Security News
Sarah Gooding
June 11, 2024
Ecma TC39 (Technical Committee 39) delegates are in Finland this week for their 102nd meeting that is happening over the course of three days, hosted by Mozilla and Aalto University. They are also speaking at local events and conferences during the week.
TC39 is responsible for developing and maintaining the ECMAScript programming language specification. The committee operates on a consensus basis and has the authority to modify the specification as deemed necessary. Minor changes to ECMAScript can be submitted by filing a PR against the ECMA-262 standard repository, but major feature requests happen through a proposal process.
Today several proposals received consensus to advance to the next stage. (The TC39 proposal process includes six stages: a strawperson stage and five “maturity” stages.) Here’s a quick overview of the ones approved on the first day:
Deferring Import Evaluation, previously known as “Lazy Module Initialization,” aims to allow JavaScript imports to be loaded without immediate evaluation. This would enable better performance optimizations by deferring the execution of imported modules until they are explicitly needed in the code.
This change has the potential to improve the performance of large applications by reducing initial load times and avoiding unnecessary CPU work during application initialization. The slides for the presentation on moving the proposal to Stage 2.7 are available as a Google slideshow.
The Error.isError proposal introduces a new method for developers to test if a value is an error instance. The potential use cases cited in the proposal include:
The RegExp Escaping proposal would introduce a RegExp.escape static function, allowing strings to be escaped so they can be safely used inside regular expressions.
The Promise.try proposal suggests adding a new feature in JavaScript called Promise.try. It would allow developers to wrap a function in a Promise for improved error handling, offering a more straightforward way to start promise chains. This method ensures that the function passed to it is executed immediately and returns a promise, making it easier to handle synchronous exceptions and asynchronous operations uniformly.
Today is the first day for agenda items, and there are two more days where the committee plans to discuss and approve new features moving forward through the proposal stages. Other proposed advancements on deck this week include the following:
The committee will also be discussing progress on other proposals without stage advancement:
All open ECMAScript proposals and their current stages are tracked in a table on GitHub with their most recent presentation dates and responsible parties. This document has already been updated with today’s advancements.
For a full overview of the discussion topics, including those unrelated to proposals, check out the agenda for the 102nd meeting of Ecma TC39 on GitHub.
Subscribe to our newsletter
Get notified when we publish new security blog posts!
Security News
The US Justice Department has penalized two consulting firms $11.3 million for failing to meet cybersecurity requirements on federally funded projects, emphasizing strict enforcement to protect sensitive government data.
Security News
ua-parser-js is set to drop the MIT license and adopt a controversial dual AGPLv3 + PRO licensing model in its upcoming v2.0 release, raising significant concerns among developers and enterprise users.
Security News
Researchers recently demonstrated that the npm Registry is vulnerable to cache poisoning combined with DoS, posing significant risks for package availability.
