The Code Brew's Weekly Newsletter - Week 5

Welcome to your weekly serving from The Code Brew! This week's top story comes with a bit of a shock: Microsoft has cancelled the .NET Eventing Framework, what Nick Chapsas called The Biggest .NET Feature. It's a major pivot, and we've got the links to help you understand what happened and what it means for the future. But it's not all about what's gone. Microsoft is also pushing forward, exploring native text-to-image AI capabilities in .NET and bolstering security with the rollout of Trusted Publishing on NuGet.org. We also have a fantastic guide from Milan Jovanovic on implementing distributed locking. The industry-wide conversation on AI continues, with Martin Fowler's Thoughtworks weighing in on the trend with their article, To vibe or not to vibe. On the security front, after last week’s npm attack, GitHub has released its official plan for a more secure supply chain. For the frontend folks, Josh Comeau is back with a must-read on the big gotcha with CSS @starting-style, and in a huge win for web standards, Browserslist now officially supports Baseline, making it easier to build for modern browsers. Finally, take a step back with Mark Seemann's timely reminder that productivity is not about lines of code. Grab your coffee, this week is packed. Let's get into it!

This Week’s Favourites

The Big Gotcha With @starting-style - Josh Comeau blog

It’s striking so quickly the industry forgets that lines of code isn’t a measure of productivity - Ploeh Blog

The Biggest .NET Feature Was Just Cancelled (Eventing Framework) - Nick Chapsas Youtube

Dotnet, C#, Azure

Exploring Text-to-Image capabilities in .NET - Microsoft Dotnet Blog

Announcing Aspire 9.5 - Microsoft Dotnet Blog

Little Diary of How JasperFx Helps Our Clients - Jeremy D. Miller Blog

sleep-pc: a .NET Native AOT tool to make Windows sleep after a timeout - Andrew Lock Blog

Keep Hackers Out with Multi-User Authorization for Azure Backups - Cloudtips blog

Batch migrate .sln files to .slnx format across repositories - Meziantou Blog

New Trusted Publishing enhances security on NuGet.org - Microsoft Dotnet Blog

Distributed Locking in .NET: Coordinating Work Across Multiple Instances - Milan Jovanovic Blog

Misc

Anchoring AI to a reference application - Martin Fowler Blog

Cloudflare’s developer platform keeps getting better, faster, and more powerful. Here’s everything that’s new. - Cloudflare blog

Why Is AI Design Bad? - Builder.io Blog

Building beyond the browser: Keeley Hammond on Electron, open source, and the future of maintainership - Github Blog

Preventing the stampede: Request collapsing in the Vercel CDN - Vercel blog

HIBP Demo: Querying the API, and the Free Test Key! - Troy Hunt Blog

CSS Typed Arithmetic - CSS Tricks Blog

A simpler path to a safer Internet: an update to our CSAM scanning tool - Cloudflare blog

Using AI to map hope for refugees with UNHCR, the UN Refugee Agency - Github Blog

Query data on external API requests in Vercel Observability - Vercel blog

GitHub Copilot gets smarter at finding your code: Inside our new embedding model - Github Blog

CRUD-Sourcing is why Your Event Streams Are Bloated - Code Opinion

Our plan for a more secure npm supply chain - Github Blog

To vibe or not to vibe - Martin Fowler Blog

A step-by-step guide to modernizing Java projects with GitHub Copilot agent mode - Github Blog

Building unique, per-customer defenses against advanced bot threats in the AI era - Cloudflare blog

Claimed deployments now include third-party resources - Vercel blog

Supporting the future of the open web: Cloudflare is sponsoring Ladybird and Omarchy - Cloudflare blog

Filter deployments by author - Vercel blog

Browserslist now supports Baseline - web.dev Blog

What’s next for Git? 20 years in, the community is still pushing forward - Github Blog

BotID uncovers hidden SEO poisoning - Vercel blog

Gartner positions GitHub as a Leader in the 2025 Magic Quadrant for AI Code Assistants for the second year in a row - Github Blog

Scaling Muse: How Netflix Powers Data-Driven Creative Insights at Trillion-Row Scale - Netflix Tech Blog

Weekly Update 470 - Troy Hunt Blog

You don’t need quantum hardware for post-quantum security - Cloudflare blog

Cloudflare’s 2025 Annual Founders’ Letter - Cloudflare blog

Have I Been Pwned Demos Are Now Live! - Troy Hunt Blog

Observability Plus replacing legacy Monitoring - Vercel blog

Connect and secure any private or public app by hostname, not IP — free for everyone in Cloudflare One - Cloudflare blog

Empowering Netflix Engineers with Incident Management - Netflix Tech Blog

How AI Is Changing the Software Development Process, and Product - Legit Security Blog

How we made global routing faster with Bloom filters - Vercel blog

YouTube Videos

Combine paths correctly in .NET - Nick Chapsas Youtube

Console Write in Tests is different in C# - Nick Chapsas Youtube

Microsoft Just Fixed the LTS/STS Problem of .NET - Nick Chapsas Youtube

Azure PostgreSQL Flexible Deep Dive - John Savill Youtube

extern alias is awesome in .NET - Nick Chapsas Youtube

Azure Update - 19th September 2025 - John Savill Youtube

HackerNews Posts

Everything that’s wrong with Google Search in one image - Hacker news

Find SF parking cops - Hacker news

Qwen3-Omni: Native Omni AI model for text, image and video - Hacker news

Why is Venus hell and Earth an Eden? - Hacker news

$2 WeAct Display FS adds a 0.96-inch USB information display to your computer - Hacker news

Less is safer: how Obsidian reduces the risk of supply chain attacks - Hacker news

Want to piss off your IT department? Are the links not malicious looking enough? - Hacker news