InfoQ Homepage News
-
Over 100K+ Sites Hit by Polyfill.io Supply Chain Attack
E-Commerce security firm Sansec unveiled a new supply chain attack affecting the Polyfill JS service when accessed through a number of CDNs hosting it. According to Sansec, over 100K sites were hit. The original author of the service, Andrew Betts, suggested removing Polyfill from any sites using it.
-
Uber’s Journey to Modernizing Big Data Infrastructure with Google Cloud Platform
In a recent post on its official engineering blog, Uber, disclosed its strategy to migrate the batch data analytics and machine learning (ML) training stack to Google Cloud Platform (GCP). Uber, runs one of the largest Hadoop installations in the world, managing over an exabyte of data across tens of thousands of servers in each of its two regions
-
Non-Production Endpoints as an Attack Surface in AWS
The security team at Datadog recently disclosed a security issue on AWS where non-production endpoints were used as an attack surface to silently perform permission enumeration. AWS has since remediated these specific bypasses.
-
Introducing Redis Cloud Packages
Redis has released its new product named Redis Cloud Packages, a combination of pre-configured Redis Cloud instances designed to meet specific workloads and use cases, allowing users to skip from manual configurations and removing the hassle of managing Redis instances, making it more accessible and efficient for developers. Users can use a package for caching, NoSQL or vector databases.
-
How GitHub Improved Code Push Processing Reliability
GitHub has rolled out several technical upgrades to enhance the reliability and efficiency of code pushes, one of the frequent actions performed by developers on the platform. This move addresses potential issues and aims to provide a smoother experience for users who regularly push code to GitHub.
-
Amazon Brings AI Assistant to Software Development as Part of Amazon Q Suite
Amazon has recently released Amazon Q Developer Agent, an AI-powered assistant that uses natural language input from developers to generate features, bug fixes, and unit tests within an integrated development environment (IDE). It employs large language models and generative AI to understand a developer's natural language request, and then generate the necessary code changes.
-
Swift 6 Brings New Opt-In Data-Race Safe Mode
In his WWDC 2024 talk, Apple's Languages and Runtimes team lead and Swift core team member Ted Kremenek introduced Swift 6 new data-race safe mode, which promises to help developers create concurrent programs free of data races thanks to a new compile-time static detector.
-
How Data Mesh Platforms Connect Data Producers and Consumers
A challenge that companies often face when exploiting their data in data warehouses or data lakes is that ownership of analytical data is weak or non-existent, and quality can suffer as a result. A data mesh is an organizational paradigm shift in how companies create value from data where responsibilities go back into the hands of producers and consumers.
-
Google Cloud Introduces Hierarchical Namespace for Cloud Storage in Preview
Google Cloud has announced a significant update to its Cloud Storage services by introducing the Hierarchical Namespace (HNS). Now available in preview, this new feature allows users to organize their storage buckets in a hierarchical file system structure, enhancing performance, consistency, and manageability.
-
InfoQ Dev Summit Boston: Being a Responsible Developer in the Age of AI Hype
At InfoQ Dev Summit in Boston, Justin Sheehy of Akamai delivered an insightful opening keynote on being a responsible developer in the age of artificial intelligence (AI) hype. The talk was aimed at software practitioners who might be feeling overwhelmed by the rapid developments and inflated expectations surrounding AI.
-
High HTTP Scaling with Azure Functions Flex Consumption: Q&A with Thiago Almeida and Paul Batum
Microsoft has introduced a significant enhancement to its Azure Functions platform with the Flex Consumption plan, designed to handle high HTTP scale efficiently. This new plan supports customizable per-instance concurrency, allowing users to achieve high throughput while managing costs effectively. In practical tests, Azure Functions Flex demonstrated the ability to scale from zero to 32,000 RPS.
-
ASP.NET Core 9 Preview 5: Static Web Optimization, Blazor Additions, New Project Template and More
Microsoft released .NET 9 Preview 5, introducing significant enhancements to ASP.NET Core. This update focuses on optimizing static web asset delivery and improving the Blazor Server reconnection experience, alongside new features for runtime detection of component render modes and various other improvements to the platform.
-
Atlassian Announces Compass, a Developer Experience Platform
Atlassian recently announced Compass, a developer experience platform that enhances software architecture performance. Compass streamlines software architecture cataloging, integrating code repositories and toolchain data. Also, it sets the health standards for continuous improvement.
-
Meta's Chameleon AI Model Outperforms GPT-4 on Mixed Image-Text Tasks
The Fundamental AI Research (FAIR) team at Meta recently released Chameleon, a mixed-modal AI model that can understand and generate mixed text and image content. In experiments rated by human judges, Chameleon's generated output was preferred over GPT-4 in 51.6% of trials, and over Gemini Pro in 60.4%.
-
JEP 456: Preparing for the Removal of Unsafe Memory-Access Methods
JEP 471, Deprecate the Memory-Access Methods in sun.misc.Unsafe for Removal, has been delivered for JDK 23. This JEP proposes to deprecate the memory access methods in the Unsafe class for removal in a future release. These unsupported methods have been superseded by standard APIs: JEP 193, Variable Handles, delivered in JDK 9; and JEP 454, Foreign Function & Memory API, delivered in JDK 22.