InfoQ Homepage Architecture Content on InfoQ
-
Java News Roundup: Helidon 3.0, GraalVM 22.2, IntelliJ IDEA 2022.2, Vert.x Virtual Threads
This week's Java roundup for July 25th, 2022, features news from OpenJDK, JDK 19, JDK 20, Spring project updates, Helidon 3.0, GraalVM 22.2, Quarkus 2.11.1 and 2.10.4, Micronaut 3.5.4, Eclipse Vert.x virtual threads incubator, Jakarta EE 10 updates, IntelliJ IDEA 2022.2, JUnit 5.9.0, Apache Software Foundation project updates and Multik 0.2.0.
-
CNCF Publishes the Kubernetes Policy Management Whitepaper
The CNCF recently published a new whitepaper about Kubernetes Policy Management. The whitepaper highlights the importance of Kubernetes policy management when it comes to the security and automation of clusters as well as workloads. Also, it goes in-depth into the problems Kubernetes policies solve and the proper implementation of such policies.
-
The Spotify System Model: Automated Architecture Visualization at Spotify
Spotify engineers recently published how they standardized architecture diagrams at the company. They defined a standard system model named the Spotify Software Model and adapted the C4 model to visualize it. This combination created a shared language used across the organization, which helps communication, aids decision-making, and supports Spotify's software's evolution.
-
Java News Roundup: JDK 19 in RDP2, Oracle Critical Patch Update, TornadoVM on M1, Grails CVE
This week's Java roundup for July 18th, 2022, features news from Oracle, JDK 18, JDK 19, JDK 20, Spring Boot and Spring Security milestone and point releases, Spring for GraphQL 1.0.1, Liberica JDK updates, Quarkus 2.10.3, CVE in Grails, JobRunr 5.1.6, JReleaser maintenance, Apache Tomcat 9.0.65 and 10.1.0-M17, Tornado VM on Apple M1 and the JBNC conference.
-
BLST Security Extends Support for OpenAPI Specification Table
BLST Security recently released the latest version of its platform, enabling DevOps and Application Security teams to avoid API specification flaws. The BLST platform aims to help teams understand their APIs by creating an OpenAPI Specification table.
-
Node-RED 3 Improves Its Node Editor, Runtime Features, and Debugging
Node-RED, the flow-based visual programming environment originally developed by IBM and initially targeted at IoT applications, has reached version 3.0, bringing a number of improvements to the node editor, new features to control flows at runtime, and more.
-
Azure Static Web Apps Introduces API Backend Options
Azure recently announced the preview of new API backend options in Azure Static Web Apps. Developers can now create an end-to-end authenticated application calling APIs hosted on Azure App Service, Azure Container Apps, or Azure API Management.
-
AWS Enhances its Step Functions Experience with Workflow Collections
AWS Step Functions is a serverless function orchestrator that makes it easy to sequence AWS Lambda functions and multiple AWS services into business-critical applications. AWS recently introduced a new experience to its Step Functions with Function Workflow Collections allowing users to create Step Functions workflows easier.
-
Google Cloud Announces Advanced API Security through Apigee
Recently Google announced the public preview of Advanced API Security, a comprehensive set of API security capabilities built on Apigee, their API management platform. With the new capability, customers can detect security threats more efficiently.
-
Java News Roundup: Eclipse Soteria 3.0, Log4j, Hibernate ORM, IntelliJ IDEA
This week's Java roundup for July 4th, 2022, features news from JDK 19, JDK 20, Spring projects updates, Open Liberty 22.0.0.7 and 22.0.0.8-beta, Quarkus 2.10.2, Hibernate ORM 5.6.10, Hibernate Reactive 1.1.7, Eclipse Foundation projects updates, Apache Software Foundation projects updates, JDKMon 17.0.31 and 17.0.29 and JetBrains product updates.
-
Dropbox Unplugs Data Center to Test Resilience
Dropbox has published a detailed account of why and how they unplugged an entire data center to test their disaster readiness. The disaster readiness team began building tools to make performing frequent failovers possible, and ran their first formalized failover in 2019. Eventually, with new tooling and procedures, the data center was unplugged. This provided a significantly reduced RTO.
-
Trivago’s Journey from PHP+Melody to Next.js and Typescript
Trivago’s platform was built using PHP and their Melody framework. A small number of engineers at Trivago maintained Melody, which was a continuity risk. Melody’s documentation and examples could not be as rich as desired due to a lack of capacity, making engineer onboarding and support much more difficult. Trivago then decided to rewrite its platform on Typescript using Next.js.
-
Project Leyden Delays OpenJDK AOT Compiler, Optimizes JIT Compiler Instead
The goal of Project Leyden is to address “Java's slow startup time, slow time to peak performance, and large footprint." It wanted to get there by reintroducing Ahead-of-Time (AOT) compilation into OpenJDK. But it just pivoted to first optimize Just-in-Time (JIT) compilation. Oracle's Graal project has already achieved Project Leyden’s goal, but at a cost that Leyden wants to avoid for now.
-
Uber Introduces a Universal Signup and Login Stack
Uber recently introduced Unified Signup and Login (USL), an effort to consolidate signup and login experiences across all Uber apps and services. USL lowers the engineering complexity and maintenance overhead and allows faster rollout of security policies and fixes. Over the last two years, Uber rolled out USL and currently, more than 78% of Uber's traffic has adopted USL.
-
SynLapse: Orca Security Publishes Details for Critical Azure Synapse Vulnerability
In a recent article, Orca Security describes the technical details of SynLapse, a critical Synapse Analytics vulnerability in Azure that allowed attackers to bypass tenant separation. The issue has now been addressed, but the timing and the disclosure process have raised concerns in the community.