Blog | Juanchi.dev | Juanchi.dev

Tag: nodejs

9 articles

pnpm vs npm vs yarn vs bun: The Real Comparison Nobody Gives You in 2025

I used all four in real projects. One wrecked a monorepo at 3am. Another saved my ass in production. Here's the unfiltered truth about every major package manager in 2025.

8 min942

ExperimentsTypeScriptpnpm

pnpm workspaces: the CI cache that survived the fix and cost me 40 minutes per build

The CI was green. The cache wasn't working. Forty minutes per build run because pnpm couldn't find the store in GitHub Actions. Here are the logs, the before/after YAML, and the exact configuration that brought it down to 8 minutes.

8 min84

ExperimentsTypeScriptnode.js

Themis vs Web Crypto API: TypeScript Encryption Tradeoffs That Are Not Obvious

Comparing Themis with Web Crypto API is not academic: it changes bundle size, threat model, key rotation, and where each responsibility should live. The tradeoffs are less obvious than they look.

9 min157

Experimentsnpmnode.js

Supply chain npm vs PyPI: I compared both simulations and the most dangerous vector isn't what everyone thinks

I ran supply chain attack simulations on npm and PyPI separately. When I put them side by side, the pattern that emerged made me uncomfortable: the ecosystem everyone watches isn't the most vulnerable one. Here's the cross-meta-analysis with real numbers.

9 min185

Experimentsnode.jsdocker

Docker Compose in Production in 2026: I Ran My Real Stack for 30 Days and Here Are the Numbers

A HN thread with 398 points blew up the debate again: is Docker Compose in production legitimate or an antipattern? I ran my real stack on Railway for 30 days and brought actual numbers. Spoiler: it's not embarrassing if you know exactly what it costs you.

8 min269

ExperimentsTypeScriptPerformance

Bun Migrates from Zig to Rust: What My Real Benchmarks Say About Whether It Matters

489 + 506 points on HN. Bun ports to Rust and everyone has a take. I ran the benchmarks on my real stack before opening my mouth. The uncomfortable result: the underlying language matters less than the hype suggests.

8 min197

HistoryTypeScriptnode.js

I Optimized a Docker Image from 1.58GB to 186MB — And Silently Broke Hot Reload for Two Days

I shrunk a Docker image from 1.58GB to 186MB with multi-stage builds. The image was perfect. Hot reload stopped working. Nobody told me for two days. Here's what I broke and how to never repeat it.

6 min285

Reflectionsnode.jsFull Stack

Quantum Computing for the Web Dev Who Never Studied Physics: When Should You Actually Worry?

A 289-point HN post on quantum cryptography left me with a question I can't honestly answer: when should a full-stack developer start worrying about SSL, hashing, and tokens in a post-quantum world?

10 min489

TutorialsTutorialTypeScript

Docker for Node.js Developers: From Zero to Production Without Losing Your Mind

Three broken Dockerfiles, two production outages, and one sleepless night — that's what it cost me to really understand Docker with Node.js. Here's everything I learned so you don't have to pay the same price.

9 min718