InfoQ Homepage News
-
Hardware Mitigation on Intel, Arm, and AMD CPUs Shown Ineffective against Spectre v2
Security researchers from Vrije Universiteit Amsterdam showed the hardware mitigations to Spectre v2 attacks implemented in both Intel and Arm processors have fundamental flaws that make them vulnerable to branch history injection.
-
Java News Roundup: JDK 18 GA, JMC 8.2, Spring Updates, MicroStream 7.0-Beta1, WildFly 26.1-Beta1
This week's Java roundup for March 21st, 2022, features news from JDK 18, JDK 19, JDK Mission Control 8.2, Amazon Corretto 18, BellSoft LibericaJDK 18, multiple Spring milestone and point releases, Micronaut 3.4.0, GraalVM Native Build Tools 0.9.11, WildFly 26 Beta 1, Hibernate Reactive 1.1.4.Final, MicroStream 7.0-M1, JReleaser 1.0-RC1, and TornadoVM 0.13.
-
Developer Experience at Lyft: from the Cloud to Local Environments
Lyft engineering finished their decomposition of a monolith into a collection of microservices back in 2018. Modular development environments using Docker containers eventually moved to the cloud. Recent articles describe how their development tooling struggled to keep up as time passed and the number of microservices exploded. Development environments had to return to the engineer’s machine.
-
Compute Engine VMs Cost Optimization with Suspend/Resume
Recently, Google announced the general availability of the Suspend/Resume feature for its Compute Engine VMs. The feature provides customers better control over Google Cloud resource consumption.
-
Microsoft Introduces Azure Health Data Services: Protected Health Information on the Cloud
Microsoft recently announced Azure Health Data Services, a Platform-as-a-Service that allows organizations to upload, store, manage and analyze healthcare data in the open standards FHIR and DICOM.
-
New Vulnerability in CRI-O Container Runtime Allows Attackers Host Access
A new vulnerability in the CRI-O container runtime used by many Kubernetes installations allows a malicious user to gain root access to the host. The vulnerability was discovered by researchers from CrowdStrike and fixed soon after by the CRI-O project.
-
Google Updates its Cloud MemoryStore with Read Replicas, RDB Snapshots, and Flushless Updates
Recently, Google announced a few updates for its Cloud MemoryStore, a fully-managed in-memory store compatible with open-source Redis. These updates are generally available (GA) Read Replicas, RDB (Redis database) snapshots in preview, and the launch of the flushless update for basic tier instances.
-
Meta Open-Sources Browser Extension to Establish Web Code Authenticity
Originally created to help WhatsApp users verify the authenticity of the WhatsApp code being served to their browsers, Code Verify is a new open-source extension for Chrome, Edge, and Firefox enabling to provide the same level of security for other Web services, says Meta.
-
ImageSharp 2.0.0: the Feature-Packed Release
ImageSharp, one of the most popular .NET image-processing libraries, released version 2 of their library. The release includes major features such as supporting WebP, TIFF and PBM as well adding XMP support with various performance improvements and enhancements for JPEG and PNG formats. This release drops support for .NET Standard 1.3. The update replaces version 1.0.4.
-
JHipster Native Blueprint Supports GraalVM Native Image
The Spring Boot Native blueprint for JHipster generates code and configuration to create a JHipster project which uses Spring Native. Spring Native allows compiling Spring applications to native executables with the GraalVM Native Image compiler.
-
Vaadin Introduces Hilla to Unify Frontend/Backend Web Development
Vaadin has introduced Hilla, a new framework for Java developers that combines the backend with Spring Boot and the frontend as a mix of TypeScript and Lit. Hilla offers many capabilities to simplify business application development, such as providing a unified project setup for Java and TypeScript that remains in sync.
-
Creating Tight Cohesive Tech Teams for Women to Thrive
Women in tech need a dynamic, valuing team, stimulating work, push and support, local role models, nonjudgmental flexibility, and personal power. Tight cohesive teams can provide high-quality interactions, making people feel valued.
-
Infer New Deadlock Detector for Android Aims to Be Efficient for Large Codebases
In a joint research, London University College and Facebook researchers created a new deadlock detector for Android Java code now available as part of open-source Infer static analysis tool. The new analyzer is able to process large codebases efficiently thanks to its incremental approach specifically designed for integration in a CI pipeline.
-
Growing Concerns among Developers about Google Cloud Price Increases
Google Cloud recently announced changes to their pricing models, with storage and data transfer costs mostly affected. Many experts in the cloud community have been raising concerns about architectural implications and the end of a long term "prices never go up" cloud tenet.
-
Dropbox Makes the Android App Faster and More Reliable: Swaps C++ Code for a Native Approach
Dropbox recently published how it made the camera upload process for Android faster and more reliable. Dropbox engineers removed shared Android and iOS C++ code and replaced it with a platform-native Kotlin implementation. The engineers are pleased with the decision to rewrite the process, stating that error rates went down and upload performance greatly improved.