language overview pages.
- Tell us the best websites, frameworks, tools, or suggest new Instant Answers and projects in the brainstorming pages.
- Find other ways to contribute in the "How to contribute" guide.
And now, here are some specific issues we're currently looking for help with...
- Better results for LESS searches
If you work with CSS, please tell us what kinds of searches you do for LESS. What websites do you get your information from?
- C Cheat Sheet: Reduce confusion for beginners
There's a good suggestion to add a notice or section clarifying string syntax.
- Convert IAs to use new Fathead template elements
There are several issues open for this so lots of opportunities to play with the new template elements!
- jQuery: Show examples and args descriptions
The jQuery IA is already popular, but we could improve it even further.
Following on from last week's NodeJS tip, here's another handy hint, this time to help keep your website or app secure.
If you're using the popular Express framework, there's middleware called Helmet that provides a good base layer of protection. Best of all, you can install and use it really easily:
npm install helmet --save
Once installed, you simply refer to it in your code (e.g.
app.js) like so:
var helmet = require('helmet');
This will provide various secure features such as:
- Protection against cross-site scripting attacks (XSS)
- Headers to prevent man-in-the-middle attacks (MITM) and enforce secure connections
- Prevention of malicious MIME sniffing
- Removal of
X-Powered-Byheader to hide server information
- Protection against clickjacking
When developing a new web app or site, security is sometimes an afterthought. Helmet makes it easy to add a good foundation upon which you can build the security you need right from the start. Whether you use Express or not, their website has a useful list of best practices for NodeJS security and details of what Helmet provides.
And with that, stay safe and enjoy your weekend!
- The DuckDuckGo Staff