A researcher from Federacy released a report analyzing vulnerabilities in Docker images in public repositories. 24% of images were found to have significant vulnerabilities, with Ubuntu based ones having the most and Debian based ones having the least.
Four years since the release of version 7, Vaadin released version 8 of their polyglot framework that features 21 improvements in areas of typesafe APIs and performance.
HashiCorp have released Terraform 0.9., which includes: significant improvements to how remote state is managed, including state locking, ‘state environments’ and a new centralised initialisation command ‘terraform init’; destroy provisioners that can be configured run before a resource is destroyed; and resource interrupts, allowing the immediate interrupts to be handled with custom logic.
Since the beginning of 2017 the Cloud Native Computing Foundation (CNCF) has added three new projects to their portfolio for hosting and stewardship, including: linkerd, a transparent proxy ‘service mesh’ that provides service discovery, failure handling and visibility; gRPC, a language agnostic high performance RPC framework; and CoreDNS, a fast and configurable cloud native DNS server.
A recent survey led by Dimension Data on the testing trends in modern development teams shows that agile methods are widely adopted, whereas only a few organizations reported the ability to deploy on a hourly-basis, an increasing goal amongst the respondents.
HelloFresh recently migrated their applications to a new API gateway with zero downtime. Their Director of Engineering, Ítalo Lelis de Vietro, shared the challenges and the migration process in a recent article.
Platform9 has released ‘Kube2Go’, a Kubernetes deployment service, which complements their recently launched multi-cloud managed Kubernetes offering and ‘Fission’ open source serverless framework that runs on top of Kubernetes.
Cloud enthusiasts from around the world attended Google Cloud Next to hear an update from the search giant. Three broad themes emerged from the many keynotes and 200+ sessions: service scale and maturity, usable machine learning, and enterprise-friendliness.
Bouyant, a cloud-native services company, announced the one-year anniversary of Linkerd, an open source “service mesh” project for cloud-native microservices-based applications. William Morgan, founder and CEO of Bouyant, spoke exclusively to InfoQ about this milestone.
JD.com, one of China’s largest e-commerce companies, recently shared their experience in adopting Kubernetes to evolve to an application container based infrastructure from an OpenStack-managed IaaS one. The move, that also includes an in-house component for networking, improved resource utilization by 30%.
Is it Possible to Test Programmable Infrastructure? Matt Long at QCon London Made the Case for "Yes"
At QCon London, Matt Long, QA Consultant at OpenCredo presented “Testing Programmable Infrastructure with Ruby”. Key takeaways included: it is possible to test programmable infrastructure at the unit, integration, and acceptance level; Ruby provides the power of a full programming language for integration and acceptance tests, and is often understood by both testers and sysadmins;
The main benefit of continuous delivery is lower-risk releases; comprehensive test automation and continuous integration are practices that have the biggest impact on IT performance. Research of continuous delivery and IT performance tells us that implementing continuous delivery practices leads to higher IT performance and high performers achieve both higher tempo and higher levels of stability.
Public review of JSR 374: Java API for JSON Processing (JSON-P) version 1.1 is now open. This version adds support for IETF standards and is expected to be included in the release of J2EE 8 along with Java API for JSON Binding (JSON-B).
Marking the 20th year since Visual Studio's first release, Visual Studio 2017 has formally been made available. VS2017 focuses on improvements to its core developer experience, in addition to greater support for mobile & cloud applications as well as more capable DevOps functionality.
A mistake took down more S3 servers than it should, including two subsystems essential to S3 operation. This resulted in S3 failure, affecting the S3 service and other services depending on it. Normal functioning was restored in about four hours.
Featured Blog Post
Case Studies Post