InfoQ Homepage DevOps Content on InfoQ
-
Software Security Report Finds JavaScript Applications Have Fewer Flaws Than Java and .NET
Veracode's State of Software Security report for 2023 found that there is a 27% chance within a given month that security flaws will be introduced into an application. The report also found that JavaScript applications on average have fewer flaws and faster flaw resolution than Java and .NET applications.
-
gopaddle, a Low Code Internal Developer Platform for MicroK8s and Edge
gopaddle is a low-code internal developer platform (IDP) for MicroK8s edge cloud. It aims to simplify and accelerate the development of edge cloud applications by providing a web-based interface to Kubernetes developers for creating, deploying, and managing applications.
-
VMware Tanzu Application Platform Adds Buildpack Improvements and Application Limits
VMware released a number of new features for the Tanzu Application Platform and the Tanzu Application Service. Tanzu Application Platform provides a multi-cloud platform that runs on Kubernetes. Tanzu Application Service is a delivery and operations platform. The features include buildpack improvements, API maturity scoring, services to prevent the impact of noisy neighbors, and shared routes.
-
Java News Roundup: Helidon 4.0-Alpha4, Spring, GlassFish, Quarkus, Ktor, (Re)Introducing RIFE2
This week's Java roundup for January 30th, 2023, features news from JDK 20, JDK 21, Spring Tools 4.17.2, GlassFish 7.0.1, Quarkus 2.16.1, Helidon 4.0.0.-ALPHA4, Hibernate Search 6.1.8 and 5.11.12, PrimeFaces 11.0.10 and 12.0.3, Apache Commons CSV 1.10.0, JHipster Lite 0.27.0, Ktor 2.2.3 and (re)introducing RIFE2 1.0.
-
Octosuite: a GitHub Open Source Intelligence Framework
Octosuite, an open-source intelligence (OSINT) framework, recently released its latest version 3.1.0. Octosuite provides a wide range of commands to investigate publicly-visible GitHub accounts and repositories through GitHub’s Public APIs. Written in Python, Octosuite provides a secure and user-friendly interface to easily search and explore data related to a repository, organization, or user.
-
Infrastructure from Code: the New Wave of Cloud Infrastructure Management
Infrastructure-from-Code (IfC) is an approach that creates, configures, and manages cloud resources understanding a software application's source code, without explicit description.
-
Permit Elements Enables Low-Code User-Managed Access Control
Permit.io has released Permit Elements, a low-code end-user authentication interface builder. Permit Elements allows developers to embed interfaces enabling their end-users to decide which roles have permission to perform actions. At the time of release, there are elements available for user management and audit logs.
-
Azure Now Supports Database as a Service Couchbase Capella
A cloud database platform company Couchbase recently announced that its Capella database as a Service (DBaaS) offering as a fully-managed service is available on Azure.
-
AWS Patches Undocumented APIs Bypassing CloudTrail Event Logging
AWS recently patched undocumented IAM APIs that bypassed CloudTrail logging. The vulnerability allowed a malicious user to perform reconnaissance activities on IAM without recording events in CloudTrail or being detected by Amazon GuardDuty.
-
Terraform Cloud Adds Dynamic Provider Credentials and OPA Support
Hashicorp has released several new features into Terraform Cloud, their managed service offering for Terraform. The new features include dynamic provider credentials, native OPA support, and the addition of projects as an organization tool.
-
Windows Terminal 1.17 Preview Released
Windows Terminal preview version 1.17, released on January 24th, brings various features and bug-fixes to Microsoft’s own open source terminal application. Notable features include Dropdown Menu Customization, Process Restart support and an improved Color Schemes Page.
-
Kubefirst Platform Improves Local Experience and Password Management
Kubefirst, an open-source infrastructure application platform, recently released version 1.11. This version adds improved support for their local installation including a new local DNS implementation, enables Traefik ingress controller for local installs, and adds trusted local TLS certificates.
-
CNCF Kicks off CloudNativeSecurityCon NA 2023
The Cloud Native SecurityCon North America 2023 kicked off this week in Seattle. The first dedicated event focused on Cloud Native Security with over 800 attendees, 70 sessions, 50 sponsors, and vendors organized by the Cloud Native Computing Foundation (CNCF).
-
AWS OpenSearch Serverless Now Generally Available
Amazon recently announced the general availability of OpenSearch Serverless, a new serverless option for Amazon OpenSearch service, which automatically provisions and scales the underlying resources for faster data ingestion and query responses.
-
Slack's Lessons Learned from Supporting Highly Regulated Workloads on AWS GovCloud
Archie Gunasekara, staff software engineer at Slack, and Andrew Martin, staff software engineer at Slack, recently shared their learnings in building GovSlack, an instance of Slack running on the AWS GovCloud region. They shared challenges in adapting to unsupported services, account creation, and account isolation.