InfoQ Homepage DevOps Content on InfoQ
-
Jakarta EE 10 Delivers New Core Profile and Updates to Specifications
Jakarta EE 10, released on September 22, 2022, is the third major, and fourth overall, release of Jakarta EE by the Jakarta EE Working Group since Oracle donated Java EE 8 to the Eclipse Foundation in 2017. This release aims to deliver a set of coordinated specifications for building modernized, simplified, and lightweight cloud-native Java applications across the spectrum of Jakarta EE.
-
Undistro Wolfi Designed to Mitigate Software Supply Chain Risk
Chainguard has announced the general availability of Wolfi, a new Linux distribution designed for container environments and built to ensure a secure software supply chain. Wolfi is designed to be a minimal distribution that provides a build-time SBOM for all included packages.
-
Java News Roundup: JDK 19 and Jakarta EE 10 Released, String Templates, Payara Platform
This week's Java roundup for September 19th, 2022, features news from OpenJDK, JDK 19, JDK 20, Amazon Corretto 19, BellSoft Liberica JDK 19, Jakarta EE 10, multiple Spring Framework updates, Quarkus 2.12.3, Payara Platform updates, Micronaut 3.7.0, GraalVM Native Build Tools 0.9.14, JobRunr 5.2.0, PrimeFaces point releases, Failsafe 3.3.0, Apache Groovy 3.0.13 and Apache Log4j2 2.19.0.
-
Google Distributed Cloud Virtual Now Supports Virtual Machines
Recently Google announced the general availability of virtual machine (VM) support in Anthos for bare metal, also known as Google Distributed Cloud Virtual (GDC), which will allow customers to run VMs alongside containers on a single, unified, Google Cloud-connected platform in their data center or at the edge.
-
Terraform 1.3 Release Introduces Simplified Refactoring Experience
HashiCorp has announced the release of the 1.3 version of Terraform. This release introduces optional object type attributes with defaults and expands the capabilities of moved blocks.
-
Multi-Factor Authentication Fatigue Key Factor in Uber Breach
Earlier this week, Uber disclosed that the recent breach it suffered was made possible through a multi-factor authentication (MFA) fatigue attack where the attacker disguised themselves as Uber IT.
-
Debugging Large and Complex Dockerfiles Gets Easier with Buildg
Kohei Tokunaga has released buildg - an interactive tool for debugging Dockerfiles. The motivation for the project is to provide an easy-to-use interactive tool to inspect this build process. The tool also containers support for debugging Dockerfiles directly from inside several popular IDEs (Integrated Developer Environments), such as VS Code, Emacs and Neovim.
-
Microsoft Announces New Azure Space Capabilities
Recently Microsoft announced a series of updates around Azure Space, their offering combing cloud and space. The company now brings Azure Orbital to general availability (GA), offers a new service with Azure Orbital Cloud Access in preview, and advances the digital transformation of satellite communication networks.
-
Production Identity Framework SPIRE Graduates from CNCF
The Cloud Native Computing Foundation has announced the graduation of SPIFFE and SPIRE. SPIFFE defines a standard to authenticate software services through the use of platform-agnostic, cryptographic identities. SPIRE is an implementation of the SPIFFE API that is production ready. Recent improvements to the project include adding experimental Windows support.
-
Open-Source Constellation K8 Engine Aims to Bring Confidential Computing to Kubernetes
Constellation is a Kubernetes engine that shields Kubernetes clusters from the rest of the cloud infrastructure using confidential computing and confidential VMs. This creates a confidential context that ensures data is always encrypted, both at rest and in memory.
-
Kubernetes Control Plane Metrics Now Available in Google Kubernetes Engine
Google has announced the general availability of Kubernetes control plane metrics in Google Kubernetes Engine (GKE). These metrics are directly integrated with Google Cloud Monitoring providing a single solution for troubleshooting issues with GKE. Integration with third-party observability tooling is also possible via the Cloud Monitoring API.
-
Open-Source Threat Detection Tool Falco Adds Support for Google gVisor
The latest version of Falco introduces support for gVisor, Google's application kernel providing an additional isolation layer between applications and the host OS. Using Falco 0.32.1 users can monitor security events from gVisor to detect threats and audit containers.
-
Java 19 Delivers Features for Projects Loom, Panama and Amber
Oracle has released version 19 of the Java programming language and virtual machine with a final feature set that includes seven JEPs. This release features JEPs that provide continued contribution toward Project Amber, Project Loom and Project Panama along with a new feature that ports the JDK to the Linux/RISC-V instruction set.
-
GCP Announces MITRE ATT&CK Mappings to Implement Security Controls
Google Cloud Platform (GCP) recently announced the MITRE ATT&CK Mappings to improve security controls across the Google Cloud workloads. MITRE ATT&CK framework is a globally-accessible knowledge base of adversary tactics & techniques based on real-world observations. The mappings will empower Google Cloud users to assess the GCP controls against adversary tactics, techniques and procedures(TTPs).
-
AWS Glue Now Supports Crawler History
AWS recently launched support for histories of AWS Glue Crawlers, which allows the interrogation of Crawler executions and associated schema changes for the last 12 months.