InfoQ Homepage Source Code Content on InfoQ
-
GitHub Improves Vulnerability Workflows and Becomes CVE Numbering Authority
Along with Semmle acquisition, GitHub has disclosed a number of improvements aimed to make it easier for maintainers and developers to fix and protect against vulnerabilities. This includes the possibility of creating a security advisory and assigning it a CVE number directly from GitHub UI.
-
Eric Evans Wants to Improve the Language of DDD
Eric Evans wants architects to actively engage in improving the language used when modeling and designing complex systems. Some of the fundamental terms used in DDD, such as Bounded Contexts, are often misunderstood. Evans wants to see an active community try to address these concerns, with the goal that DDD "should be a real, living body of thought."
-
GitHub to Integrate Semmle Code Analysis for Continuous Vulnerability Detection
With the acquisition of startup Semmle, GitHub aims to make continuous vulnerability detection part of their continuous integration/continuous deployment service.
-
GitLab 12.2 Supports Complex Dependencies for CI Tasks and Cross-Project Merge Requests
GitLab's latest release aims to enable complex continuous integration (CI) pipelines, team collaboration, and dependencies management across projects. Furthermore, GitLab 12.2 adds new push options for merge requests, and uses environment-specific Kubernetes namespaces to enable sharing the same cluster across multiple project environments.
-
Microsoft to Consolidate .NET Repositories on GitHub
Microsoft has announced they will transform their fine-grained repository structure for .NET Core to consolidate a number of foundational .NET Core repositories, including dotnet/coreclr and dotnet/corefx. Microsoft also plans to further consolidate ASP.NET repositories.
-
Git 2.23 Adds Switch and Restore Commands
Git 2.23 introduces two new commands meant to replace two common uses of git checkout: git switch to switch to a new branch after creating it if necessary, and git restore to restore changes from a given commit.
-
GitHub Launches Actions-Powered CI/CD Service, Free for Public Repos
Based on developer feedback, GitHub has just introduced its own Continuous Integration/Continuous Delivery (CI/CD) service for GitHub Actions. Currently in beta, the new service will be free for public repos and will support self-hosting.
-
Terraform 0.12 Release: New HCL Syntax, Improved Error Messages, and Upgrade Tooling
Terraform 0.12 release includes updates to the HCL, such as first-class expression syntax, value types, loops, dynamic blocks, and conditional expression improvements. Error messages now contain additional context, and the output to a terraform plan now renders in a more readable format. Terraform 0.12 isn't 100% backwards compatible, but comes with an upgrade and validation tool.
-
Using Helm Charts Tools to Manage Kubernetes Deployments at Delivery Hero
Delivery Hero’s engineering team uses Helm and related tools to simplify management of multiple Kubernetes environments, sensitive data, and configuration.
-
Git 2.22 Adds Topology-Preserving, Interactive Rebase
The most significant new feature in the latest Git release, Git 2.22, enables rebasing non-trivial branch topologies, e.g., those including merges, without flattening them while also allowing to use interactive rebase features.
-
GitHub Adds Dependabot Automated Security PRs and More Security-Related Features
GitHub has announced a number of new features aimed to help developers secure their code, including the ability to create PRs for any dependencies needing an update to include security fixes, integration with WhiteSource data for better vulnerability assessment, dependency insights, and more.
-
GitKraken Founder Hamid Shojaee Shares Experiences on Building a Git GUI
Git is historically a tool limited to those with a strong love of the command-line. GitKraken strives to improve on the status quo by providing a powerful GUI for working with Git.
-
Infrastructure Automation Company Chef Commits to Open Source
Chef, an infrastructure automation company, has committed to developing all of their software as open source under the Apache 2.0 license.
-
GitHub Package Registry Integrates Source Code and Packages
GitHub launched a limited beta of its new Package Registry, aiming to simplify publishing public or private packages under the same user interface as source code. GitHub Package Registry supports npm, Maven, RubyGems, NuGet, and Docker images, and support for more package management tools is already on its roadmap.
-
GitLab 11.9 Released with Automated Secrets Detection
GitLab 11.9 has been released with automated secrets detection and additional merge request approval rulesets. GitLab is a software development lifecycle support tool, providing project planning, source code management, and CI/CD capabilities.