InfoQ Homepage News
-
From "Doing the Things Right" to "Doing the Right Things"
Peter Jacobs, CIO of ING Netherlands, gave a talk at Agile India 2018 in which he explained how fostering and practicing an Agile approach has been helping the organization do things right, and the challenges they are currently facing to guarantee that they actually do the right things.
-
Package Containing Malicious Backdoor Makes its Way into NPM
The NPM security team removed a package masquerading as a cookie parser that actually contained a malicious backdoor, along with three other packages depending on it. The backdoor allowed attackers to inject arbitrary code into a running server and execute it.
-
Managing the Software Supply Chain with the "Grafeas" Metadata API and "Kritis" Deploy Authorization
In a recent Google Cloud Platform (GCP) blog series exploring container security, the GCP team has presented further details of Grafeas -- a common API and language to store, query and retrieve metadata about software components -- and Kritis -- a proposed framework that enables the use of metadata stored in Grafeas to build and enforce real-time deployment policies with Kubernetes.
-
Docker Enterprise Edition 2.0 Brings Easier Kubernetes Integration
The latest version of Docker Enterprise Edition (EE) makes it possible to manage and secure applications running on Kubernetes in heterogeneous environments and provides workflows to simplify the day-to-day management of a Kubernetes environment.
-
Firefox Releases Facebook Container Extension
Firefox has released an extension that it claims will stop the company snooping on users’ non-Facebook web traffic. The Facebook Container extension isolates users' identities to a separate container tab, which makes it harder for Facebook to track other web activity.
-
AWS AppSync Including New GraphQL Features Is Now Generally Available
Last month Amazon made AWS AppSync, a GraphQL service with real-time data and offline programming capabilities, generally available. Moreover, Amazon introduced AWS AppSync the previous year at their re:Invent conference. Now, the current GA release includes several new features that can accelerate development, a test and debug flow, and Amazon CloudWatch integration.
-
NGINX Releases Open Source Web Server with Dynamic Configuration
NGINX recently released version 1.0 of Unit, an open-source web and application server. The server supports remote and dynamic configuration and incurs no service interruptions for configuration changes. Unit 1.0 also supports multiple languages (Go, Perl, PHP, Python, and Ruby) running on the same instance, including multiple versions of the same language.
-
Twitter Passwords May Be Compromised, Could Be One of the Largest Data Breaches in History
On May 3 Twitter announced that they had uncovered and fixed a bug that had resulted in users' passwords being stored in plaintext. No information has been released on how many users were affected, and all users are being recommended to change their passwords. If all users were in fact compromised, this would be the one of the largest known data breaches in history.
-
Major Automakers Aim to Bring Blockchain to Cars
Launched by four of some of the major automakers worldwide and a number of other companies, the Mobility Open Blockchain Initiative (MOBI) focuses on speeding up Blockchain adoption for mobility applications, from payments to ride-sharing and autonomous vehicles.
-
StackPointCloud Enhances Istio and Kubernetes Functionality in Cloud-Native Management Platform
StackPointCloud, provider of a cloud-native management platform for Istio and Kubernetes, has added a series of tools to help enterprises deploy and use microservices and containers. Users can now manage Istio service meshes across Kubernetes clusters using their preferred cloud providers and StackPointCloud has partnered with Packet Host to help customers use ARM with their Kubernetes clusters.
-
Babylon.js 3.2 Release Improves 3D Rendering
The Babylon.js team has announced their 3.2 release which leverages additional WebGL 2.0 features to improve its 3D rendering, further embraces modern JavaScript and TypeScript patterns, and adds more animation options and special effects.
-
Automating Visual Testing with Appraise
Developing applications where the look and feel is key for success might help to automate visual testing. Appraise, an open source tool on Github licensed under MIT, applies the approach of specification by example to visuals. It helps teams to review and approve changes to web pages using visual inspection.
-
JS Foundation Announces Dojo 2.0 Release
On May 2, 2018 the Dojo team released version 2 of Dojo, a JavaScript toolkit. This complete rewrite of Dojo focuses on what's needed for a modern enterprise application. Dojo 2 is built with TypeScript and embraces a component-based architecture and virtual DOM. It includes a range of tooling improvements, including a CLI, integrated testing and utilities for connecting Dojo to popular standards.
-
AWS Open Sources and Expands Serverless Application Model (SAM) Implementation
Amazon Web Services (AWS) recently open sourced its Serverless Application Model (SAM) implementation and added a new event source for CloudWatch Logs subscription filters. The preceding release featured a comprehensive expansion of options to configure and deploy REST APIs via Amazon API Gateway, including support for CORS headers, regional endpoints, and binary media types.
-
F# Web Development with the SAFE Stack
The SAFE stack is a set of F# libraries used together to create web applications. Tomasz Heimowski recently presented the stack at F# eXchange 2018 in a live coding session. He demonstrated the whole experience by creating and deploying a rating application for his talk.