InfoQ Homepage News
-
Twelve-Year Old Linux Distros Vulnerability PwnKit Enables Local Privilege Escalation
A recently disclosed vulnerability affecting the PolKit component has been present on several Linux distributions for over 12 years. The vulnerability is easily exploited, says Bharat Jogi, director of the Qualys research team, who discovered it, and allows any unprivileged user to gain full root privileges on a vulnerable host.
-
CNCF Publishes State of Cloud Native Development Report
CNCF has published the latest edition of the State of Cloud Native Development Report. An important finding from the report indicates that the cloud native developer population has grown by 0.3 million during the period from Q1 2020 to Q1 2021. Edge computing has the highest usage rates of containers and Kubernetes, with 63% of edge developers adopting Kubernetes and 76% adopting containers.
-
Q&A with Matthew Farina of SUSE Regarding Kubernetes Rancher Desktop
InfoQ caught up with Matthew Farina, software architect at SUSE, regarding Rancher Desktop 1.0.0, talking about the challenges of Kubernetes and container management on the desktop and how it influenced the design and evolution of the Rancher Desktop.
-
Google Introduces Autoscaling for Cloud Bigtable for Optimizing Costs
Cloud Bigtable is a fully-managed, scalable NoSQL database service for large operational and analytical workloads on the Google Cloud Platform (GCP). And recently, the public cloud provider announced the general availability of Bigtable Autoscaling, which automatically adds or removes capacity in response to the changing demand for applications allowing cost optimizations.
-
Etsy Moves from React to Preact to Lower Migration Risks
Ben Sangster, software engineer at Etsy, recently detailed the reasoning behind Etsy’s migration from React v15.6 to Preact 10. Going beyond the difference in library size, Sangster argued that adopting Preact lowered the risk associated to migrating Etsy’s large codebase. As Preact was already used by Etsy’s front-end team, migrating to Preact would avoid maintaining a fragmented stack.
-
Amazon OpenSearch Adds Anomaly Detection for Historical Data
Amazon OpenSearch recently introduced the support of anomaly detection for historical data. The machine learning based feature helps identifying trends, patterns, and seasonality in OpenSearch data.
-
Elastic Releases Terraform Providers for the Elastic Stack and Elastic Cloud
Elastic has released their official Terraform provider for configuring the Elastic Stack. The provider enables configuring ElasticSearch, Kibana, Fleet, and other Elastic Stack components. This follows closely on their release of the Elastic Cloud Terraform provider.
-
Apple Open Sources GCGC: a Tool to Analyze Java GC Logs
Apple has open-sourced GCGC, a tool for Java Garbage Collector (GC) logs visualization based on Python 3 and pandas. GCGC uses a Jupyter notebook to analyze and visualize GC log files.
-
Austrian DPA Ruling against Google Analytics Paves the Way to EU-based Cloud Services
In a recent ruling, the Austrian data regulator declared the use of Google Analytics unlawful based on EU GDPR regulation. While the ruling is very specifically argued and worded, its implications go well beyond this particular case.
-
How AI Supports IT Operators to Resolve Issues Faster and Keep Systems Running
AIOps is all about equipping IT teams with algorithms that can help in quicker evaluation, remediation or actionable insights based on their historical data without the need to solicit feedback from users directly. AI can help IT operators to work smart, resolve issues faster and keep the systems up and running to deliver great end-user experience.
-
What's New in MicroProfile 5.0
Delivered under the auspices of the MicroProfile Working Group and five months after the release of MicroProfile 4.1, the anticipated release of MicroProfile 5.0 was made available to the Java community. This new release features alignment with Jakarta EE 9.1 and updates to all eight community-developed core APIs and one standalone API.
-
Google and GitHub Announce OpenSSF Scorecards v4 with New GitHub Actions Workflow
GitHub and Google have announced the version 4 release of the Open Source Security Foundation (OpenSSF)'s Scorecards project. Scorecards is an automated security tool that identifies risky supply chain practices in open source projects. This release includes a new Scorecards GitHub Action, new security checks, and a large increase in the repositories included in the foundations weekly scans.
-
OpenAI Announces Question-Answering AI WebGPT
OpenAI has developed WebGPT, an AI model for long-form question-answering based on GPT-3. WebGPT can use web search queries to collect supporting references for its response, and on Reddit questions its answers were preferred by human judges over the highest-voted answer 69% of the time.
-
Microsoft Releases YARP - Yet Another Reverse Proxy
Last year, in November, Microsoft released YARP (Yet Another Reverse Proxy), a reverse-proxy project developed during the last years by Microsoft as an open-source project.
-
GraalVM 22.0 Released with Native Image Improvements
GraalVM, a polyglot virtual machine that provides a shared runtime to execute applications written in multiple languages, has released version 22.0 with many native image improvements. The native image builder utility comes with significant improvements to speed up build times, reduce image sizes, utilize less memory to build & run images, and provide deep insights into image generation process.