DEV Community: Benji Darby The latest articles on DEV Community by Benji Darby (@issuecapture). https://dev.to/issuecapture https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F3869976%2F8873e1de-661a-422f-bb1f-67f4c3a3d517.jpeg DEV Community: Benji Darby https://dev.to/issuecapture en Surviving Vercel's Free Tier: 12 Serverless Functions, Zero Waste Benji Darby Thu, 30 Apr 2026 14:11:00 +0000 https://dev.to/issuecapture/surviving-vercels-free-tier-12-serverless-functions-zero-waste-4oh7 https://dev.to/issuecapture/surviving-vercels-free-tier-12-serverless-functions-zero-waste-4oh7 <p>The Vercel Hobby plan gives you 12 serverless functions. That sounds like plenty until you're six months into building a SaaS and you start counting.</p> <p>At <a href="https://issuecapture.com" rel="noopener noreferrer">IssueCapture</a> — a drop-in widget that sends bug reports directly into Jira — we hit this wall faster than expected. Account management, API keys, analytics, Jira OAuth, payments, AI processing, widget submission, system utilities, admin operations. That's already eight distinct domains before you've split anything out.</p> <p>We're currently sitting at 9 of 12 used. Getting there without burning through the limit required being deliberate about how we structure the API layer.</p> <h2> Why the Limit Bites You </h2> <p>Vercel counts any file in <code>api/</code> as a serverless function. The instinct is to create a new file for each endpoint — it's clean, it's what every tutorial shows. But on the Hobby plan, that habit will strand you at the ceiling right when your product is getting interesting.</p> <p>The good news: Vercel only counts top-level <code>api/*.ts</code> files.</p> <h2> Pattern 1: Action-Based Routing </h2> <p>Instead of <code>api/team.ts</code>, <code>api/invites.ts</code>, <code>api/notifications.ts</code>, consolidate into a single endpoint and route by <code>?action=</code>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// api/admin.ts</span> <span class="k">export</span> <span class="k">default</span> <span class="k">async</span> <span class="kd">function</span> <span class="nf">handler</span><span class="p">(</span><span class="nx">req</span><span class="p">,</span> <span class="nx">res</span><span class="p">)</span> <span class="p">{</span> <span class="kd">const</span> <span class="p">{</span> <span class="nx">action</span> <span class="p">}</span> <span class="o">=</span> <span class="nx">req</span><span class="p">.</span><span class="nx">query</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">user</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">getAuthenticatedUser</span><span class="p">(</span><span class="nx">req</span><span class="p">);</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">user</span><span class="p">)</span> <span class="k">return</span> <span class="nx">res</span><span class="p">.</span><span class="nf">status</span><span class="p">(</span><span class="mi">401</span><span class="p">).</span><span class="nf">json</span><span class="p">({</span> <span class="na">error</span><span class="p">:</span> <span class="dl">'</span><span class="s1">Unauthorized</span><span class="dl">'</span> <span class="p">});</span> <span class="k">switch </span><span class="p">(</span><span class="nx">action</span><span class="p">)</span> <span class="p">{</span> <span class="k">case</span> <span class="dl">'</span><span class="s1">team-members-list</span><span class="dl">'</span><span class="p">:</span> <span class="k">return</span> <span class="nf">handleListMembers</span><span class="p">(</span><span class="nx">req</span><span class="p">,</span> <span class="nx">res</span><span class="p">,</span> <span class="nx">user</span><span class="p">,</span> <span class="nx">supabaseAdmin</span><span class="p">);</span> <span class="k">case</span> <span class="dl">'</span><span class="s1">team-members-update-role</span><span class="dl">'</span><span class="p">:</span> <span class="k">return</span> <span class="nf">handleUpdateMemberRole</span><span class="p">(</span><span class="nx">req</span><span class="p">,</span> <span class="nx">res</span><span class="p">,</span> <span class="nx">user</span><span class="p">,</span> <span class="nx">supabaseAdmin</span><span class="p">);</span> <span class="k">case</span> <span class="dl">'</span><span class="s1">team-invites-send</span><span class="dl">'</span><span class="p">:</span> <span class="k">return</span> <span class="nf">handleSendInvite</span><span class="p">(</span><span class="nx">req</span><span class="p">,</span> <span class="nx">res</span><span class="p">,</span> <span class="nx">user</span><span class="p">,</span> <span class="nx">supabaseAdmin</span><span class="p">);</span> <span class="k">case</span> <span class="dl">'</span><span class="s1">notifications-list</span><span class="dl">'</span><span class="p">:</span> <span class="k">return</span> <span class="nf">handleListNotifications</span><span class="p">(</span><span class="nx">req</span><span class="p">,</span> <span class="nx">res</span><span class="p">,</span> <span class="nx">user</span><span class="p">,</span> <span class="nx">supabaseAdmin</span><span class="p">);</span> <span class="k">case</span> <span class="dl">'</span><span class="s1">audit-logs-list</span><span class="dl">'</span><span class="p">:</span> <span class="k">return</span> <span class="nf">handleListAuditLogs</span><span class="p">(</span><span class="nx">req</span><span class="p">,</span> <span class="nx">res</span><span class="p">,</span> <span class="nx">user</span><span class="p">,</span> <span class="nx">supabaseAdmin</span><span class="p">);</span> <span class="nl">default</span><span class="p">:</span> <span class="k">return</span> <span class="nx">res</span><span class="p">.</span><span class="nf">status</span><span class="p">(</span><span class="mi">400</span><span class="p">).</span><span class="nf">json</span><span class="p">({</span> <span class="na">error</span><span class="p">:</span> <span class="dl">'</span><span class="s1">Invalid action</span><span class="dl">'</span> <span class="p">});</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <p>Our <code>api/admin.ts</code> handles 27 distinct actions — team management, domain allowlisting, compliance exports, audit logs, notification CRUD, Jira field lookups, AI theme generation, user suspension, queued submission management. One file, one slot.</p> <h2> Pattern 2: The <code>_lib/</code> Directory </h2> <p>Vercel does not count files in <code>api/_lib/</code> as serverless functions. This is where you put shared code and handler modules:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>api/ _lib/ supabase.ts sentry.ts db-rate-limit.ts handlers/ compliance.ts jira-fields.ts theme-generator.ts ... (17 handler files total) admin.ts ← routes to all of the above submit.ts </code></pre> </div> <p>Handler files are plain TypeScript modules that export functions. They don't register routes, don't deploy independently, don't count toward the limit. The top-level files do the routing.</p> <h2> Pattern 3: <code>.vercelignore</code> for Dev-Only Endpoints </h2> <p>Local test endpoints you don't want in production:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight conf"><code><span class="c"># .vercelignore </span><span class="n">api</span>/<span class="n">test</span>-<span class="n">emails</span>.<span class="n">ts</span> <span class="n">api</span>/<span class="n">test</span>-<span class="n">purchase</span>-<span class="n">email</span>.<span class="n">ts</span> </code></pre> </div> <p>They work locally via <code>vercel dev</code>, never reach production, never consume a slot.</p> <h2> How we organize the client side </h2> <p>On the dashboard, API calls use a consistent pattern:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">async</span> <span class="kd">function</span> <span class="nf">adminAction</span><span class="p">(</span><span class="nx">action</span><span class="p">:</span> <span class="kr">string</span><span class="p">,</span> <span class="nx">body</span><span class="p">?:</span> <span class="nx">object</span><span class="p">)</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">response</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">fetch</span><span class="p">(</span><span class="s2">`/api/admin?action=</span><span class="p">${</span><span class="nx">action</span><span class="p">}</span><span class="s2">`</span><span class="p">,</span> <span class="p">{</span> <span class="na">method</span><span class="p">:</span> <span class="nx">body</span> <span class="p">?</span> <span class="dl">'</span><span class="s1">POST</span><span class="dl">'</span> <span class="p">:</span> <span class="dl">'</span><span class="s1">GET</span><span class="dl">'</span><span class="p">,</span> <span class="na">headers</span><span class="p">:</span> <span class="p">{</span> <span class="dl">'</span><span class="s1">Content-Type</span><span class="dl">'</span><span class="p">:</span> <span class="dl">'</span><span class="s1">application/json</span><span class="dl">'</span> <span class="p">},</span> <span class="na">body</span><span class="p">:</span> <span class="nx">body</span> <span class="p">?</span> <span class="nx">JSON</span><span class="p">.</span><span class="nf">stringify</span><span class="p">(</span><span class="nx">body</span><span class="p">)</span> <span class="p">:</span> <span class="kc">undefined</span><span class="p">,</span> <span class="p">});</span> <span class="k">return</span> <span class="nx">response</span><span class="p">.</span><span class="nf">json</span><span class="p">();</span> <span class="p">}</span> <span class="c1">// Usage</span> <span class="kd">const</span> <span class="nx">members</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">adminAction</span><span class="p">(</span><span class="dl">'</span><span class="s1">team-members-list</span><span class="dl">'</span><span class="p">);</span> <span class="k">await</span> <span class="nf">adminAction</span><span class="p">(</span><span class="dl">'</span><span class="s1">team-invites-send</span><span class="dl">'</span><span class="p">,</span> <span class="p">{</span> <span class="na">email</span><span class="p">:</span> <span class="dl">'</span><span class="s1">new@member.com</span><span class="dl">'</span><span class="p">,</span> <span class="na">role</span><span class="p">:</span> <span class="dl">'</span><span class="s1">member</span><span class="dl">'</span> <span class="p">});</span> </code></pre> </div> <p>One wrapper function, one endpoint, many actions. The abstraction is thin enough that you can see exactly what's happening in the network tab.</p> <h2> The trade-offs </h2> <p><strong>It's less REST-pure.</strong> <code>GET /api/admin?action=team-members-list</code> is not as clean as <code>GET /api/team/members</code>. For a public API, that matters. For an internal dashboard API consumed only by your own frontend, it generally doesn't.</p> <p><strong>Debugging is slightly harder.</strong> When everything goes through one endpoint, your Vercel logs show <code>/api/admin</code> for 27 different operations. We add the action name to Sentry breadcrumbs and log context to make this manageable.</p> <p><strong>Cold starts are shared.</strong> One large function has a longer cold start than 27 small ones. In practice, the admin endpoint stays warm because it handles most dashboard traffic.</p> <p><strong>Latency-sensitive endpoints stay separate.</strong> Our widget submission endpoint (<code>api/submit.ts</code>) is its own function because it's public-facing and needs to be as lean as possible. Don't consolidate everything — consolidate the internal stuff.</p> <h2> The math </h2> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>9 production functions / 12 limit = 3 remaining Those 9 functions serve: - 27 admin actions - 1 public submission endpoint - 1 Jira OAuth flow - 1 API key management - 1 analytics endpoint - 1 payment webhook - 1 AI queue processor - 1 account management - 1 system utilities </code></pre> </div> <p>Without action-based routing, we'd need 30+ functions. With it, we're at 9 with room for 3 more.</p> <p>If you're bootstrapping on Vercel's free tier, the function limit will hit you eventually. Plan for it early. The action-routing pattern is ugly compared to a file-per-route convention, but it works, and it lets you ship a real product without upgrading your plan.</p> <p>If you're on Vercel Hobby and you've found a way around the function limit that isn't action routing, I'd like to know. There's an argument for middleware-based routing that I haven't fully explored.</p> vercel javascript webdev tutorial What to Include in a Bug Report: Console Errors, Network Logs, and Why Templates Aren't Enough Benji Darby Tue, 28 Apr 2026 13:22:00 +0000 https://dev.to/issuecapture/what-to-include-in-a-bug-report-console-errors-network-logs-and-why-templates-arent-enough-4ib5 https://dev.to/issuecapture/what-to-include-in-a-bug-report-console-errors-network-logs-and-why-templates-arent-enough-4ib5 <p>It's standup. Someone picks up a ticket. The title says "Login broken." The description says "See screenshot" but there's no screenshot. Priority is marked "High" — which on this project means nothing, because everything is marked High.</p> <p>The developer spends 20 minutes trying to reproduce, gives up, pings the reporter, waits four hours for a reply: "Oh I think it was in Firefox? Maybe Chrome." The ticket gets deprioritized. The user who reported it loses faith. The cycle repeats.</p> <p>This isn't a process problem. It's a tooling problem.</p> <h2> Why most bug reports fail </h2> <p>The environment context is missing. "It doesn't work" with no browser, OS, viewport size, or URL. The developer has to guess, and their guess is wrong half the time.</p> <p>The console had a red error that would have explained everything. The user didn't know to open DevTools. Even if they did, they wouldn't know which error was relevant.</p> <p>The description is vague. "The page is weird" could mean a CSS misalignment, a broken layout, missing data, or a full crash. Without a screenshot, both sides waste time describing what they're seeing.</p> <p>By the time the developer reads the ticket, the state that caused the bug is gone. The user's session expired, the cache cleared, the deployment rolled forward. Stale reproduction steps are worse than no steps at all because they send you down the wrong path.</p> <p>And the bug was probably caused by a failed API call that returned a 403. The user saw "something went wrong." The developer sees nothing in the logs because the client never reported which endpoint failed.</p> <h2> What a good bug report actually contains </h2> <p>Every bug report that doesn't waste time has these:</p> <ul> <li> <strong>Summary</strong> — one sentence describing the symptom, not the cause</li> <li> <strong>URL</strong> — exact page where it happened</li> <li> <strong>Browser and OS</strong> — including version</li> <li> <strong>Screenshot</strong> — ideally annotated to highlight what's wrong</li> <li> <strong>Console errors</strong> — from the session, not just the moment of reporting</li> <li> <strong>Network failures</strong> — any 4xx/5xx responses from the page</li> <li> <strong>Steps to reproduce</strong> — what the user was doing when it happened</li> <li> <strong>Expected vs actual behavior</strong> — what they thought should happen</li> </ul> <p>That's a lot to ask a human to collect manually. Most won't, and you can't blame them.</p> <h2> Why templates don't work </h2> <p>The common answer is "add a bug report template." Jira templates, GitHub issue templates, Google Forms with required fields.</p> <p>Templates help with structure, but they fail at context. A user filling out "Browser: Chrome" doesn't know their version. They won't open DevTools to copy console errors. They won't check the Network tab. And they'll skip "Steps to reproduce" with "see above" nine times out of ten.</p> <p>The information that matters most — console errors, network failures, browser version, exact URL — is already available in the browser at the moment the user encounters the bug. The problem is that nobody captures it.</p> <h2> The tooling approach </h2> <p>Instead of asking users to collect technical context, collect it for them.</p> <p>Capture console errors from page load — not when the report form opens, but when the page loads. The error that caused the bug happened before the user decided to report it. Patch <code>fetch</code> and <code>XMLHttpRequest</code> to log response status codes. A 500 from <code>/api/checkout</code> is worth more than any written description.</p> <p>Browser metadata (user agent, viewport, URL, timezone) is already available via JavaScript without any user input. Screenshot annotation lets the user capture and draw on their screen — a red circle around "this button does nothing" eliminates 80% of the back-and-forth.</p> <p>And if the report goes straight to the issue tracker with all context attached, nobody has to copy-paste from a form into a ticket. The ticket is the report.</p> <h2> The checklist </h2> <p>If you're evaluating how to improve bug report quality on your team, here's what to audit:</p> <ul> <li>[ ] Are console errors captured automatically, or does the user have to copy them?</li> <li>[ ] Are failed network requests included in reports?</li> <li>[ ] Is the browser/OS/URL captured without user input?</li> <li>[ ] Can users annotate screenshots within the reporting flow?</li> <li>[ ] Do reports go directly into your issue tracker, or is there a manual step?</li> <li>[ ] Is the report captured at the moment of the bug, or after the user navigates away?</li> </ul> <p>If you answered "no" to more than two of these, your bug reports are probably costing your team hours per week in triage and back-and-forth.</p> <h2> Privacy matters </h2> <p>One objection I hear: "We can't capture console errors and network requests — that's sensitive data."</p> <p>This is valid and important. Any system that captures this data needs:</p> <ul> <li> <strong>Domain exclusions</strong> — never log requests to payment processors, auth providers</li> <li> <strong>URL sanitization</strong> — strip query parameters and path segments that contain IDs or tokens</li> <li> <strong>User consent</strong> — the user initiates the report and can see what's being sent</li> <li> <strong>Admin control</strong> — the team admin decides what categories of data are captured</li> </ul> <p>Capturing everything and filtering nothing is a privacy violation. Capturing nothing and asking the user to collect it manually is a productivity violation. The middle ground is automated capture with explicit filtering and user visibility.</p> <p>This is the problem I built <a href="https://issuecapture.com" rel="noopener noreferrer">IssueCapture</a> to solve — a widget that captures all of this automatically when a user reports a bug, and creates the Jira ticket with full context. But the principles apply regardless of what tool you use. Better bug reports come from better tooling, not better templates.</p> <p>The teams I've talked to who stopped fighting bug report quality all did the same thing: they stopped relying on the reporter and started capturing the data automatically.</p> productivity devops webdev discuss Dynamic Import in Production: How We Kept a Bug Reporting Widget Under 40KB Benji Darby Thu, 23 Apr 2026 17:47:00 +0000 https://dev.to/issuecapture/dynamic-import-in-production-how-we-kept-a-bug-reporting-widget-under-40kb-6dl https://dev.to/issuecapture/dynamic-import-in-production-how-we-kept-a-bug-reporting-widget-under-40kb-6dl <p>Every KB you ship to someone else's site is a KB you didn't ask permission to ship. If a dependency is over 20KB gzipped and used in less than 80% of sessions, it should be lazy-loaded.</p> <p>When we built <a href="https://issuecapture.com" rel="noopener noreferrer">IssueCapture</a> — a bug-reporting widget that injects into your customers' production sites — bundle size wasn't a nice-to-have. It was a hard constraint. Nobody gives you a second chance if your widget adds 300KB to their LCP.</p> <p>Our final numbers: 40KB gzipped for the core widget, 13KB for screenshot capture, 107KB for the annotation canvas. The last two load only when the user explicitly needs them. Here's how we structured that.</p> <h2> The problem with eager imports </h2> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">import</span> <span class="p">{</span> <span class="nx">html2canvas</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">html2canvas</span><span class="dl">'</span><span class="p">;</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">fabric</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">fabric</span><span class="dl">'</span><span class="p">;</span> </code></pre> </div> <p>Both libraries land in your initial bundle whether or not the user ever clicks the annotation tool. Fabric.js alone is 107KB gzipped. The fix is dynamic <code>import()</code>.</p> <h2> Dynamic import basics </h2> <p><code>import()</code> is a function that returns a promise. The browser only fetches the module when execution hits that line.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">async</span> <span class="kd">function</span> <span class="nf">openAnnotationTool</span><span class="p">()</span> <span class="p">{</span> <span class="kd">const</span> <span class="p">{</span> <span class="nx">fabric</span> <span class="p">}</span> <span class="o">=</span> <span class="k">await</span> <span class="k">import</span><span class="p">(</span><span class="dl">'</span><span class="s1">fabric</span><span class="dl">'</span><span class="p">);</span> <span class="kd">const</span> <span class="nx">canvas</span> <span class="o">=</span> <span class="k">new</span> <span class="nx">fabric</span><span class="p">.</span><span class="nc">Canvas</span><span class="p">(</span><span class="dl">'</span><span class="s1">c</span><span class="dl">'</span><span class="p">);</span> <span class="p">}</span> </code></pre> </div> <p>The chunk gets fetched on demand, cached by the browser, and never shipped to users who don't need it.</p> <h2> How we structured it </h2> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="kd">let</span> <span class="nx">screenshotModule</span> <span class="o">=</span> <span class="kc">null</span><span class="p">;</span> <span class="kd">let</span> <span class="nx">annotationModule</span> <span class="o">=</span> <span class="kc">null</span><span class="p">;</span> <span class="k">async</span> <span class="kd">function</span> <span class="nf">loadScreenshot</span><span class="p">()</span> <span class="p">{</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">screenshotModule</span><span class="p">)</span> <span class="p">{</span> <span class="nx">screenshotModule</span> <span class="o">=</span> <span class="k">await</span> <span class="k">import</span><span class="p">(</span><span class="dl">'</span><span class="s1">./screenshot</span><span class="dl">'</span><span class="p">);</span> <span class="p">}</span> <span class="k">return</span> <span class="nx">screenshotModule</span><span class="p">;</span> <span class="p">}</span> <span class="k">async</span> <span class="kd">function</span> <span class="nf">loadAnnotation</span><span class="p">()</span> <span class="p">{</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">annotationModule</span><span class="p">)</span> <span class="p">{</span> <span class="nx">annotationModule</span> <span class="o">=</span> <span class="k">await</span> <span class="k">import</span><span class="p">(</span><span class="dl">'</span><span class="s1">./annotation</span><span class="dl">'</span><span class="p">);</span> <span class="p">}</span> <span class="k">return</span> <span class="nx">annotationModule</span><span class="p">;</span> <span class="p">}</span> </code></pre> </div> <p>Caching the module reference means subsequent calls are synchronous lookups — skipping the <code>await</code> entirely on repeat calls keeps your UI snappy.</p> <h2> Loading states matter </h2> <p>The one place developers get lazy-loading wrong is the loading state. If you fire <code>import()</code> on a button click and show nothing for 500ms, users will click again.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">async</span> <span class="kd">function</span> <span class="nf">handleScreenshotClick</span><span class="p">()</span> <span class="p">{</span> <span class="nf">setLoadingState</span><span class="p">(</span><span class="dl">'</span><span class="s1">screenshot</span><span class="dl">'</span><span class="p">);</span> <span class="k">try</span> <span class="p">{</span> <span class="kd">const</span> <span class="p">{</span> <span class="nx">captureScreenshot</span> <span class="p">}</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">loadScreenshot</span><span class="p">();</span> <span class="kd">const</span> <span class="nx">imageData</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">captureScreenshot</span><span class="p">(</span><span class="nb">document</span><span class="p">.</span><span class="nx">body</span><span class="p">);</span> <span class="nf">setScreenshotData</span><span class="p">(</span><span class="nx">imageData</span><span class="p">);</span> <span class="p">}</span> <span class="k">catch </span><span class="p">(</span><span class="nx">err</span><span class="p">)</span> <span class="p">{</span> <span class="nf">setError</span><span class="p">(</span><span class="dl">'</span><span class="s1">Screenshot failed to load</span><span class="dl">'</span><span class="p">);</span> <span class="p">}</span> <span class="k">finally</span> <span class="p">{</span> <span class="nf">setLoadingState</span><span class="p">(</span><span class="kc">null</span><span class="p">);</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <p>The spinner is essential. Users who click and see immediate feedback will wait. Users who click and see nothing will leave.</p> <h2> Preload hints for the likely path </h2> <p>If someone opens the bug report modal, there's a decent chance they'll want a screenshot. Start fetching in the background:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="kd">function</span> <span class="nf">handleModalOpen</span><span class="p">()</span> <span class="p">{</span> <span class="nf">setModalOpen</span><span class="p">(</span><span class="kc">true</span><span class="p">);</span> <span class="k">import</span><span class="p">(</span><span class="dl">'</span><span class="s1">./screenshot</span><span class="dl">'</span><span class="p">).</span><span class="k">catch</span><span class="p">(()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="c1">// Silently ignore prefetch failures</span> <span class="p">});</span> <span class="p">}</span> </code></pre> </div> <p>Or programmatically:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="kd">function</span> <span class="nf">preloadChunk</span><span class="p">(</span><span class="nx">src</span><span class="p">)</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">link</span> <span class="o">=</span> <span class="nb">document</span><span class="p">.</span><span class="nf">createElement</span><span class="p">(</span><span class="dl">'</span><span class="s1">link</span><span class="dl">'</span><span class="p">);</span> <span class="nx">link</span><span class="p">.</span><span class="nx">rel</span> <span class="o">=</span> <span class="dl">'</span><span class="s1">modulepreload</span><span class="dl">'</span><span class="p">;</span> <span class="nx">link</span><span class="p">.</span><span class="nx">href</span> <span class="o">=</span> <span class="nx">src</span><span class="p">;</span> <span class="nb">document</span><span class="p">.</span><span class="nx">head</span><span class="p">.</span><span class="nf">appendChild</span><span class="p">(</span><span class="nx">link</span><span class="p">);</span> <span class="p">}</span> </code></pre> </div> <p>The tradeoff: prefetching consumes bandwidth even if the user never triggers the feature. Use it for high-probability paths only. Screenshot capture is used in roughly 60% of our reports, so the prefetch pays off.</p> <h2> Measuring the actual impact </h2> <p><strong>Lighthouse for LCP and TTI:</strong><br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>npx lighthouse https://example.com <span class="se">\</span> <span class="nt">--output</span> json <span class="se">\</span> <span class="nt">--chrome-flags</span><span class="o">=</span><span class="s2">"--headless"</span> <span class="se">\</span> | jq <span class="s1">'.audits["largest-contentful-paint"].numericValue'</span> </code></pre> </div> <p>Splitting the screenshot module off the initial bundle improved TTI by roughly 180ms on simulated 4G.</p> <p><strong>Bundle analyzer (Vite):</strong><br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">import</span> <span class="p">{</span> <span class="nx">visualizer</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">rollup-plugin-visualizer</span><span class="dl">'</span><span class="p">;</span> <span class="k">export</span> <span class="k">default</span> <span class="p">{</span> <span class="na">plugins</span><span class="p">:</span> <span class="p">[</span> <span class="nf">visualizer</span><span class="p">({</span> <span class="na">open</span><span class="p">:</span> <span class="kc">true</span><span class="p">,</span> <span class="na">gzip</span><span class="p">:</span> <span class="kc">true</span> <span class="p">})</span> <span class="p">]</span> <span class="p">};</span> </code></pre> </div> <p>Look for large modules in your entry chunk — those are candidates for lazy-loading.</p> <h2> When lazy-loading is not the answer </h2> <p>For features that nearly all users need in nearly all sessions, just ship them eagerly. The mental overhead of managing async loading states is real. Only take it on when the size savings are meaningful.</p> <p>We ship a 40KB widget that can grow to 160KB when fully loaded — but most users never see that 160KB. They see 40KB, and the rest loads invisibly when they need it.</p> <p>Where this pattern breaks down: if your lazy-loaded chunk is on a CDN with a cold cache and the user is on a flaky mobile connection, the loading state becomes the experience. We haven't solved that cleanly yet.</p> javascript webdev performance tutorial How to Capture Console Errors and Network Requests in JavaScript Benji Darby Tue, 21 Apr 2026 19:42:00 +0000 https://dev.to/issuecapture/how-to-capture-console-errors-and-network-requests-in-javascript-1jn6 https://dev.to/issuecapture/how-to-capture-console-errors-and-network-requests-in-javascript-1jn6 <p>When a user reports a bug, the information you actually need is already gone. The console error that triggered it fired three page loads ago. The failed network request happened before they even thought to open a ticket.</p> <p>The fix is to capture this data continuously — from page load, not from the moment the user clicks "report a bug". Here's how to build that from scratch.</p> <h2> Intercepting console.error </h2> <p>The browser's <code>console</code> object is just a plain JavaScript object. Its methods are writable, which means you can swap them out.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="kd">const</span> <span class="nx">errors</span> <span class="o">=</span> <span class="p">[];</span> <span class="kd">const</span> <span class="nx">originalConsoleError</span> <span class="o">=</span> <span class="nx">console</span><span class="p">.</span><span class="nx">error</span><span class="p">;</span> <span class="nx">console</span><span class="p">.</span><span class="nx">error</span> <span class="o">=</span> <span class="nf">function </span><span class="p">(...</span><span class="nx">args</span><span class="p">)</span> <span class="p">{</span> <span class="nx">errors</span><span class="p">.</span><span class="nf">push</span><span class="p">({</span> <span class="na">type</span><span class="p">:</span> <span class="dl">'</span><span class="s1">console.error</span><span class="dl">'</span><span class="p">,</span> <span class="na">message</span><span class="p">:</span> <span class="nx">args</span><span class="p">.</span><span class="nf">map</span><span class="p">(</span><span class="nx">arg</span> <span class="o">=&gt;</span> <span class="nc">String</span><span class="p">(</span><span class="nx">arg</span><span class="p">)).</span><span class="nf">join</span><span class="p">(</span><span class="dl">'</span><span class="s1"> </span><span class="dl">'</span><span class="p">),</span> <span class="na">timestamp</span><span class="p">:</span> <span class="nb">Date</span><span class="p">.</span><span class="nf">now</span><span class="p">(),</span> <span class="p">});</span> <span class="nx">originalConsoleError</span><span class="p">.</span><span class="nf">apply</span><span class="p">(</span><span class="nx">console</span><span class="p">,</span> <span class="nx">args</span><span class="p">);</span> <span class="p">};</span> </code></pre> </div> <p>Always store a reference to the original before patching — you'll call through to it so DevTools still works. <code>.apply(console, args)</code> matters because some internal console implementations check that <code>this</code> is the console object.</p> <h2> Catching uncaught errors and promise rejections </h2> <p>Console patches only catch what code explicitly logs. For uncaught exceptions and unhandled promise rejections:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="nb">window</span><span class="p">.</span><span class="nf">addEventListener</span><span class="p">(</span><span class="dl">'</span><span class="s1">error</span><span class="dl">'</span><span class="p">,</span> <span class="p">(</span><span class="nx">event</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nx">errors</span><span class="p">.</span><span class="nf">push</span><span class="p">({</span> <span class="na">type</span><span class="p">:</span> <span class="dl">'</span><span class="s1">uncaught_error</span><span class="dl">'</span><span class="p">,</span> <span class="na">message</span><span class="p">:</span> <span class="nx">event</span><span class="p">.</span><span class="nx">message</span><span class="p">,</span> <span class="na">source</span><span class="p">:</span> <span class="nx">event</span><span class="p">.</span><span class="nx">filename</span><span class="p">,</span> <span class="na">line</span><span class="p">:</span> <span class="nx">event</span><span class="p">.</span><span class="nx">lineno</span><span class="p">,</span> <span class="na">col</span><span class="p">:</span> <span class="nx">event</span><span class="p">.</span><span class="nx">colno</span><span class="p">,</span> <span class="na">stack</span><span class="p">:</span> <span class="nx">event</span><span class="p">.</span><span class="nx">error</span><span class="p">?.</span><span class="nx">stack</span> <span class="o">??</span> <span class="kc">null</span><span class="p">,</span> <span class="na">timestamp</span><span class="p">:</span> <span class="nb">Date</span><span class="p">.</span><span class="nf">now</span><span class="p">(),</span> <span class="p">});</span> <span class="p">});</span> <span class="nb">window</span><span class="p">.</span><span class="nf">addEventListener</span><span class="p">(</span><span class="dl">'</span><span class="s1">unhandledrejection</span><span class="dl">'</span><span class="p">,</span> <span class="p">(</span><span class="nx">event</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nx">errors</span><span class="p">.</span><span class="nf">push</span><span class="p">({</span> <span class="na">type</span><span class="p">:</span> <span class="dl">'</span><span class="s1">unhandled_rejection</span><span class="dl">'</span><span class="p">,</span> <span class="na">message</span><span class="p">:</span> <span class="nc">String</span><span class="p">(</span><span class="nx">event</span><span class="p">.</span><span class="nx">reason</span><span class="p">),</span> <span class="na">stack</span><span class="p">:</span> <span class="nx">event</span><span class="p">.</span><span class="nx">reason</span><span class="p">?.</span><span class="nx">stack</span> <span class="o">??</span> <span class="kc">null</span><span class="p">,</span> <span class="na">timestamp</span><span class="p">:</span> <span class="nb">Date</span><span class="p">.</span><span class="nf">now</span><span class="p">(),</span> <span class="p">});</span> <span class="p">});</span> </code></pre> </div> <p>The <code>error</code> event gives you the filename, line number, and column — useful for mapping back to source maps. The <code>unhandledrejection</code> event fires when a Promise rejects and nothing catches it.</p> <h2> Intercepting network requests </h2> <h3> fetch </h3> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="kd">const</span> <span class="nx">requests</span> <span class="o">=</span> <span class="p">[];</span> <span class="kd">const</span> <span class="nx">originalFetch</span> <span class="o">=</span> <span class="nb">window</span><span class="p">.</span><span class="nx">fetch</span><span class="p">;</span> <span class="nb">window</span><span class="p">.</span><span class="nx">fetch</span> <span class="o">=</span> <span class="k">async</span> <span class="nf">function </span><span class="p">(</span><span class="nx">input</span><span class="p">,</span> <span class="nx">init</span><span class="p">)</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">url</span> <span class="o">=</span> <span class="k">typeof</span> <span class="nx">input</span> <span class="o">===</span> <span class="dl">'</span><span class="s1">string</span><span class="dl">'</span> <span class="p">?</span> <span class="nx">input</span> <span class="p">:</span> <span class="nx">input</span><span class="p">.</span><span class="nx">url</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">method</span> <span class="o">=</span> <span class="nx">init</span><span class="p">?.</span><span class="nx">method</span> <span class="o">??</span> <span class="dl">'</span><span class="s1">GET</span><span class="dl">'</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">startTime</span> <span class="o">=</span> <span class="nb">Date</span><span class="p">.</span><span class="nf">now</span><span class="p">();</span> <span class="k">try</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">response</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">originalFetch</span><span class="p">.</span><span class="nf">apply</span><span class="p">(</span><span class="k">this</span><span class="p">,</span> <span class="nx">arguments</span><span class="p">);</span> <span class="nx">requests</span><span class="p">.</span><span class="nf">push</span><span class="p">({</span> <span class="na">type</span><span class="p">:</span> <span class="dl">'</span><span class="s1">fetch</span><span class="dl">'</span><span class="p">,</span> <span class="nx">url</span><span class="p">,</span> <span class="nx">method</span><span class="p">,</span> <span class="na">status</span><span class="p">:</span> <span class="nx">response</span><span class="p">.</span><span class="nx">status</span><span class="p">,</span> <span class="na">duration</span><span class="p">:</span> <span class="nb">Date</span><span class="p">.</span><span class="nf">now</span><span class="p">()</span> <span class="o">-</span> <span class="nx">startTime</span><span class="p">,</span> <span class="na">timestamp</span><span class="p">:</span> <span class="nx">startTime</span><span class="p">,</span> <span class="p">});</span> <span class="k">return</span> <span class="nx">response</span><span class="p">;</span> <span class="p">}</span> <span class="k">catch </span><span class="p">(</span><span class="nx">err</span><span class="p">)</span> <span class="p">{</span> <span class="nx">requests</span><span class="p">.</span><span class="nf">push</span><span class="p">({</span> <span class="na">type</span><span class="p">:</span> <span class="dl">'</span><span class="s1">fetch</span><span class="dl">'</span><span class="p">,</span> <span class="nx">url</span><span class="p">,</span> <span class="nx">method</span><span class="p">,</span> <span class="na">status</span><span class="p">:</span> <span class="kc">null</span><span class="p">,</span> <span class="na">error</span><span class="p">:</span> <span class="nc">String</span><span class="p">(</span><span class="nx">err</span><span class="p">),</span> <span class="na">duration</span><span class="p">:</span> <span class="nb">Date</span><span class="p">.</span><span class="nf">now</span><span class="p">()</span> <span class="o">-</span> <span class="nx">startTime</span><span class="p">,</span> <span class="na">timestamp</span><span class="p">:</span> <span class="nx">startTime</span><span class="p">,</span> <span class="p">});</span> <span class="k">throw</span> <span class="nx">err</span><span class="p">;</span> <span class="p">}</span> <span class="p">};</span> </code></pre> </div> <p>Note the <code>throw err</code> at the end of the catch block. Never silently swallow errors in a wrapper.</p> <h3> XMLHttpRequest </h3> <p>Plenty of libraries still use XHR under the hood. You need to patch both.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="kd">const</span> <span class="nx">OriginalXHR</span> <span class="o">=</span> <span class="nb">window</span><span class="p">.</span><span class="nx">XMLHttpRequest</span><span class="p">;</span> <span class="nb">window</span><span class="p">.</span><span class="nx">XMLHttpRequest</span> <span class="o">=</span> <span class="nf">function </span><span class="p">()</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">xhr</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">OriginalXHR</span><span class="p">();</span> <span class="kd">const</span> <span class="nx">meta</span> <span class="o">=</span> <span class="p">{</span> <span class="na">url</span><span class="p">:</span> <span class="kc">null</span><span class="p">,</span> <span class="na">method</span><span class="p">:</span> <span class="kc">null</span><span class="p">,</span> <span class="na">startTime</span><span class="p">:</span> <span class="kc">null</span> <span class="p">};</span> <span class="kd">const</span> <span class="nx">originalOpen</span> <span class="o">=</span> <span class="nx">xhr</span><span class="p">.</span><span class="nx">open</span><span class="p">.</span><span class="nf">bind</span><span class="p">(</span><span class="nx">xhr</span><span class="p">);</span> <span class="nx">xhr</span><span class="p">.</span><span class="nx">open</span> <span class="o">=</span> <span class="nf">function </span><span class="p">(</span><span class="nx">method</span><span class="p">,</span> <span class="nx">url</span><span class="p">,</span> <span class="p">...</span><span class="nx">rest</span><span class="p">)</span> <span class="p">{</span> <span class="nx">meta</span><span class="p">.</span><span class="nx">method</span> <span class="o">=</span> <span class="nx">method</span><span class="p">;</span> <span class="nx">meta</span><span class="p">.</span><span class="nx">url</span> <span class="o">=</span> <span class="nx">url</span><span class="p">;</span> <span class="k">return</span> <span class="nf">originalOpen</span><span class="p">(</span><span class="nx">method</span><span class="p">,</span> <span class="nx">url</span><span class="p">,</span> <span class="p">...</span><span class="nx">rest</span><span class="p">);</span> <span class="p">};</span> <span class="kd">const</span> <span class="nx">originalSend</span> <span class="o">=</span> <span class="nx">xhr</span><span class="p">.</span><span class="nx">send</span><span class="p">.</span><span class="nf">bind</span><span class="p">(</span><span class="nx">xhr</span><span class="p">);</span> <span class="nx">xhr</span><span class="p">.</span><span class="nx">send</span> <span class="o">=</span> <span class="nf">function </span><span class="p">(...</span><span class="nx">args</span><span class="p">)</span> <span class="p">{</span> <span class="nx">meta</span><span class="p">.</span><span class="nx">startTime</span> <span class="o">=</span> <span class="nb">Date</span><span class="p">.</span><span class="nf">now</span><span class="p">();</span> <span class="nx">xhr</span><span class="p">.</span><span class="nf">addEventListener</span><span class="p">(</span><span class="dl">'</span><span class="s1">loadend</span><span class="dl">'</span><span class="p">,</span> <span class="p">()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nx">requests</span><span class="p">.</span><span class="nf">push</span><span class="p">({</span> <span class="na">type</span><span class="p">:</span> <span class="dl">'</span><span class="s1">xhr</span><span class="dl">'</span><span class="p">,</span> <span class="na">url</span><span class="p">:</span> <span class="nx">meta</span><span class="p">.</span><span class="nx">url</span><span class="p">,</span> <span class="na">method</span><span class="p">:</span> <span class="nx">meta</span><span class="p">.</span><span class="nx">method</span><span class="p">,</span> <span class="na">status</span><span class="p">:</span> <span class="nx">xhr</span><span class="p">.</span><span class="nx">status</span><span class="p">,</span> <span class="na">duration</span><span class="p">:</span> <span class="nb">Date</span><span class="p">.</span><span class="nf">now</span><span class="p">()</span> <span class="o">-</span> <span class="nx">meta</span><span class="p">.</span><span class="nx">startTime</span><span class="p">,</span> <span class="na">timestamp</span><span class="p">:</span> <span class="nx">meta</span><span class="p">.</span><span class="nx">startTime</span><span class="p">,</span> <span class="p">});</span> <span class="p">});</span> <span class="k">return</span> <span class="nf">originalSend</span><span class="p">(...</span><span class="nx">args</span><span class="p">);</span> <span class="p">};</span> <span class="k">return</span> <span class="nx">xhr</span><span class="p">;</span> <span class="p">};</span> </code></pre> </div> <h2> Privacy considerations </h2> <p>Raw network logs are a liability. URLs frequently contain sensitive data.</p> <h3> Sanitize URLs </h3> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="kd">function</span> <span class="nf">sanitizeUrl</span><span class="p">(</span><span class="nx">url</span><span class="p">)</span> <span class="p">{</span> <span class="k">try</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">parsed</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">URL</span><span class="p">(</span><span class="nx">url</span><span class="p">);</span> <span class="nx">parsed</span><span class="p">.</span><span class="nx">search</span> <span class="o">=</span> <span class="dl">''</span><span class="p">;</span> <span class="nx">parsed</span><span class="p">.</span><span class="nx">pathname</span> <span class="o">=</span> <span class="nx">parsed</span><span class="p">.</span><span class="nx">pathname</span> <span class="p">.</span><span class="nf">split</span><span class="p">(</span><span class="dl">'</span><span class="s1">/</span><span class="dl">'</span><span class="p">)</span> <span class="p">.</span><span class="nf">map</span><span class="p">(</span><span class="nx">segment</span> <span class="o">=&gt;</span> <span class="sr">/^</span><span class="se">[</span><span class="sr">a-f0-9-</span><span class="se">]{8,}</span><span class="sr">$/i</span><span class="p">.</span><span class="nf">test</span><span class="p">(</span><span class="nx">segment</span><span class="p">)</span> <span class="p">?</span> <span class="dl">'</span><span class="s1">[id]</span><span class="dl">'</span> <span class="p">:</span> <span class="nx">segment</span><span class="p">)</span> <span class="p">.</span><span class="nf">join</span><span class="p">(</span><span class="dl">'</span><span class="s1">/</span><span class="dl">'</span><span class="p">);</span> <span class="k">return</span> <span class="nx">parsed</span><span class="p">.</span><span class="nf">toString</span><span class="p">();</span> <span class="p">}</span> <span class="k">catch</span> <span class="p">{</span> <span class="k">return</span> <span class="dl">'</span><span class="s1">[invalid url]</span><span class="dl">'</span><span class="p">;</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <h3> Exclude sensitive domains </h3> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="kd">const</span> <span class="nx">EXCLUDED_DOMAINS</span> <span class="o">=</span> <span class="p">[</span><span class="dl">'</span><span class="s1">stripe.com</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="s1">paypal.com</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="s1">auth0.com</span><span class="dl">'</span><span class="p">];</span> <span class="kd">function</span> <span class="nf">shouldCapture</span><span class="p">(</span><span class="nx">url</span><span class="p">)</span> <span class="p">{</span> <span class="k">try</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">hostname</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">URL</span><span class="p">(</span><span class="nx">url</span><span class="p">).</span><span class="nx">hostname</span><span class="p">;</span> <span class="k">return</span> <span class="o">!</span><span class="nx">EXCLUDED_DOMAINS</span><span class="p">.</span><span class="nf">some</span><span class="p">(</span><span class="nx">domain</span> <span class="o">=&gt;</span> <span class="nx">hostname</span><span class="p">.</span><span class="nf">endsWith</span><span class="p">(</span><span class="nx">domain</span><span class="p">));</span> <span class="p">}</span> <span class="k">catch</span> <span class="p">{</span> <span class="k">return</span> <span class="kc">false</span><span class="p">;</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <h3> Filter by path pattern </h3> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="kd">const</span> <span class="nx">EXCLUDED_PATTERNS</span> <span class="o">=</span> <span class="p">[</span><span class="dl">'</span><span class="s1">/auth/</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="s1">/login</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="s1">/password</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="s1">/token</span><span class="dl">'</span><span class="p">];</span> <span class="kd">function</span> <span class="nf">isExcludedPath</span><span class="p">(</span><span class="nx">url</span><span class="p">)</span> <span class="p">{</span> <span class="k">try</span> <span class="p">{</span> <span class="kd">const</span> <span class="p">{</span> <span class="nx">pathname</span> <span class="p">}</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">URL</span><span class="p">(</span><span class="nx">url</span><span class="p">);</span> <span class="k">return</span> <span class="nx">EXCLUDED_PATTERNS</span><span class="p">.</span><span class="nf">some</span><span class="p">(</span><span class="nx">pattern</span> <span class="o">=&gt;</span> <span class="nx">pathname</span><span class="p">.</span><span class="nf">includes</span><span class="p">(</span><span class="nx">pattern</span><span class="p">));</span> <span class="p">}</span> <span class="k">catch</span> <span class="p">{</span> <span class="k">return</span> <span class="kc">true</span><span class="p">;</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <h2> Capture early, filter late </h2> <p>Start capturing from page load. Store everything in memory. When a report is generated, apply your filters before anything leaves the browser.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="kd">function</span> <span class="nf">getRecentErrors</span><span class="p">(</span><span class="nx">limitMs</span> <span class="o">=</span> <span class="mi">60</span><span class="nx">_000</span><span class="p">)</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">cutoff</span> <span class="o">=</span> <span class="nb">Date</span><span class="p">.</span><span class="nf">now</span><span class="p">()</span> <span class="o">-</span> <span class="nx">limitMs</span><span class="p">;</span> <span class="k">return</span> <span class="nx">errors</span><span class="p">.</span><span class="nf">filter</span><span class="p">(</span><span class="nx">e</span> <span class="o">=&gt;</span> <span class="nx">e</span><span class="p">.</span><span class="nx">timestamp</span> <span class="o">&gt;=</span> <span class="nx">cutoff</span><span class="p">);</span> <span class="p">}</span> <span class="kd">function</span> <span class="nf">getRelevantRequests</span><span class="p">(</span><span class="nx">limitMs</span> <span class="o">=</span> <span class="mi">60</span><span class="nx">_000</span><span class="p">)</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">cutoff</span> <span class="o">=</span> <span class="nb">Date</span><span class="p">.</span><span class="nf">now</span><span class="p">()</span> <span class="o">-</span> <span class="nx">limitMs</span><span class="p">;</span> <span class="k">return</span> <span class="nx">requests</span> <span class="p">.</span><span class="nf">filter</span><span class="p">(</span><span class="nx">r</span> <span class="o">=&gt;</span> <span class="nx">r</span><span class="p">.</span><span class="nx">timestamp</span> <span class="o">&gt;=</span> <span class="nx">cutoff</span><span class="p">)</span> <span class="p">.</span><span class="nf">filter</span><span class="p">(</span><span class="nx">r</span> <span class="o">=&gt;</span> <span class="nf">shouldCapture</span><span class="p">(</span><span class="nx">r</span><span class="p">.</span><span class="nx">url</span><span class="p">)</span> <span class="o">&amp;&amp;</span> <span class="o">!</span><span class="nf">isExcludedPath</span><span class="p">(</span><span class="nx">r</span><span class="p">.</span><span class="nx">url</span><span class="p">))</span> <span class="p">.</span><span class="nf">map</span><span class="p">(</span><span class="nx">r</span> <span class="o">=&gt;</span> <span class="p">({</span> <span class="p">...</span><span class="nx">r</span><span class="p">,</span> <span class="na">url</span><span class="p">:</span> <span class="nf">sanitizeUrl</span><span class="p">(</span><span class="nx">r</span><span class="p">.</span><span class="nx">url</span><span class="p">)</span> <span class="p">}));</span> <span class="p">}</span> </code></pre> </div> <p>This means you never miss an error that happened before the report was triggered, but you also never send data you haven't explicitly decided to include.</p> <h2> A few things to watch for </h2> <p><strong>Memory.</strong> If a user leaves a tab open for hours, these arrays will grow. Add a max-size cap or a rolling window.</p> <p><strong>Third-party script errors.</strong> The <code>error</code> event will catch errors from third-party scripts, often with <code>message: "Script error."</code> and no useful stack. This is a browser security feature (CORS). Filter these out by checking <code>event.filename</code>.</p> <p><strong>Content Security Policy.</strong> If your site's CSP blocks inline scripts, make sure your logger is loaded as a proper module.</p> <p>Sentry, LogRocket, and every other browser monitoring tool does exactly this under the hood. The pieces take an afternoon to build. The value is in running them from page load, before the user knows they need to file a report.</p> javascript webdev tutorial beginners Row-Level Security in Supabase: Multi-Tenant SaaS from Day One Benji Darby Thu, 16 Apr 2026 16:00:00 +0000 https://dev.to/issuecapture/row-level-security-in-supabase-multi-tenant-saas-from-day-one-4lon https://dev.to/issuecapture/row-level-security-in-supabase-multi-tenant-saas-from-day-one-4lon <p>In a multi-tenant SaaS, one misplaced query can leak another customer's data. Row-Level Security moves that enforcement into the database, where it can't be skipped by a tired developer or a missing middleware.</p> <p>I went all-in on RLS from the start with IssueCapture. Every table has it. Every query is automatically scoped to the right account. No <code>WHERE account_id = $1</code> that future-me accidentally omits. We're running around 29 RLS-protected tables in production. Here's how it works and where it'll bite you.</p> <h2> What RLS Actually Does </h2> <p>Row-Level Security is a PostgreSQL feature that lets you attach policies to tables. When RLS is enabled, a <code>SELECT</code>, <code>INSERT</code>, <code>UPDATE</code>, or <code>DELETE</code> only succeeds for rows that pass the policy check.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight sql"><code><span class="k">ALTER</span> <span class="k">TABLE</span> <span class="n">issues</span> <span class="n">ENABLE</span> <span class="k">ROW</span> <span class="k">LEVEL</span> <span class="k">SECURITY</span><span class="p">;</span> <span class="k">CREATE</span> <span class="n">POLICY</span> <span class="nv">"Users see own issues"</span> <span class="k">ON</span> <span class="n">issues</span> <span class="k">FOR</span> <span class="k">SELECT</span> <span class="k">USING</span> <span class="p">(</span><span class="n">user_id</span> <span class="o">=</span> <span class="n">auth</span><span class="p">.</span><span class="n">uid</span><span class="p">());</span> </code></pre> </div> <p>Supabase builds on top of this with <code>auth.uid()</code> — a function that returns the UUID of the authenticated user from the JWT.</p> <p>But user-level isolation is the easy case. Most SaaS apps need <em>account-level</em> isolation, where multiple users share data within a tenant.</p> <h2> The team_members Join Pattern </h2> <p>The pattern I use for multi-tenant isolation:</p> <ul> <li> <code>accounts</code> table — one row per tenant</li> <li> <code>team_members</code> table — many-to-many between <code>auth.users</code> and <code>accounts</code> </li> <li>Everything else — has an <code>account_id</code> foreign key </li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight sql"><code><span class="k">CREATE</span> <span class="k">TABLE</span> <span class="n">accounts</span> <span class="p">(</span> <span class="n">id</span> <span class="n">uuid</span> <span class="k">PRIMARY</span> <span class="k">KEY</span> <span class="k">DEFAULT</span> <span class="n">gen_random_uuid</span><span class="p">(),</span> <span class="n">name</span> <span class="nb">text</span> <span class="k">NOT</span> <span class="k">NULL</span><span class="p">,</span> <span class="n">subscription_tier</span> <span class="nb">text</span> <span class="k">DEFAULT</span> <span class="s1">'free'</span> <span class="p">);</span> <span class="k">CREATE</span> <span class="k">TABLE</span> <span class="n">team_members</span> <span class="p">(</span> <span class="n">user_id</span> <span class="n">uuid</span> <span class="k">REFERENCES</span> <span class="n">auth</span><span class="p">.</span><span class="n">users</span><span class="p">(</span><span class="n">id</span><span class="p">)</span> <span class="k">ON</span> <span class="k">DELETE</span> <span class="k">CASCADE</span><span class="p">,</span> <span class="n">account_id</span> <span class="n">uuid</span> <span class="k">REFERENCES</span> <span class="n">accounts</span><span class="p">(</span><span class="n">id</span><span class="p">)</span> <span class="k">ON</span> <span class="k">DELETE</span> <span class="k">CASCADE</span><span class="p">,</span> <span class="k">role</span> <span class="nb">text</span> <span class="k">DEFAULT</span> <span class="s1">'member'</span><span class="p">,</span> <span class="k">PRIMARY</span> <span class="k">KEY</span> <span class="p">(</span><span class="n">user_id</span><span class="p">,</span> <span class="n">account_id</span><span class="p">)</span> <span class="p">);</span> <span class="k">CREATE</span> <span class="k">TABLE</span> <span class="n">issues</span> <span class="p">(</span> <span class="n">id</span> <span class="n">uuid</span> <span class="k">PRIMARY</span> <span class="k">KEY</span> <span class="k">DEFAULT</span> <span class="n">gen_random_uuid</span><span class="p">(),</span> <span class="n">account_id</span> <span class="n">uuid</span> <span class="k">REFERENCES</span> <span class="n">accounts</span><span class="p">(</span><span class="n">id</span><span class="p">)</span> <span class="k">ON</span> <span class="k">DELETE</span> <span class="k">CASCADE</span><span class="p">,</span> <span class="n">title</span> <span class="nb">text</span> <span class="k">NOT</span> <span class="k">NULL</span><span class="p">,</span> <span class="n">created_at</span> <span class="n">timestamptz</span> <span class="k">DEFAULT</span> <span class="n">now</span><span class="p">()</span> <span class="p">);</span> </code></pre> </div> <p>Now the RLS policy on <code>issues</code> checks membership:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight sql"><code><span class="k">ALTER</span> <span class="k">TABLE</span> <span class="n">issues</span> <span class="n">ENABLE</span> <span class="k">ROW</span> <span class="k">LEVEL</span> <span class="k">SECURITY</span><span class="p">;</span> <span class="k">CREATE</span> <span class="n">POLICY</span> <span class="nv">"Team members can view account issues"</span> <span class="k">ON</span> <span class="n">issues</span> <span class="k">FOR</span> <span class="k">SELECT</span> <span class="k">USING</span> <span class="p">(</span> <span class="n">account_id</span> <span class="k">IN</span> <span class="p">(</span> <span class="k">SELECT</span> <span class="n">account_id</span> <span class="k">FROM</span> <span class="n">team_members</span> <span class="k">WHERE</span> <span class="n">user_id</span> <span class="o">=</span> <span class="n">auth</span><span class="p">.</span><span class="n">uid</span><span class="p">()</span> <span class="p">)</span> <span class="p">);</span> </code></pre> </div> <p>This single subquery does the tenant isolation. Any user who is a member of the account can read its issues. Non-members get zero rows — not an error, just nothing.</p> <h2> The <code>service_role</code> Key Bypasses All RLS Policies </h2> <p><strong>The service role key bypasses RLS entirely.</strong></p> <p>Supabase gives you two keys:</p> <ul> <li> <code>anon</code> key — respects RLS, safe to expose in the browser</li> <li> <code>service_role</code> key — superuser, skips all RLS policies, never expose this </li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// Browser / user-facing: RLS enforced</span> <span class="kd">const</span> <span class="nx">supabase</span> <span class="o">=</span> <span class="nf">createClient</span><span class="p">(</span><span class="nx">url</span><span class="p">,</span> <span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">.</span><span class="nx">NEXT_PUBLIC_SUPABASE_ANON_KEY</span><span class="p">);</span> <span class="c1">// Server / admin: RLS bypassed — be careful</span> <span class="kd">const</span> <span class="nx">supabaseAdmin</span> <span class="o">=</span> <span class="nf">createClient</span><span class="p">(</span><span class="nx">url</span><span class="p">,</span> <span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">.</span><span class="nx">SUPABASE_SERVICE_KEY</span><span class="p">);</span> </code></pre> </div> <p>The rule I follow: API routes that handle user requests use the anon key with the user's JWT. Internal jobs and admin operations use the service key explicitly.</p> <p>The failure mode if you get this wrong is data leakage across tenants. You won't notice in testing because your test user probably has access to everything in your dev database.</p> <h2> Policies on JOINed Tables </h2> <p>Another common pitfall: you write a policy on table A, but your query joins to table B, and table B also has RLS enabled. Each table's policy is checked independently.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight sql"><code><span class="k">SELECT</span> <span class="k">c</span><span class="p">.</span><span class="o">*</span> <span class="k">FROM</span> <span class="n">comments</span> <span class="k">c</span> <span class="k">JOIN</span> <span class="n">issues</span> <span class="n">i</span> <span class="k">ON</span> <span class="n">i</span><span class="p">.</span><span class="n">id</span> <span class="o">=</span> <span class="k">c</span><span class="p">.</span><span class="n">issue_id</span> <span class="k">WHERE</span> <span class="n">i</span><span class="p">.</span><span class="n">account_id</span> <span class="o">=</span> <span class="err">$</span><span class="mi">1</span><span class="p">;</span> </code></pre> </div> <p>If the user doesn't have access to a given <code>issues</code> row, the join will return no matching row for it — the comment becomes invisible even if the comments policy would technically allow it. The query doesn't error, it just returns fewer rows than you expect.</p> <p>The fix is being explicit about what each table's policies need to allow.</p> <h2> Performance: The Subquery Problem </h2> <p>The <code>account_id IN (SELECT account_id FROM team_members WHERE user_id = auth.uid())</code> pattern executes that subquery on every row evaluation. For large tables, this can be slow.</p> <p><strong>Index the foreign keys:</strong><br> </p> <div class="highlight js-code-highlight"> <pre class="highlight sql"><code><span class="k">CREATE</span> <span class="k">INDEX</span> <span class="k">ON</span> <span class="n">issues</span> <span class="p">(</span><span class="n">account_id</span><span class="p">);</span> <span class="k">CREATE</span> <span class="k">INDEX</span> <span class="k">ON</span> <span class="n">team_members</span> <span class="p">(</span><span class="n">user_id</span><span class="p">);</span> <span class="k">CREATE</span> <span class="k">INDEX</span> <span class="k">ON</span> <span class="n">team_members</span> <span class="p">(</span><span class="n">account_id</span><span class="p">);</span> </code></pre> </div> <p><strong>Consider a security definer function for complex membership checks:</strong><br> </p> <div class="highlight js-code-highlight"> <pre class="highlight sql"><code><span class="k">CREATE</span> <span class="k">OR</span> <span class="k">REPLACE</span> <span class="k">FUNCTION</span> <span class="n">get_accessible_account_ids</span><span class="p">()</span> <span class="k">RETURNS</span> <span class="k">SETOF</span> <span class="n">uuid</span> <span class="k">LANGUAGE</span> <span class="k">sql</span> <span class="k">SECURITY</span> <span class="k">DEFINER</span> <span class="k">STABLE</span> <span class="k">AS</span> <span class="err">$$</span> <span class="k">SELECT</span> <span class="n">account_id</span> <span class="k">FROM</span> <span class="n">team_members</span> <span class="k">WHERE</span> <span class="n">user_id</span> <span class="o">=</span> <span class="n">auth</span><span class="p">.</span><span class="n">uid</span><span class="p">()</span> <span class="err">$$</span><span class="p">;</span> <span class="k">CREATE</span> <span class="n">POLICY</span> <span class="nv">"Team members can view account issues"</span> <span class="k">ON</span> <span class="n">issues</span> <span class="k">FOR</span> <span class="k">SELECT</span> <span class="k">USING</span> <span class="p">(</span><span class="n">account_id</span> <span class="k">IN</span> <span class="p">(</span><span class="k">SELECT</span> <span class="n">get_accessible_account_ids</span><span class="p">()));</span> </code></pre> </div> <p><code>SECURITY DEFINER</code> means the function runs with the permissions of whoever defined it, which lets it bypass RLS on <code>team_members</code> itself. <code>STABLE</code> tells the planner the function won't change the database — this enables caching and better optimization.</p> <h2> Testing RLS Policies </h2> <p>The best way to test a policy is to set the role and JWT claim manually:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight sql"><code><span class="k">BEGIN</span><span class="p">;</span> <span class="k">SET</span> <span class="k">LOCAL</span> <span class="k">role</span> <span class="o">=</span> <span class="s1">'authenticated'</span><span class="p">;</span> <span class="k">SET</span> <span class="k">LOCAL</span> <span class="nv">"request.jwt.claims"</span> <span class="o">=</span> <span class="s1">'{"sub": "user-uuid-here"}'</span><span class="p">;</span> <span class="k">SELECT</span> <span class="o">*</span> <span class="k">FROM</span> <span class="n">issues</span><span class="p">;</span> <span class="k">ROLLBACK</span><span class="p">;</span> </code></pre> </div> <p>It's much more reliable than inferring correctness from application behavior, because application bugs can mask policy bugs.</p> <h2> Why RLS Will Hurt You (and Why You Should Still Use It) </h2> <p>RLS is not free. The policies add overhead to every query, the service key bypass is a footgun, and debugging policy interactions across joined tables takes practice.</p> <p>But for a multi-tenant SaaS, application-layer filtering is worse. The guarantee that a bug in your API code cannot leak tenant data is worth the overhead. When your database is the last line of defense, it tends to actually hold.</p> <p>I'm specifically interested in cases where RLS policies on joined tables produced surprising results — rows disappearing from queries for non-obvious reasons. That was our biggest debugging timesink.</p> supabase postgres webdev tutorial Shadow DOM CSS Isolation: How to Embed a Widget Without Breaking the Host Page Benji Darby Mon, 13 Apr 2026 23:00:00 +0000 https://dev.to/issuecapture/shadow-dom-css-isolation-how-to-embed-a-widget-without-breaking-the-host-page-4oio https://dev.to/issuecapture/shadow-dom-css-isolation-how-to-embed-a-widget-without-breaking-the-host-page-4oio <p>Shadow DOM is the only reliable way to prevent a third-party widget's CSS from colliding with a host page's styles. I learned this building <a href="https://issuecapture.com" rel="noopener noreferrer">IssueCapture</a> — a bug reporting widget that runs on thousands of different host pages, each with its own CSS, fonts, z-index stacking contexts, and JavaScript globals. It cannot break those pages. It cannot be broken by them.</p> <p>Here's the full setup, including the parts the docs skip.</p> <h2> Why Shadow DOM? </h2> <p>The naive approach to embedding a third-party widget is dumping your HTML into the host page's DOM and hoping for the best. This works until the host page has a CSS reset that flattens all your styles, or a <code>* { box-sizing: content-box !important; }</code> rule, or a global <code>.modal { display: none; }</code> that someone added in 2019 and nobody wants to touch.</p> <p>Shadow DOM gives you a genuine encapsulation boundary. Styles from the host page cannot pierce it. Your styles cannot leak out of it. You get an isolated subtree with its own document fragment.</p> <p>Here's the basic mounting pattern:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="kd">const</span> <span class="nx">container</span> <span class="o">=</span> <span class="nb">document</span><span class="p">.</span><span class="nf">createElement</span><span class="p">(</span><span class="dl">'</span><span class="s1">div</span><span class="dl">'</span><span class="p">);</span> <span class="nx">container</span><span class="p">.</span><span class="nx">id</span> <span class="o">=</span> <span class="dl">'</span><span class="s1">my-widget-root</span><span class="dl">'</span><span class="p">;</span> <span class="nx">container</span><span class="p">.</span><span class="nx">style</span><span class="p">.</span><span class="nx">position</span> <span class="o">=</span> <span class="dl">'</span><span class="s1">fixed</span><span class="dl">'</span><span class="p">;</span> <span class="nx">container</span><span class="p">.</span><span class="nx">style</span><span class="p">.</span><span class="nx">zIndex</span> <span class="o">=</span> <span class="dl">'</span><span class="s1">999999</span><span class="dl">'</span><span class="p">;</span> <span class="nx">container</span><span class="p">.</span><span class="nx">style</span><span class="p">.</span><span class="nx">top</span> <span class="o">=</span> <span class="dl">'</span><span class="s1">0</span><span class="dl">'</span><span class="p">;</span> <span class="nx">container</span><span class="p">.</span><span class="nx">style</span><span class="p">.</span><span class="nx">left</span> <span class="o">=</span> <span class="dl">'</span><span class="s1">0</span><span class="dl">'</span><span class="p">;</span> <span class="nx">container</span><span class="p">.</span><span class="nx">style</span><span class="p">.</span><span class="nx">width</span> <span class="o">=</span> <span class="dl">'</span><span class="s1">100vw</span><span class="dl">'</span><span class="p">;</span> <span class="nx">container</span><span class="p">.</span><span class="nx">style</span><span class="p">.</span><span class="nx">height</span> <span class="o">=</span> <span class="dl">'</span><span class="s1">100vh</span><span class="dl">'</span><span class="p">;</span> <span class="nx">container</span><span class="p">.</span><span class="nx">style</span><span class="p">.</span><span class="nx">pointerEvents</span> <span class="o">=</span> <span class="dl">'</span><span class="s1">none</span><span class="dl">'</span><span class="p">;</span> <span class="c1">// pass-through until open</span> <span class="nb">document</span><span class="p">.</span><span class="nx">body</span><span class="p">.</span><span class="nf">appendChild</span><span class="p">(</span><span class="nx">container</span><span class="p">);</span> <span class="kd">const</span> <span class="nx">shadowRoot</span> <span class="o">=</span> <span class="nx">container</span><span class="p">.</span><span class="nf">attachShadow</span><span class="p">({</span> <span class="na">mode</span><span class="p">:</span> <span class="dl">'</span><span class="s1">open</span><span class="dl">'</span> <span class="p">});</span> </code></pre> </div> <p>The container is a fixed full-viewport div sitting on top of everything. <code>pointerEvents: none</code> means it's invisible to clicks when the widget is closed — the host page behaves normally. When the widget opens, you toggle that to <code>auto</code>.</p> <h2> Preact Over React </h2> <p>React adds about 130KB before you write a single component. That's a hard sell when you're injecting a script into someone else's production site. Every kilobyte you add is a kilobyte their users download.</p> <p>Preact's core is around 3KB gzipped. It has the same API surface — hooks, context, refs, <code>useEffect</code>, all of it. The only things missing are some legacy React APIs nobody should be using in new code anyway.</p> <p>IssueCapture's widget ships at around 40KB gzipped for the core UI. Screenshot capture is another 13KB, annotation is 107KB — both lazy-loaded only when the user actually requests them. That's the right tradeoff: pay the cost only when the feature is used.</p> <h2> Injecting Styles into Shadow DOM </h2> <p>This is where most people trip up. You cannot link external stylesheets into a shadow root. <code>&lt;link rel="stylesheet"&gt;</code> tags and <code>@import</code> rules do not work the way you expect inside a shadow DOM. The simplest reliable approach is constructing your CSS as a plain string and injecting it via a <code>&lt;style&gt;</code> element.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="kd">const</span> <span class="nx">appContainer</span> <span class="o">=</span> <span class="nb">document</span><span class="p">.</span><span class="nf">createElement</span><span class="p">(</span><span class="dl">'</span><span class="s1">div</span><span class="dl">'</span><span class="p">);</span> <span class="nx">appContainer</span><span class="p">.</span><span class="nx">id</span> <span class="o">=</span> <span class="dl">'</span><span class="s1">my-app</span><span class="dl">'</span><span class="p">;</span> <span class="nx">shadowRoot</span><span class="p">.</span><span class="nf">appendChild</span><span class="p">(</span><span class="nx">appContainer</span><span class="p">);</span> <span class="kd">const</span> <span class="nx">styleElement</span> <span class="o">=</span> <span class="nb">document</span><span class="p">.</span><span class="nf">createElement</span><span class="p">(</span><span class="dl">'</span><span class="s1">style</span><span class="dl">'</span><span class="p">);</span> <span class="nx">styleElement</span><span class="p">.</span><span class="nx">textContent</span> <span class="o">=</span> <span class="s2">` :host { all: initial; font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, sans-serif; } * { box-sizing: border-box; margin: 0; padding: 0; } #my-app { position: relative; width: 100%; height: 100%; } `</span><span class="p">;</span> <span class="nx">shadowRoot</span><span class="p">.</span><span class="nf">appendChild</span><span class="p">(</span><span class="nx">styleElement</span><span class="p">);</span> </code></pre> </div> <p>The <code>:host</code> selector targets the shadow host element. <code>all: initial</code> resets inherited CSS properties so the host page's font, color, and line-height don't bleed in through inheritance, which is one of the few ways the host page can still affect a shadow root.</p> <p>With Preact, mounting into the shadow root looks identical to mounting into any other DOM node:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="k">import</span> <span class="p">{</span> <span class="nx">render</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">preact</span><span class="dl">'</span><span class="p">;</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">MyWidget</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">./MyWidget</span><span class="dl">'</span><span class="p">;</span> <span class="nf">render</span><span class="p">(</span><span class="o">&lt;</span><span class="nx">MyWidget</span> <span class="o">/&gt;</span><span class="p">,</span> <span class="nx">appContainer</span><span class="p">);</span> </code></pre> </div> <h2> The Rough Edges </h2> <h3> Why <code>document.activeElement</code> Lies Inside Shadow DOM </h3> <p>When your modal opens, keyboard focus should stay inside it. The problem is that <code>document.activeElement</code> reflects focus in the main document. When focus moves into your shadow root, <code>document.activeElement</code> points at the shadow host — not the specific element inside the shadow. To find which element inside your shadow has focus, you need <code>shadowRoot.activeElement</code>.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="kd">const</span> <span class="nx">previousActiveElement</span> <span class="o">=</span> <span class="nb">document</span><span class="p">.</span><span class="nx">activeElement</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">focusableSelectors</span> <span class="o">=</span> <span class="p">[</span> <span class="dl">'</span><span class="s1">button:not([disabled])</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="s1">input:not([disabled])</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="s1">select:not([disabled])</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="s1">textarea:not([disabled])</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="s1">a[href]</span><span class="dl">'</span><span class="p">,</span> <span class="p">].</span><span class="nf">join</span><span class="p">(</span><span class="dl">'</span><span class="s1">, </span><span class="dl">'</span><span class="p">);</span> <span class="nb">document</span><span class="p">.</span><span class="nf">addEventListener</span><span class="p">(</span><span class="dl">'</span><span class="s1">keydown</span><span class="dl">'</span><span class="p">,</span> <span class="p">(</span><span class="nx">e</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="k">if </span><span class="p">(</span><span class="nx">e</span><span class="p">.</span><span class="nx">key</span> <span class="o">===</span> <span class="dl">'</span><span class="s1">Escape</span><span class="dl">'</span><span class="p">)</span> <span class="p">{</span> <span class="nf">closeModal</span><span class="p">();</span> <span class="k">return</span><span class="p">;</span> <span class="p">}</span> <span class="k">if </span><span class="p">(</span><span class="nx">e</span><span class="p">.</span><span class="nx">key</span> <span class="o">===</span> <span class="dl">'</span><span class="s1">Tab</span><span class="dl">'</span><span class="p">)</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">elements</span> <span class="o">=</span> <span class="nb">Array</span><span class="p">.</span><span class="k">from</span><span class="p">(</span> <span class="nx">modalRef</span><span class="p">.</span><span class="nx">current</span><span class="p">.</span><span class="nf">querySelectorAll</span><span class="p">(</span><span class="nx">focusableSelectors</span><span class="p">)</span> <span class="p">);</span> <span class="kd">const</span> <span class="nx">first</span> <span class="o">=</span> <span class="nx">elements</span><span class="p">[</span><span class="mi">0</span><span class="p">];</span> <span class="kd">const</span> <span class="nx">last</span> <span class="o">=</span> <span class="nx">elements</span><span class="p">[</span><span class="nx">elements</span><span class="p">.</span><span class="nx">length</span> <span class="o">-</span> <span class="mi">1</span><span class="p">];</span> <span class="k">if </span><span class="p">(</span><span class="nx">e</span><span class="p">.</span><span class="nx">shiftKey</span> <span class="o">&amp;&amp;</span> <span class="nb">document</span><span class="p">.</span><span class="nx">activeElement</span> <span class="o">===</span> <span class="nx">first</span><span class="p">)</span> <span class="p">{</span> <span class="nx">e</span><span class="p">.</span><span class="nf">preventDefault</span><span class="p">();</span> <span class="nx">last</span><span class="p">.</span><span class="nf">focus</span><span class="p">();</span> <span class="p">}</span> <span class="k">else</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">e</span><span class="p">.</span><span class="nx">shiftKey</span> <span class="o">&amp;&amp;</span> <span class="nb">document</span><span class="p">.</span><span class="nx">activeElement</span> <span class="o">===</span> <span class="nx">last</span><span class="p">)</span> <span class="p">{</span> <span class="nx">e</span><span class="p">.</span><span class="nf">preventDefault</span><span class="p">();</span> <span class="nx">first</span><span class="p">.</span><span class="nf">focus</span><span class="p">();</span> <span class="p">}</span> <span class="p">}</span> <span class="p">});</span> <span class="nx">previousActiveElement</span><span class="p">?.</span><span class="nf">focus</span><span class="p">();</span> <span class="c1">// restore on close</span> </code></pre> </div> <p>One subtlety: you attach the <code>keydown</code> listener to <code>document</code>, not to the shadow root. Keyboard events bubble out of shadow DOM into the main document, so this works.</p> <h3> Font Loading </h3> <p>Fonts declared in the host page's CSS are not available inside your shadow root by default. The safest approach: use system font stacks. If you need a specific font, load it at the document level by injecting a <code>&lt;link&gt;</code> tag into the host page's <code>&lt;head&gt;</code> — fonts loaded at the document level are accessible from within shadow roots.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nb">document</span><span class="p">.</span><span class="nf">getElementById</span><span class="p">(</span><span class="dl">'</span><span class="s1">my-widget-fonts</span><span class="dl">'</span><span class="p">))</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">link</span> <span class="o">=</span> <span class="nb">document</span><span class="p">.</span><span class="nf">createElement</span><span class="p">(</span><span class="dl">'</span><span class="s1">link</span><span class="dl">'</span><span class="p">);</span> <span class="nx">link</span><span class="p">.</span><span class="nx">id</span> <span class="o">=</span> <span class="dl">'</span><span class="s1">my-widget-fonts</span><span class="dl">'</span><span class="p">;</span> <span class="nx">link</span><span class="p">.</span><span class="nx">rel</span> <span class="o">=</span> <span class="dl">'</span><span class="s1">stylesheet</span><span class="dl">'</span><span class="p">;</span> <span class="nx">link</span><span class="p">.</span><span class="nx">href</span> <span class="o">=</span> <span class="dl">'</span><span class="s1">https://fonts.googleapis.com/css2?family=Inter:wght@400;500;600&amp;display=swap</span><span class="dl">'</span><span class="p">;</span> <span class="nb">document</span><span class="p">.</span><span class="nx">head</span><span class="p">.</span><span class="nf">appendChild</span><span class="p">(</span><span class="nx">link</span><span class="p">);</span> <span class="p">}</span> </code></pre> </div> <h3> Z-Index Stacking Contexts </h3> <p>Your widget's container sits at <code>z-index: 999999</code>. That sounds like it should win every fight. It often doesn't.</p> <p>The browser doesn't compare z-index values globally — it compares them within the same stacking context. If a host page element creates a new stacking context (via <code>transform</code>, <code>opacity</code>, <code>filter</code>, <code>will-change</code>, etc.), your widget's container and that element are no longer in the same context.</p> <p>There is no clean solution. The best you can do:</p> <ol> <li>Attach your container directly to <code>document.body</code> so it's in the root stacking context</li> <li>Use <code>position: fixed</code> on the container</li> <li>Document clearly that if a host page uses <code>transform</code> on the <code>&lt;body&gt;</code> element, positioning behavior is undefined</li> </ol> <h2> Putting It Together </h2> <p>The full flow:</p> <ol> <li>Append a fixed full-viewport container to <code>document.body</code> with <code>pointerEvents: none</code> </li> <li>Attach a shadow root to that container</li> <li>Inject all CSS as plain strings via <code>&lt;style&gt;</code> elements</li> <li>Mount your Preact app into a <code>&lt;div&gt;</code> inside the shadow root</li> <li>Manage open/close state by toggling <code>pointerEvents</code> </li> <li>Handle focus trapping with a <code>keydown</code> listener on <code>document</code> </li> <li>Accept that z-index is a political problem, not a technical one</li> </ol> <p>The result is a widget that coexists cleanly with any host page. Host page CSS cannot touch your widget. Your widget CSS cannot touch the host page.</p> <p>IssueCapture uses this architecture to run a bug-reporting modal on thousands of different sites. If you want to see the patterns in context, the widget is at <a href="https://issuecapture.com" rel="noopener noreferrer">issuecapture.com</a>.</p> <p>If you've found a clean workaround for the stacking context problem that doesn't require the host page to change their CSS, I'd genuinely like to hear it. I haven't found one.</p> javascript webdev preact tutorial Jira Issue Collector Alternatives in 2026: What to Use Now That It's Dead Benji Darby Thu, 09 Apr 2026 14:57:59 +0000 https://dev.to/issuecapture/jira-issue-collector-alternatives-in-2026-what-to-use-now-that-its-dead-2k76 https://dev.to/issuecapture/jira-issue-collector-alternatives-in-2026-what-to-use-now-that-its-dead-2k76 <p>Atlassian's Issue Collector hasn't been updated in years. It doesn't work with team-managed projects, has no screenshot annotation, no error capture, and the documentation still references Firefox 28. If you've been relying on it to collect bug reports from your website, you've probably noticed it's falling apart.</p> <p>Here's what actually works in 2026.</p> <h2> What was the Jira Issue Collector? </h2> <p>The Issue Collector was a widget Atlassian provided to embed a bug reporting form on your website. It opened an iframe with a Jira issue creation form. Users filled it out, hit submit, and a ticket appeared in your Jira project.</p> <p>It was fine for its time, but it had serious limitations:</p> <ul> <li> <strong>No screenshot tools</strong> — users couldn't capture or annotate what they were seeing</li> <li> <strong>No error capture</strong> — no console logs, no network failures, no browser info</li> <li> <strong>iframe-based</strong> — cross-origin restrictions meant the widget couldn't access page context</li> <li> <strong>No team-managed project support</strong> — only worked with company-managed projects</li> <li> <strong>No AI or automation</strong> — every ticket needed manual triage</li> <li> <strong>Broken styling</strong> — the iframe often conflicted with host page CSS</li> <li> <strong>No SPA support</strong> — didn't handle route changes in React, Angular, or Vue apps</li> </ul> <p>Atlassian hasn't publicly deprecated it, but it's effectively abandoned. No updates, no fixes, no roadmap.</p> <h2> What to look for in a replacement </h2> <p>A modern bug reporting widget should:</p> <ol> <li> <strong>Capture context automatically</strong> — console errors, network failures, browser info, page URL</li> <li> <strong>Support screenshots</strong> — ideally with annotation (draw, crop, highlight)</li> <li> <strong>Isolate from the host page</strong> — no CSS conflicts, no broken layouts</li> <li> <strong>Work with team-managed projects</strong> — not just company-managed</li> <li> <strong>Handle SPAs</strong> — proper lifecycle management for React, Angular, Vue, Next.js</li> <li> <strong>Create detailed Jira tickets</strong> — not just a summary field and a description</li> </ol> <h2> The alternatives </h2> <h3> 1. IssueCapture </h3> <p>A drop-in JavaScript widget purpose-built as an Issue Collector replacement. One script tag, creates Jira tickets via OAuth 2.0.</p> <p><strong>What it does:</strong></p> <ul> <li>Screenshot capture with annotation (crop, draw, highlight)</li> <li>Console errors captured automatically from page load</li> <li>Network request monitoring (4xx/5xx failures)</li> <li>Works with both Jira Software and JSM, including team-managed projects</li> <li>AI triage, categorization, duplicate detection, sentiment analysis (optional)</li> <li>Shadow DOM isolation — no CSS conflicts</li> <li>16 languages</li> <li>40KB gzipped core, screenshot and annotation lazy-loaded</li> </ul> <p><strong>Pricing:</strong> Free tier (10 issues/mo), Starter $29/mo, Team $59/mo (AI features), Business $99/mo</p> <p><strong>Best for:</strong> Teams that want a direct Issue Collector replacement with modern features. Closest thing to a drop-in swap.</p> <p><strong>Website:</strong> <a href="https://issuecapture.com" rel="noopener noreferrer">issuecapture.com</a></p> <p><em>Disclosure: I built IssueCapture.</em></p> <h3> 2. Marker.io </h3> <p>A visual bug reporting tool that integrates with Jira, Trello, Asana, and other project management tools. Focused on client feedback and QA workflows.</p> <p><strong>What it does:</strong></p> <ul> <li>Screenshot and screen recording</li> <li>Annotation tools</li> <li>Technical metadata capture</li> <li>Integrates with multiple project management tools (not just Jira)</li> <li>Guest reporting (no login required)</li> </ul> <p><strong>Pricing:</strong> Starts at $39/mo (Starter, 5 seats). Team plan $99/mo (15 seats). Company plan $199/mo (unlimited seats).</p> <p><strong>Best for:</strong> Agencies and teams that use multiple project management tools, not just Jira. Strong if you need client-facing feedback collection across different platforms.</p> <p><strong>Limitations:</strong> Per-seat pricing gets expensive for larger teams. Minimum $39/mo even for small teams.</p> <h3> 3. Usersnap </h3> <p>A feedback and bug tracking platform with visual annotation. Used by larger enterprises for customer feedback, QA, and beta testing.</p> <p><strong>What it does:</strong></p> <ul> <li>Screenshot and screen recording</li> <li>In-app surveys and feedback forms</li> <li>Annotation tools</li> <li>Integrates with Jira, Azure DevOps, and others</li> <li>Session replay</li> </ul> <p><strong>Pricing:</strong> Starts at $39/mo (Startup plan). Business plan $99/mo. Enterprise pricing available.</p> <p><strong>Best for:</strong> Teams that want bug reporting combined with customer feedback surveys. More of a feedback platform than a pure bug reporter.</p> <p><strong>Limitations:</strong> Heavier than a simple bug widget. Can be overkill if you just want bug reports into Jira.</p> <h3> 4. BugHerd </h3> <p>A visual feedback tool that pins comments directly on web pages. Originally designed for web agencies collecting client feedback.</p> <p><strong>What it does:</strong></p> <ul> <li>Point-and-click bug reporting on web pages</li> <li>Visual pins on page elements</li> <li>Screenshot capture</li> <li>Jira integration</li> <li>Guest access for clients</li> </ul> <p><strong>Pricing:</strong> Starts at $41/mo (Standard, 5 members). Premium $66/mo (25 members). Per-seat pricing.</p> <p><strong>Best for:</strong> Web agencies collecting visual feedback from clients during development. The pin-on-page approach works well for design and layout feedback.</p> <p><strong>Limitations:</strong> Per-seat pricing. Less suited for end-user bug reporting on production sites. Jira integration is secondary to their own task board.</p> <h3> 5. Instabug </h3> <p>A mobile and web SDK for bug reporting, crash reporting, and user feedback. Originally focused on mobile apps.</p> <p><strong>What it does:</strong></p> <ul> <li>Bug reporting with screenshots</li> <li>Crash reporting and performance monitoring</li> <li>In-app surveys</li> <li>Session replay</li> <li>Integrates with Jira and other tools</li> </ul> <p><strong>Pricing:</strong> Starts at $249/mo (Growth plan). Enterprise pricing available. 14-day free trial.</p> <p><strong>Best for:</strong> Mobile app teams that also have a web presence. Strong crash reporting and performance monitoring.</p> <p><strong>Limitations:</strong> Expensive. Mobile-first — the web SDK is secondary. Overkill if you just need a Jira bug reporting widget.</p> <h3> 6. Jam.dev </h3> <p>A browser extension for bug reporting. Users capture bugs via the extension, and tickets are created in Jira or other tools.</p> <p><strong>What it does:</strong></p> <ul> <li>Browser extension captures page state</li> <li>Auto-captures console logs, network requests</li> <li>Screen recording</li> <li>Integrates with Jira, Linear, and others</li> </ul> <p><strong>Pricing:</strong> Free plan available. Pro starts at $5/user/month.</p> <p><strong>Best for:</strong> Internal teams where everyone can install a browser extension. Good for developer-to-developer bug reporting.</p> <p><strong>Limitations:</strong> Requires extension installation — not suitable for external users or customers reporting bugs. Per-user pricing.</p> <h3> 7. Build your own with the Jira REST API </h3> <p>If you don't want a third-party widget, you can create issues directly via the Jira REST API.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight http"><code><span class="err">POST /rest/api/3/issue </span></code></pre> </div> <p><strong>What you get:</strong></p> <ul> <li>Full control over the UI and UX</li> <li>No third-party dependencies</li> <li>Direct OAuth 2.0 or API token authentication</li> </ul> <p><strong>What you have to build yourself:</strong></p> <ul> <li>The entire bug reporting UI</li> <li>Screenshot capture and annotation</li> <li>Console error and network monitoring</li> <li>File upload handling</li> <li>Error handling and retry logic</li> <li>Multi-project support</li> </ul> <p><strong>Best for:</strong> Teams with specific UI requirements that no off-the-shelf widget can meet, and the engineering bandwidth to build and maintain it.</p> <h2> Quick comparison </h2> <div class="table-wrapper-paragraph"><table> <thead> <tr> <th>Feature</th> <th>IssueCapture</th> <th>Marker.io</th> <th>Usersnap</th> <th>BugHerd</th> <th>Instabug</th> <th>Jam.dev</th> </tr> </thead> <tbody> <tr> <td>Screenshot annotation</td> <td>Yes</td> <td>Yes</td> <td>Yes</td> <td>Yes</td> <td>Yes</td> <td>Yes</td> </tr> <tr> <td>Console error capture</td> <td>Auto from page load</td> <td>Limited</td> <td>No</td> <td>No</td> <td>Yes</td> <td>Yes</td> </tr> <tr> <td>Network monitoring</td> <td>Yes</td> <td>No</td> <td>No</td> <td>No</td> <td>Yes</td> <td>Yes</td> </tr> <tr> <td>AI triage</td> <td>Yes</td> <td>No</td> <td>No</td> <td>No</td> <td>No</td> <td>No</td> </tr> <tr> <td>Team-managed projects</td> <td>Yes</td> <td>Yes</td> <td>Yes</td> <td>Yes</td> <td>Yes</td> <td>Yes</td> </tr> <tr> <td>Shadow DOM isolation</td> <td>Yes</td> <td>No</td> <td>No</td> <td>No</td> <td>N/A</td> <td>N/A</td> </tr> <tr> <td>Per-seat pricing</td> <td>No</td> <td>Yes</td> <td>Yes</td> <td>Yes</td> <td>Yes</td> <td>Yes</td> </tr> <tr> <td>Starting price</td> <td>Free</td> <td>$39/mo</td> <td>$39/mo</td> <td>$41/mo</td> <td>$249/mo</td> <td>Free</td> </tr> <tr> <td>JSM support</td> <td>Yes</td> <td>Limited</td> <td>Limited</td> <td>No</td> <td>Limited</td> <td>No</td> </tr> </tbody> </table></div> <h2> Which one should you pick? </h2> <ul> <li> <strong>Replacing Issue Collector with minimum fuss:</strong> IssueCapture — closest to a drop-in replacement, works with team-managed projects, no per-seat pricing</li> <li> <strong>Agency collecting client feedback:</strong> Marker.io or BugHerd — built for that workflow</li> <li> <strong>Enterprise feedback platform:</strong> Usersnap — surveys, feedback, and bug reporting combined</li> <li> <strong>Mobile + web:</strong> Instabug — if you need crash reporting and performance monitoring too</li> <li> <strong>Internal dev team only:</strong> Jam.dev — browser extension is fine when you control the users</li> <li> <strong>Maximum control:</strong> Jira REST API — if you have the bandwidth to build and maintain it</li> </ul> <p>The Issue Collector had a good run. These tools are all better.</p> jira webdev javascript productivity I replaced Atlassian's Issue Collector with a modern alternative — here's what I built Benji Darby Thu, 09 Apr 2026 13:42:30 +0000 https://dev.to/issuecapture/i-replaced-atlassians-issue-collector-with-a-modern-alternative-heres-what-i-built-3cdo https://dev.to/issuecapture/i-replaced-atlassians-issue-collector-with-a-modern-alternative-heres-what-i-built-3cdo <p>Atlassian's Issue Collector hasn't been meaningfully updated since 2014. No screenshot tools, no AI, it doesn't work with team-managed projects, and the docs still reference Firefox 28. If you've ever tried to set it up on a modern stack, you know the pain.</p> <p>I spent months building a replacement. IssueCapture is a drop-in JavaScript widget that lets website visitors report bugs directly into Jira — with screenshots, console errors, and network data included automatically.</p> <h2> The problem </h2> <p>Bug reports from end users are usually terrible. "It doesn't work" with no context, no steps to reproduce, no browser info. Developers waste hours going back and forth trying to understand what actually happened.</p> <p>Atlassian's answer to this was the Issue Collector — a widget you embed on your site. But it's been abandoned. No screenshot annotation, no error capture, no AI, no modern framework support. And if your Jira project is team-managed? You can't use it at all.</p> <h2> What I built </h2> <p>One script tag, five minutes to set up:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight html"><code><span class="nt">&lt;script </span><span class="na">type=</span><span class="s">"module"</span><span class="nt">&gt;</span> <span class="k">import</span> <span class="nx">IssueCapture</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">https://issuecapture.com/widget.js</span><span class="dl">'</span><span class="p">;</span> <span class="nx">IssueCapture</span><span class="p">.</span><span class="nf">init</span><span class="p">({</span> <span class="na">apiKey</span><span class="p">:</span> <span class="dl">'</span><span class="s1">your-api-key</span><span class="dl">'</span> <span class="p">});</span> <span class="nt">&lt;/script&gt;</span> </code></pre> </div> <p>The widget gives users a floating button. They click it, describe the bug, and the ticket lands in Jira with full context:</p> <ul> <li> <strong>Screenshot + annotation</strong> — capture, crop, draw, highlight. Lazy-loaded so it's only +13KB if they actually use it.</li> <li> <strong>Console errors</strong> — captured automatically from page load, not just after the widget opens.</li> <li> <strong>Network failures</strong> — 4xx/5xx responses caught automatically.</li> <li> <strong>Browser info</strong> — URL, user agent, viewport size.</li> </ul> <h2> Technical decisions </h2> <p><strong>Shadow DOM isolation.</strong> The widget runs inside a Shadow DOM so it can't conflict with the host page's CSS. All styles are plain CSS strings injected into the shadow root — no external stylesheets, no Tailwind, nothing that could leak.</p> <p><strong>Preact over React.</strong> The core widget is ~40KB gzipped. Screenshot capture adds 13KB, annotation adds 107KB — both lazy-loaded only when the user needs them. Keeping it small matters when you're injecting into someone else's site.</p> <p><strong>Console capture from page load.</strong> Most bug reporters only capture errors that happen after the widget opens. That misses the errors that actually caused the problem. IssueCapture hooks into <code>console.error</code> and monitors network requests from the moment the page loads, then includes relevant ones in the report if the dashboard admin has enabled it.</p> <p><strong>AI is optional.</strong> Triage, categorization, duplicate detection, and sentiment analysis run through a queue processor on Gemini 2.5 Flash with an OpenAI fallback. Duplicate matching uses text-embedding-004 + pgvector. But the widget works perfectly fine without any of it — AI features only kick in on paid tiers.</p> <h2> Stack </h2> <ul> <li> <strong>Widget:</strong> Preact + TypeScript + Vite</li> <li> <strong>Dashboard:</strong> Next.js 16 (App Router) + Tailwind</li> <li> <strong>Backend:</strong> Vercel Serverless Functions + Supabase (PostgreSQL + RLS)</li> <li> <strong>AI:</strong> Google Gemini (primary) + OpenAI (fallback)</li> <li> <strong>Jira integration:</strong> OAuth 2.0 (no API tokens or passwords)</li> </ul> <p>Supabase handles multi-tenancy through Row Level Security — every query is scoped to the account. pgvector powers the duplicate detection embeddings. Edge Functions serve the widget config so it loads fast.</p> <p>16 languages supported with lazy-loaded locale files so you only download the one you need.</p> <h2> What I learned </h2> <p><strong>Bug report quality is the real product.</strong> The AI features are nice, but the biggest impact is just capturing console errors and network failures automatically. Developers told me that alone cut their "can you send me more details?" messages in half.</p> <p><strong>Widget size is a feature.</strong> Every KB matters when you're asking someone to add your script to their production site. Lazy-loading the heavy parts (screenshot, annotation) was the right call — most bug reports don't include screenshots.</p> <p><strong>Shadow DOM has rough edges.</strong> Focus trapping, font loading, and z-index stacking all behave differently inside a shadow root. If you're building an embeddable widget, budget time for this.</p> <h2> Try it </h2> <p>There's a demo on the homepage: <a href="https://issuecapture.com" rel="noopener noreferrer">issuecapture.com</a></p> <p>Free tier is 10 issues/month, no credit card required. Paid plans start at $29/mo with no per-seat pricing.</p> <p>If you're on a team that uses Jira and you're tired of garbage bug reports, give it a shot. Happy to answer questions in the comments.</p> jira jsm ai webdev