https://www.infoq.com InfoQ Node.js feed https://www.infoq.com/news/2026/04/module-federation-2-stable/?utm_campaign=infoq_content&utm_source=infoq&utm_medium=feed&utm_term=Node.js <img src="https://res.infoq.com/news/2026/04/module-federation-2-stable/en/headerimage/generatedHeaderImage-1774870811998.jpg"/><p>Module Federation 2.0, an open-source micro-frontend mechanism introduced with webpack 5, offers significant updates including dynamic TypeScript type hints, decoupled runtime layers, and Node.js support. It enhances compatibility across various bundlers and frameworks. Key features include a Side Effect Scanner and easier integration for remote modules, addressing previous adoption challenges.</p> <i>By Daniel Curtis</i> JavaScript Web Development Node.js Micro Frontends Bundlers Development news Fri, 03 Apr 2026 10:12:00 GMT https://www.infoq.com/news/2026/04/module-federation-2-stable/?utm_campaign=infoq_content&utm_source=infoq&utm_medium=feed&utm_term=Node.js Daniel Curtis 2026-04-03T10:12:00Z /news/2026/04/module-federation-2-stable/en https://www.infoq.com/news/2026/04/axios-supply-chain/?utm_campaign=infoq_content&utm_source=infoq&utm_medium=feed&utm_term=Node.js <img src="https://res.infoq.com/news/2026/04/axios-supply-chain/en/headerimage/generatedHeaderImage-1775126213919.jpg"/><p>On March 31, 2026, two versions of the Axios library were compromised and found to contain a Remote Access Trojan. The malicious packages were published through a hijacked maintainer account. The Axios team is investigating how the breach occurred and has deprecated the affected versions. Security experts emphasize the need for better dependency management.</p> <i>By Daniel Curtis</i> Application Security NPM CVE Web Development Node.js Development news Thu, 02 Apr 2026 13:53:00 GMT https://www.infoq.com/news/2026/04/axios-supply-chain/?utm_campaign=infoq_content&utm_source=infoq&utm_medium=feed&utm_term=Node.js Daniel Curtis 2026-04-02T13:53:00Z /news/2026/04/axios-supply-chain/en