Potluck - JS Web Components Security They took our jobs!

Published: Sept. 26, 2018, 1 p.m.

It\u2019s another potluck episode in which Wes and Scott answer your questions! This month - all things JS, go-to dev stacks, website security and the ever-changing nature of development.

Mlab - Sponsor

mLab is the leading Database-as-a-Service for MongoDB, powering over half a million deployments worldwide. Wes and Scott use mLab to host their own databases as well as take care of backups, security, scaling and performance. Try out a sandbox database on your next mongoDB project \u2192\xa0https://mlab.com.

Sanity.io\xa0- Sponsor

Sanity.io\xa0is a real-time headless CMS with a fully customizable Content Studio built in React. Get up and running by typing\xa0npm i -g @sanity/cli && sanity init\xa0in your command line. Get an awesome supercharged free developer plan on\xa0sanity.io/syntax.

Show Notes

3:33 - Would you ever consider doing a live Syntax show?

4:31 - What are your thoughts on Flutter? Does React Native have some solid competition now?

9:43 - What are your website security essentials for static and dynamic sites? What\u2019s the deal with forms? Is it bad to put a form on my site with no server-side validation?

14:55 - Do you have a \u2018go-to\u2019 stack when building new web apps? If so, what is it and how would you go about choosing the right stack for the project?

  • Scott - Gatsby for sites / Meteor Apollo, React, MongoDB for db needing accounts sites
  • Wes - Next.js, Express Backend + either MongoDB, DiskDB or Prisma (or hasura)

21:51 - What are your thoughts on 100 Days of Code Challenge?

25:05 - I really have been learning a lot of React recently and have been wondering what is the difference between Next.js, Gatsby.js and vanilla React?

  • Dynamic vs static. What are your needs, how often does the content change.

  • Next.js

    • Use for dynamic needs
    • It can do static exports too
    • Convert to markdown
    • Nothing special other than Routing and SSR (Server request getInitialProps)
  • Gatsby.js

    • Use for static needs
    • Gatsby has lots of adapters

30:38 - What are websockets and when should they be used?

  • A request that is always open - it responds to events instead of pinging, pushing or pulling data

35:15 - I would love to hear your take on PWAs. Do either of you have any experience with building or using them?

40:16 - I\u2019m a nervous newbie who\u2019s concerned about doing a web app that accepts payments or sensitive information. How can I know I\u2019ve done everything to create a secure website and also protect myself from being sued by the client if their website gets hacked? I\u2019m trying to be a jam stack developer so I\u2019m looking at things like\xa0Snipcart\xa0and\xa0Stripe

  • Don\u2019t save sensitive info in plain text. Use services that make it tough to do that until you are confident.
  • Look up PIPEDIA

43:23 - What is a JavaScript generator? I heard that async/await creates a \u201cgenerator\u201d under the hood.

  • Pausable function that can return multiple values - call .next() on it

46:54 - Are web components worth it in 2018?

49:52 - How soon the designers replace React Developers with the invent of tools like Framer X?

56:52 - Have you, or anyone you know ever thought of quitting the industry because of difficulties you have run into?

\xd7\xd7\xd7 SIIIIICK \xd7\xd7\xd7 PIIIICKS \xd7\xd7\xd7 Shameless Plugs Tweet us your tasty treats!