InfoQ Homepage DevOps Content on InfoQ
-
InfluxData Releases Its New Database Engine in InfluxDB Cloud
InfluxData releases into general availability the new version of its database engine called Influx IOx. It is now available to be used in InfluxDB Cloud.
-
Software Supply Chain Framework OSC&R Created to Help Mitigate Security Threats
In collaboration with companies including Google, Microsoft, and GitLab, OX Security has released a security framework for assessing and evaluating software supply chain security risks. The Open Software Supply Chain Attack Reference (OSC&R) is a MITRE-like framework covering containers, open-source software, secrets hygiene, and CI/CD posture.
-
Java News Roundup: JDK 20 RC1, Open Liberty, Micronaut, Helidon, Hibernate, Groovy, Grails
This week's Java roundup for February 6th, 2023, features news from OpenJDK, JDK 20, JDK 21, Open Liberty 23.0.0.1 and 23.0.0.2-beta, Helidon 3.1.1, Quarkus 2.16.2 and 3.0.0.Alpha4, Micronaut 3.8.4, Hibernate ORM 6.2, 6.1.7 and 5.6.15, Grails 5.3.0, Apache Groovy 4.0.9 and 3.0.15, Apache Camel 3.20.2, Eclipse Vert.x 4.3.8, Gradle 8.0.0-RC5, Jarviz 0.2.0, Kotlin K2 compiler and Jfokus conference.
-
Containerd Adds Support for a New Container Type: Wasm Containers
The runwasi project, written in Rust, became an official contained project, which enables containerd to support a new container type: Wasm (or WebAssembly) containers.
-
CloudNativeSecurityCon 2023: Identifying Suspicious Behaviors with eBPF
At CloudNativeSecrityCon 2023 in Seattle, WA, Jeremy Cowan and Wasiq Muhammad, both engineers at AWS, presented on identifying suspicious behaviors with eBPP, its use cases, and how AWS is using it for threat detection and protection.
-
Malicious PyPI Package Removes netstat, Tampers with SSH Config
A recent report by Sonatype security researcher Ax Sharma highlights newly discovered malicious packages on the PyPI registry, including aptx, which can install the Meterpreter trojan disguised as pip, delete the netstat system utility, and tamper with SSH authorized_keys file.
-
Service Mesh Kuma Improves Policy Handling and Debugging Experience
Kuma, a service mesh technology, released version 2.1 with improved policies and an updated UI. The improved policies build upon the 2.0 release and move the remaining policies over to the new targetRef system. The targetRef system provides an improved matching system for defining policies.
-
Azure Announces Native New Relic Service for Full-Stack Observability
Azure recently announced a native New Relic service for full-stack observability. The performance monitoring service allows monitoring and troubleshooting of cloud applications in real-time, providing metrics, traces, and logs.
-
Grafana Tempo Introduces New Query Language and Support for Apache Parquet
Grafana has released Grafana Tempo 2.0 which introduces the new TraceQL query language and support for the Apache Parquet format. Grafana Tempo is an open-source tracing backend that works with object storage. The new TraceQL query language works with the Apache Parquet format to provide improved search times and queries aligned to traces.
-
Microsoft’s Fully-Managed Azure Load Testing Service Now Generally Available
Microsoft recently announced the general availability of Azure Load Testing, a fully-managed load-testing service allowing customers to test the resiliency of their applications regardless of where they are hosted.
-
Azure Durable Functions Now Supports Storage Backends Microsoft Netherite and MSSQL
Microsoft recently announced that Azure Durable Functions support for the new storage providers, Netherite and Microsoft SQL Server (MSSQL), is generally available.
-
Software Security Report Finds JavaScript Applications Have Fewer Flaws Than Java and .NET
Veracode's State of Software Security report for 2023 found that there is a 27% chance within a given month that security flaws will be introduced into an application. The report also found that JavaScript applications on average have fewer flaws and faster flaw resolution than Java and .NET applications.
-
gopaddle, a Low Code Internal Developer Platform for MicroK8s and Edge
gopaddle is a low-code internal developer platform (IDP) for MicroK8s edge cloud. It aims to simplify and accelerate the development of edge cloud applications by providing a web-based interface to Kubernetes developers for creating, deploying, and managing applications.
-
VMware Tanzu Application Platform Adds Buildpack Improvements and Application Limits
VMware released a number of new features for the Tanzu Application Platform and the Tanzu Application Service. Tanzu Application Platform provides a multi-cloud platform that runs on Kubernetes. Tanzu Application Service is a delivery and operations platform. The features include buildpack improvements, API maturity scoring, services to prevent the impact of noisy neighbors, and shared routes.
-
Java News Roundup: Helidon 4.0-Alpha4, Spring, GlassFish, Quarkus, Ktor, (Re)Introducing RIFE2
This week's Java roundup for January 30th, 2023, features news from JDK 20, JDK 21, Spring Tools 4.17.2, GlassFish 7.0.1, Quarkus 2.16.1, Helidon 4.0.0.-ALPHA4, Hibernate Search 6.1.8 and 5.11.12, PrimeFaces 11.0.10 and 12.0.3, Apache Commons CSV 1.10.0, JHipster Lite 0.27.0, Ktor 2.2.3 and (re)introducing RIFE2 1.0.