Munich MLOps Community Meetup #13

18.03.2025 | 18:30 - 21:30
@adesso

https://lu.ma/ezhbj8tx

—| #meetup
———————
@angularMunich

‼️ Attention Angular developers! This tool is a game-changer!

Curious if a particular Angular feature works with the version you’re using?

This handy web page offers a quick reference for which features are available in each version, along with their stability status and deprecation details.

https://www.angular.courses/caniuse

Thank you Gérôme Grignon!

#angular #javanoscript #typenoscript #frontend

———
@angularMunich

‼️ Attention: CVE-2025-27789

angular-cli fixes a security report: GHSA-968p-4wvh-cqc8

Affected versions:

- 17.3.13
- 19.2.3
- 18.2.15

🆕 In angular v20 exponential operator will be supported on template.


PR-1, PR-2

#angular #angular20

———
@angularMunich

🆕 New feature in angular 20: Dynamic component supports bindings and directives.

PR

#angular #angular20

———
@angularMunich

One PUT Request to Own Tomcat: CVE-2025-24813 RCE is in the Wild

Why This Exploit is So Dangerous
This attack is dead simple to execute and requires no authentication. The only requirement is that Tomcat is using file-based session storage, which is common in many deployments. Worse, base64 encoding allows the exploit to bypass most traditional security filters, making detection challenging.
https://vulners.com/wallarmlab/WALLARMLAB:9FB82F0F3D6591655739A548C201E59B

#security 

📚 Angular Signals vs. RxJS

or "toObi-toSi" Pattern will be more popular now...


https://angularexperts.io/blog/signals-vs-rxjs

—| #angular #ToObiToSi #RxJS
———————————————
@angularMunich

Friendly reminder for tomorrow👆🏻 😉

🆕 #angular release v19.2.3!

🆕 #angularCLI release v19.2.4!

https://www.youtube.com/watch?v=nLyR2DS27RE&ab_channel=NgAsiaAngular

Thank you @Ilyoskhuja!

🫶🏻 React vs everyone!



PS: no one - me at weekend 😊 happy last minutes 😊

———
@angularMunich

🔥 Frontend System Design – Must-Know Topics for FAANG Interviews! 🚀

💡 Frontend system design interviews are as critical as backend ones at Google, Meta, Amazon & top startups.

If you struggle with:

❌ Breaking down scalable UI systems
❌ CSR vs. SSR vs. ISR vs. SSG
❌ Handling high concurrency & real-time updates
❌ Optimizing state management & caching

Then this is for you! 🎯

🚀 16+ Real-World UI Challenges to Ace System Design Interviews

🔎 AutoComplete (Google Search, YouTube)
✅ Debouncing & throttling
✅ Trie vs. prefix trees for search
✅ Backend vs. frontend caching

🚖 Cab Booking (Uber, Ola)
✅ Live tracking via WebSockets
✅ Real-time driver updates
✅ Surge pricing on frontend

💬 Chat App (WhatsApp, Slack)
✅ WebSockets vs. Long polling
✅ Offline sync & message queues
✅ End-to-end encryption

📧 Email App (Outlook, Gmail)
✅ Virtualized inbox for large datasets
✅ Push notifications & threading
✅ Search indexing & filtering

🍔 Food Delivery (Zomato, Uber Eats)
✅ Real-time order tracking
✅ Location-based recommendations
✅ Optimized image & menu loading

📝 Google Docs (Concurrent Editing)
✅ CRDTs vs. OT
✅ Multi-user sync & conflict resolution
✅ Large document rendering

📊 Google Sheets (Excel Alternative)
✅ Virtualized rendering
✅ Undo/redo implementation
✅ Formula parsing & live collaboration

📸 Image Sharing (Instagram, Pinterest)
✅ Lazy loading & CDN caching
✅ Optimized image formats
✅ Handling high concurrency

🎵 Music Streaming (Spotify, Apple Music)
✅ Adaptive buffering & preloading
✅ Offline mode & caching
✅ Personalized recommendations

👨‍💻 Online Code Editor (VS Code Web)
✅ Real-time collaboration
✅ Syntax highlighting
✅ WebAssembly execution

📌 Pinterest (Masonry Layout Optimization)
✅ Efficient image rendering
✅ Infinite scroll vs. pagination
✅ Grid layout performance

📊 Poll Widget (LinkedIn, Twitter)
✅ Real-time vote updates
✅ Accessibility & animations
✅ Handling high engagement

✍️ Rich Text Editor (Notion)
✅ Draft.js vs. Slate.js
✅ Complex formatting & shortcuts

🛫 Travel Booking (Airbnb)
✅ Dynamic search & pricing
✅ Caching strategies
✅ Secure checkout flows

🎥 Video Conferencing (Zoom)
✅ WebRTC for real-time video
✅ Latency & adaptive streaming
✅ Screen sharing & backgrounds

📺 Video Streaming (Netflix, YouTube)
✅ Adaptive bitrate streaming
✅ CDN caching for fast delivery
✅ Handling millions of users

🛍 E-commerce (Amazon, Flipkart)
✅ CSR vs. SSR for SEO
✅ Optimized checkout flows
✅ High-performance search & filtering

⚡️ How to Prepare?
✅ Break UI systems into scalable components and refer greatFrontend
✅ Understand trade-offs: CSR vs. SSR, Caching, State Management

‼️ATTENTION! Next.JS: CVE-2025-29927 (9.1)

https://zhero-web-sec.github.io/research-and-things/nextjs-and-the-corrupt-middleware

Looks like an internal header can be used from the outside bypassing a lot of authentication checks...

Workaround:

strip the header from external requests! (in your proxy/gw/waf) If patching to a safe version is infeasible, we recommend that you prevent external user requests which contain the x-middleware-subrequest header from reaching your Next.js application.

Affected header:

x-middleware-subrequest

#security

———
@angularMunich

𝙰𝚗𝚐𝚞𝚕𝚊𝚛 𝚟𝟸0 𝚝𝚛𝚢𝚒𝚗𝚐 𝚝𝚘 𝚍𝚎𝚜𝚝𝚛𝚘𝚢 𝚖𝚢 𝚖𝚒𝚗𝚍...

🔘 𝚞𝚜𝚎𝚛.𝚝𝚜 is a component
🔘 𝚞𝚜𝚎𝚛.𝚝𝚜 is a service with requests for backend
🔘 𝚞𝚜𝚎𝚛.𝚝𝚜 is a file describing the user type/interface
🔘 𝚞𝚜𝚎𝚛.𝚝𝚜 is a file with utilities for some mappings necessary for the user entity
🔘 𝚞𝚜𝚎𝚛.𝚝𝚜 is a file with the user class to turn it into a DTO

To avoid confusion, we will 𝐜𝐫𝐚𝐦 everything into one file!

PR-1: kick component
PR-2: kick service

#angular #angularjs

———
@angularMunich

Hey #youtube! What are you doing with my playlist?

99% are

All content is AI-generated, edited and mastered by {{ userName }}.

Any real music bands exists in 2025?

#offtopic #music