Echo JS 0.11.0

Not a single item has anything to do with JavaScript.

"instead of downvoting"

Disagree. Maybe in *addition* to downvoting, but the key thing is getting them off of the front page because then there's no motivation to keep posting spam.

We had a similar problem on http://www.rubyflow.com/ - a similar Ruby community site. Our solution for a long time was to only include items from "approved" users in the RSS feed. This worked very well but then people got annoyed they weren't added to the approved list and we didn't have enough mods to catch up with it.

So now we have the RSS feed on a 3 hour delay from the live site which means spammy posts are often reported or moderated away before they hit the RSS feed. It's not absolutely ideal but works given the circumstances. To create such a delay involves only the most basic of tweaks to the query that fetches the items for the RSS feed.

9.7.1 will be out very soon due to a broken package file in 9.7.0: https://twitter.com/rvagg/status/969385308427923456

Now officially covered at https://reactjs.org/blog/2018/03/01/sneak-peek-beyond-react-16.html

https://medium.com/dailyjs/reacts-%EF%B8%8F-new-context-api-70c9fe01596b is a slightly more up to date version of this as Kent needed to make some tweaks, he told me.

Now imagine someone malicious drawing a pixel perfect Chrome browser that someone thinks is a normal browser, browses to their "bank" site, and enters credentials. Oops. I'm not even sure how you could protect against an attack like that..

Change URL to actual source at https://www.codementor.io/abelagoi/a-simple-explanation-of-express-middleware-ej4m8knsf ?

It was heavily railed against in JavaScript: The Good Parts which had a huge effect I suspect.