InfoQ Homepage News
-
Kaggle Publishes 2020 State of Machine Learning and Data Science Report
Kaggle has published a report on the State of Machine Learning and Data Science for 2020. The report is based on survey responses from over two thousand users currently employed as data scientists. The report notes that the "vast majority" of data scientists are under 35 years of age, two-thirds have a graduate degree, and most have less than 10 years coding experience.
-
The Cloud Trust Paradox According to Google Cloud
In a series of three technical articles, Google Cloud has recently discussed how to trust cloud providers, covering the concepts of customer trust, security key management and scenarios where keeping encryption keys off the cloud may be necessary.
-
Google Announces VM Manager, a Suite of Infrastructure Management Tools
In a recent blog post, Google announced VM Manager, a suite of infrastructure management tools to maintain large fleets of Compute Engine VMs more efficiently.
-
JFrog to Shut down JCenter and Bintray
JFrog has announced that it is shutting down the Bintray asset hosting service, which includes the JCenter Java repository, often used by Gradle and Android builds. Uploads to Bintray will be blocked at the end of the month, and assets will be unavailable for download after the end of April, and deleted shortly afterwards. Read on to find out what this means for your Java build pipelines.
-
Draft Published of the Code of Ethical Conduct for Agile Coaching
The Agile Coaching Ethics Initiative has published a draft code of ethics that aims to raise the standards around agile coaching. It runs under the auspices of the Agile Alliance to independently represent the wider agile community.
-
Sandboxing and Other Measures to Harden iMessage on iOS and macOS
After being hit by a 0-click exploit in iMessage last year, Apple has been hard at work to improve the security of its platform. One of the major changes in iOS 14 is BlastDoor, a tightly sandboxed service responsible for parsing all untrusted messages, along with randomization of the shared cache region containing system libraries, and exponential throttling to counter brute-force attacks.
-
The Attacker Defender Divide
Kenna Security and Cyentia analyzed over 18,000 CVEs to determine the paths between when a vulnerability is known, exploited, patchable, and patched. The result demonstrates that attackers have the upper hand for most issues.
-
The Preact Team Releases WMR to Simplify Modern Web App Development
Jason Miller, creator of 3KB Preact alternative to React, recently released WMR, a *tiny all-in-one development tool for modern web apps*. WMR, in a single 2MB file with no dependencies, supports importing npm packages without prior installation, and many of the productivity and production features customary to developers (e.g, hot module reloading, JSX, CSS modules, TypeScript, and more).
-
Canonical Releases Ubuntu Core 20 for Iot Devices and Embedded Systems
Canonical released a minimal containerised version of Ubuntu 20.04 LTS specifically for IoT devices and embedded systems. Ubuntu Core is an operating system for industry and consumer devices. It is available for both x86 and ARM computers. Additional features compared to previous Core operating systems are secure boot, full drive encryption, and secure device recovery.
-
IntelliJ IDEA 2021.1 EAP 1 Supports Java 16
JetBrains released IntelliJ IDEA 2021.1 EAP 1 featuring full support for Java 16. Other noteworthy features include support for Windows Subsystem for Linux (WSL) 2, a built-in browser to preview HTML files, and improved profiling support. This release also makes it possible to run applications via Docker, SSL, and WSL.
-
Npm 7 Now Generally Available, Supports Workspaces and Deterministic Builds
The recently released npm 7 adds several features requested by developers, e.g. support for workspaces, better support for peer-dependency management, or deterministically reproducible builds. npm 7 is a big release that includes several breaking changes aiming at improving the overall developer experience.
-
OpenAI Announces GPT-3 Model for Image Generation
OpenAI has trained a 12B-parameter AI model based on GPT-3 that can generate images from textual description. The description can specify many independent attributes, including the position of objects as well as image perspective, and can also synthesize combinations of objects that do not exist in the real world.
-
Deno Now Compiles to Self-Contained, Standalone Binaries
Deno 1.6 introduced the compilation of Deno projects into standalone executables, whose size Deno 1.7 further reduced (up to 60%). Deno now has a dedicated language server that seeks to improve the experience of Deno developers in code editors. Deno also added support for data URLs, enabling the execution of computer-generated code.
-
AWS Announces Enhanced Console Experience and New v2 APIs for Amazon Lex
AWS recently announced updates to Amazon Lex, a service for building conversational interfaces into any application using voice and text. The service now has an enhanced management console and new V2 APIs, including continuous streaming capability.
-
Newest TeamTNT IRC Bot Steals AWS and Docker Credentials
Cybercrime group TeamTNT’s internet relay chat (IRC) bot has had its functionality expanded from resource theft for crypto-mining to include the theft of Docker API, AWS, GCP and secure shell (SSH) credentials. Researchers have identified multiple recent changes in post-invasion behaviour. The crime group have likened it to a 'Docker Gatling Gun'.