1002: The Real Pricing of LLMs

Scott and Wes break down the “Mini Shai-Hulud” supply chain attack that compromised TanStack and other popular npm packages through a clever GitHub Actions cache poisoning exploit; a self-propagating worm that stole credentials and persisted through Claude Code hooks and VS Code tasks. They also cover how developers can protect themselves using pnpm’s security defaults, dev containers, and other practical defenses. Show Notes 00:00 Welcome to Syntax! 00:25 Understanding the Shai-Hulud Worm Post Mortem of Shai Hulud Attack 02:47 Mechanics of the Attack: GitHub Actions and Cache How the attack happened Who Was Involved in the Attack Several npm latest releases are compromised Socket.dev Step Security 05:44 Brought to you by Sentry.io 06:09 Propagation and Impact of the Worm 09:30 Preventative Measures for Developers Dead Man’s Switch 12:33 The Role of Package Managers in Security Block Exotic Subdeps 18:39 Using Dev Containers Why You Should Use Dev Containers Scott Tolinski’s Security Review 20:57 Conclusion and Final Thoughts Sentry has Skills! Hit us up on Socials! Syntax: X Instagram Tiktok LinkedIn Threads Wes: X Instagram Tiktok LinkedIn Threads Scott: X Instagram Tiktok LinkedIn Threads Randy: X Instagram YouTube Threads

Scott and Wes chat all things agent skills for web developers, sharing their favorites for everything from CSS animations and HTML generation to logo extraction, marketing copy, and video creation. Whether you’re just getting started with AI-powered development or looking to level up your workflow, this episode is packed with practical skills you can put to use today. Show Notes 00:00 Welcome to Syntax! 01:33 Hot Tip Skill 05:55 CSS Motion Systems 08:17 Agent Browser Skill 09:30 HTML Skill 12:01 Extract Logos Skill 13:34 Dex Task Skill 14:50 Remotion and Hyper Frames Skills Syntax Episode 550 with Remotion 16:22 Discussion on AI and Design Skills 18:50 Marketing Skills and Copywriting 23:01 Final Thoughts and Resources 24:10 Brought to you by Sentry.io Sentry Skills Hit us up on Socials! Syntax: X Instagram Tiktok LinkedIn Threads Wes: X Instagram Tiktok LinkedIn Threads Scott: X Instagram Tiktok LinkedIn Threads Randy: X Instagram YouTube Threads

In this potluck episode of Syntax, Wes and Scott answer your questions about LLM usage-based pricing, security risks from malicious code in interviews, staying current in a fast-moving dev landscape, a new CSS linter, managing Node environments and tooling without losing your mind, and more! Show Notes 00:00 Welcome to Syntax! 01:17 Copilot’s new usage-based pricing and the end of cheap AI Model multipliers for annual Copilot Pro and Copilot Pro+ subscribers 08:53 Why Syntax dropped clever ad transitions 10:33 Debugging issues on the Syntax website with Sentry 12:51 Brought to you by Sentry.io 13:01 Getting hacked through a fake recruiter and malicious repos Adib Hanna’s hacking story scammer.md DeskPad 17:57 How to catch up after stepping away from dev 25:10 React components vs native browser APIs 32:41 New CSS linting tools and Project Wallace updates csskit 36:06 How to interview developers in the age of AI 41:21 Managing Node, package managers, and dev environments 46:59 Sick picks + shameless plugs Sick Picks Scott: ZEISS Lens Care KeyboardCleanTool Wes: Amaran Halo 100x Shameless Plugs Syntax YouTube Channel Hit us up on Socials! Syntax: X Instagram Tiktok LinkedIn Threads Wes: X Instagram Tiktok LinkedIn Threads Scott: X Instagram Tiktok LinkedIn Threads Randy: X Instagram YouTube Threads

Scott and Wes tackle the all-too-real stress of crunch time as a web developer—how to handle looming deadlines, avoid sloppy shortcuts, and stay methodical when everything feels like it’s falling apart. They share practical tips on planning, communicating, cutting scope, asking for help, and preventing the chaos from happening again next time. Show Notes 00:00 Welcome to Syntax! 02:53 The Importance of Planning and Organization. 05:16 Slow Down, Take a Step Back. 06:05 Identifying and Managing Tasks. 08:35 The Role of Communication in Project Management. 11:24 Cutting Features and Managing Expectations. 14:52 The Balance Between Perfectionism and Productivity. 16:42 Getting To Work. 19:31 Updating Tools and Issues As You Go. 22:34 Asking for Help. 25:29 Prevention. 30:22 Communicate Clearly. 32:57 Brought to you by Sentry.io. Hit us up on Socials! Syntax: X Instagram Tiktok LinkedIn Threads Wes: X Instagram Tiktok LinkedIn Threads Scott: X Instagram Tiktok LinkedIn Threads Randy: X Instagram YouTube Threads

Wes and Scott celebrate 1000 episodes of Syntax, reflecting on how the podcast started, the team behind it, memorable moments, listener stats, inside jokes, and how the show has evolved over time—from early recordings and sponsors to supercuts, spooky episodes, and what’s next. Show Notes 00:00 Welcome to Syntax! 02:01 Intro to Kaitlin 03:08 Intro to Randy 06:16 Intro to CJ 09:01 Intro to Niki 10:08 Who “yaps” more, Wes or Scott? 10:28 Brought to you by Sentry.io 18:37 Wes’ supercuts app 24:04 How Syntax got started 28:04 Joining Sentry 29:47 The 6-7 compilation 30:42 The original Syntax doc 38:44 Dead Nuts supercut 38:58 Kaitlin’s journey from Level Up to Syntax 45:30 Where new listeners should start 46:41 The Wordle episode and viral moments 48:24 Most popular Syntax episodes 48:40 The Halloween episodes and spooky stories tradition 50:57 Listener stats by country 55:22 First sponsors and early monetization 57:30 Who edited the early Syntax episodes? 59:25 Will there be a Syntax conference? 01:01:33 How many guests have been on Syntax? 01:02:58 Evolution of Syntax intros 01:07:54 More Syntax supercuts Hit us up on Socials! Syntax: X Instagram Tiktok LinkedIn Threads Wes: X Instagram Tiktok LinkedIn Threads Scott: X Instagram Tiktok LinkedIn Threads Randy: X Instagram YouTube Threads

Scott and Wes break down what makes CSS truly manageable—from preventing style leaks and embracing fluid layouts to choosing the right methodology, whether that’s utility CSS, component-scoped styles, or CSS modules. They also dive into practical tips like leveraging CSS variables, layers, scoping, and tooling to keep your stylesheets clean and scalable. Show Notes 00:00 Welcome to Syntax! 01:31 Understanding CSS Manageability 01:44 This CSS doesn’t leak to other parts of website. 03:41 This CSS is easy to maintain. 05:54 This CSS is reusable. 06:10 Global Solutions Instead of Local Solutions. 07:12 Flexibility and Adaptability in CSS 09:36 Fluid Typography and Responsive Design fluid-type 12:09 Variables and Consistency in CSS 13:40 Brought to you by Sentry.io. 14:14 Values vs Variables. Project Wallace. 18:19 Choosing the Right CSS Methodology 18:48 Utility CSS and Atomic CSS 22:35 Exploring StyleX and Other Approaches Syntax Ep 650. 25:14 Panda CSS. 25:37 Component Scoped CSS: A Preferred Approach 29:08 The Evolution of CSS Modules 34:03 Global CSS: Best Practices Josh Comeau’s CSS Reset. Scott’s Graffiti UI. 38:22 Harnessing CSS Variables 41:33 Understanding CSS Layers 43:52 The Power of CSS Scoping 46:16 Enforcing CSS Standards with Tools Hit us up on Socials! Syntax: X Instagram Tiktok LinkedIn Threads Wes: X Instagram Tiktok LinkedIn Threads Scott: X Instagram Tiktok LinkedIn Threads Randy: X Instagram YouTube Threads

Wes and Scott talk about making AI coding more reliable using deterministic tools like fallow, knip, ESLint, StyleLint, and Sentry. They cover code quality analysis, linting strategies, headless browsers, task workflows, and how to enforce better patterns so AI stops guessing and starts producing maintainable, predictable code. Show Notes 00:00 Welcome to Syntax! Losing two clients in one week 04:49 Code quality tools jscpd.dev knip.dev fallow.tools wallace 14:11 Finding and using components Storybook AI 17:28 Brought to you by Sentry.io 17:42 Finding bugs Sentry CLI Spotlight 19:55 Formatting and linting Vite+ ESLint StyleLint clint 25:41 Headless browsers agent-browser chrome-devtools-mcp Lightpanda 32:11 Tasks and todos dex beads 33:32 Docs Context7 34:22 TanStack Code Mode 36:01 Getting AI to use these tools 38:18 Sick Picks + Shameless Plugs Sick Picks Scott: Leaf Two Razor Wes: Puzzles Shameless Plugs Phases.fm Podcast Hit us up on Socials! Syntax: X Instagram Tiktok LinkedIn Threads Wes: X Instagram Tiktok LinkedIn Threads Scott: X Instagram Tiktok LinkedIn Threads Randy: X Instagram YouTube Threads

Scott and Wes dig into a huge batch of community-submitted projects, from JSON tools and CSS editors to AI agents, view transitions, and everything in between. It’s a rapid-fire showcase of what developers have been building, including picks like Arrow JS, Sugar High, Drift, and a whole lot more. Show Notes 00:00 Welcome to Syntax! Wes’ Bluesky Post Wes’ X Post 01:20 JSON-Alexander. 02:43 FFF - Fastest File Search. 04:44 View Transitions Toolkit. 08:06 Agentation and Svelte Agentation. 11:21 CSS Studio. 13:12 Peon Ping 14:26 Peekdown. 16:03 Dex. 20:22 Content Copilot. 22:16 Opencode Sentry Monitor. pi-sentry-monitor. 24:56 Arrow JS. 29:20 Comark. 33:19 Silly Software Club. 34:05 Sugar High. 36:04 Drift. 37:19 Fallow. 41:20 Edit Mind. 44:46 Clint. 47:18 Honorable mentions. 47:21 Artemisapp. 49:53 Open Screen. 50:14 CanvidHQ. 52:02 Proxybox Zero. Hit us up on Socials! Syntax: X Instagram Tiktok LinkedIn Threads Wes: X Instagram Tiktok LinkedIn Threads Scott: X Instagram Tiktok LinkedIn Threads Randy: X Instagram YouTube Threads

Wes and Scott talk about the latest CSS and browser features, including the Grid Lines API for masonry layouts, HTML in Canvas, name-only container queries, CSS random, search-text styling, and more. Show Notes 00:00 Welcome to Syntax! 00:57 Grid Lines API for masonry-style layouts Introducing CSS Grid Lanes CSS Grid Lanes browser support 03:25 HTML in canvas and next-gen UI effects @jaffathecake @mattrothenberg 11:30 Name-only container queries for scoped styles Name-Only Containers: The Scoping We Needed 14:37 Brought to you by Sentry.io 15:34 Safari removes haptic feedback workaround 17:38 CSS random for dynamic values Rolling the Dice with CSS random() 18:49 Styling find-in-page with ::search-text 21:44 Sticky positioning now works in both axes @una 22:43 Multi-column CSS finally gets usable fixes Looking at New CSS Multi-Column Layout Wrapping Features 24:41 Border shape improvements and new design options @una MadCSS.com 27:09 Why MDN demos need to be better 28:24 Element-scoped view transitions for cleaner animations @bram.us Hit us up on Socials! Syntax: X Instagram Tiktok LinkedIn Threads Wes: X Instagram Tiktok LinkedIn Threads Scott: X Instagram Tiktok LinkedIn Threads Randy: X Instagram YouTube Threads

In this episode, Scott and Wes sit down with Tim Neutkens and Jimmi Lai from the Next.js team to dig into the new Adapters API, what it takes to run Next.js across platforms like Cloudflare and Netlify, and how caching and infrastructure choices affect performance. They also go deep on TurboPack’s internals, why Next.js doesn’t run on Vite, and the evolution of bundling in the framework. Show Notes 00:00 Welcome to Syntax! 01:14 Introduction to Next.js and the Adapter Platform Next.js Across Platforms 02:23 The Adapters API: Features and Community Needs 04:46 Building and Testing the Adapters API 07:37 Infrastructure Requirements for Next.js Apps 11:38 Caching Strategies and Performance Optimization 13:29 The Role of Cache Components in Next.js 17:21 First Steps of Optimizations. 19:48 Blessed Adapters and Community Contributions 22:56 Future Directions and Runtime Support 25:05 Challenges with Different Runtimes and Debugging 26:45 Webpack vs. TurboPack: The Evolution of Next.js 29:45 Why Not Run on Vite? 32:47 Navigating Bundler Challenges 36:59 Building TurboPack: Lessons Learned 41:42 Incremental Compilation and Performance Episode with ByteDance’s Zack Jackson 43:50 Framework Comparisons and Performance Metrics 46:42 Exploring Future Directions for TurboPack 49:44 TurboPack’s Integration and API Development 52:50 Standardization in Bundler Tools 56:52 TurboPack’s Adoption and User Experience 57:49 Sick Picks + Shameless Plugs Sick Picks Tim: Acquired Podcast Jimmy: Hydrangea Coffee Shameless Plugs Jimmy: nextjs-across-platforms Hit us up on Socials! Syntax: X Instagram Tiktok LinkedIn Threads Wes: X Instagram Tiktok LinkedIn Threads Scott: X Instagram Tiktok LinkedIn Threads Randy: X Instagram YouTube Threads