Web Vital API, by @ThisIsLearning:

https://www.youtube.com/watch?v=3Q9Quz8IZoU

Please, Can We Have ARIA Notify, by @NicMakesStuff:

https://www.nicchan.me/blog/please-can-we-have-aria-notify/

Dark Sky is gone. NOAA continues to be cut. And yet, one guy rebuilt a weather API used by 40K+ devs & 80M+ requests/month — in his spare time.

This is a story about resilience, infrastructure, and kindness as punk rock.

The Indie API Forecasting Your Future
https://netapinotes.com/the-indie-api-forecasting-your-future/

How to build secure and scalable remote MCP servers | by Den Delimarsky.

https://github.blog/ai-and-ml/generative-ai/how-to-build-secure-and-scalable-remote-mcp-servers/

Modern Node.js Patterns for 2025, by (not on Mastodon or Bluesky):

https://kashw1n.com/blog/nodejs-2025/

Swagger Auto-Generation on MCP Server | by Justin Yoo.

https://techcommunity.microsoft.com/blog/azuredevcommunityblog/swagger-auto-generation-on-mcp-server/4432196

When Can I Use Temporal?, by (not on Mastodon or Bluesky):

https://computus.org/when-can-i-use-temporal/

One of the best things about Flickr is the longevity of its APIs… and that tools like BigHugeLabs' FlickrDNA still work!

https://bighugelabs.com/dna.php?username=juandesant

Microsoft 365 Copilot APIs: Unlocking enterprise knowledge for AI with the Retrieval API — Now in Public Preview.

https://devblogs.microsoft.com/microsoft365dev/microsoft-365-copilot-apis-unlocking-enterprise-knowledge-for-ai-with-the-retrieval-api/

Dev Proxy v0.29 with refactored architecture, MCP server, and exposed LM prompts | by Waldek Mastykarz & Garry Trinder.

https://devblogs.microsoft.com/microsoft365dev/dev-proxy-v0-29-with-refactored-architecture-mcp-server-and-exposed-lm-prompts/

File encryption with a browser.

I've been exploring the #WebCryptoAPI and I'm impressed!

When combined with the #FileSystemAPI, it offers a seemingly secure way to #encrypt and #store files directly on your device. Think #localstorage, but with #encryption!

I know #webapps can have #security vulnerabilities since the code is served over the web, so I've #OpenSourced my demo! You can check it out, and it should even work if #selfhosted on #GitHubPages.

Live Demo: https://dim.positive-intentions.com/?path=/story/usefs--encrypted-demo

Demo Code: https://github.com/positive-intentions/dim/blob/staging/src/stories/05-Hooks-useFS.stories.js

Hook Code: https://github.com/positive-intentions/dim/blob/staging/src/hooks/useFS.js

IMPORTANT NOTES (PLEASE READ!):
* This is NOT a product. It's for #testing and #demonstration purposes only.
* It has NOT been reviewed or audited. Do NOT use for sensitive data.
* The "password encryption" currently uses a hardcoded password. This is for demonstration, not security.
* This is NOT meant to replace robust solutions like #VeraCrypt. It's just a #proofofconcept to show what's possible with #browser #APIs.

Dev Proxy v0.28 with LLM usage and costs tracking | by Waldek Mastykarz & Garry Trinder.

https://devblogs.microsoft.com/microsoft365dev/dev-proxy-v0-28-with-llm-usage-and-costs-tracking/

Last April, @dontcallmeDOM stressed the need for the web community to address #AI's growing impact on the Web. Previous @w3c report highlighted challenges like synthetic content, bias, #security, #sustainability, and data consent.
https://www.w3.org/reports/ai-web-impact/

Progress has been made with ML-based #APIs such as #WebNN and Prompt API. New concerns include AI agents, which pose risks to trust, #privacy, #safety, and the web economy.

Watch "AI Impact on the Web: updates": https://youtu.be/dniPpsCRQgI

"Recent advances in operating system (OS) agents enable vision-language models to interact directly with the graphical user interface of an OS. These multimodal OS agents autonomously perform computer-based tasks in response to a single prompt via application programming interfaces (APIs). Such APIs typically support low-level operations, including mouse clicks, keyboard inputs, and screenshot captures. We introduce a novel attack vector: malicious image patches (MIPs) that have been adversarially perturbed so that, when captured in a screenshot, they cause an OS agent to perform harmful actions by exploiting specific APIs. For instance, MIPs embedded in desktop backgrounds or shared on social media can redirect an agent to a malicious website, enabling further exploitation. These MIPs generalise across different user requests and screen layouts, and remain effective for multiple OS agents. The existence of such attacks highlights critical security vulnerabilities in OS agents, which should be carefully addressed before their widespread adoption."

https://arxiv.org/html/2503.10809v1

Make Screen Readers Talk With the ARIA Notify API, by @alex86:

https://www.oidaisdes.org/aria-notify-first-look.en/

JavaScript’s Upcoming Temporal API and What Problems It Will Solve, by (not on Mastodon or Bluesky):

https://waspdev.com/articles/2025-05-24/temporal-api

MCP vs API: Simplifying AI Agent Integration with External Data.

https://www.youtube.com/watch?v=7j1t3UZA1TY