InfoQ Homepage DevOps Content on InfoQ
-
GitLab 14.6 Improves Geo Replication and Adds Support for .NET 6 Projects
GitLab 14.6 new Geo configuration streamlines the process of using the geographically closest replica to speed up clone and pull commands. It also introduces an activity list for GitLab's Agent to log real-time events and brings support for .NET 6.
-
Java News Roundup: More Log4Shell Statements, Spring and Quarkus Updates, New Value Objects JEP
This week's Java roundup for December 20th, 2021, features news from OpenJDK with a new draft on value objects, JDK 18, JDK 19, Project Loom, additional statements from vendors on Log4Shell, numerous Spring and Quarkus updates, Hibernate ORM 6.0.0-M3, point releases from Apache Camel and Camel Quarkus, Apache Tika 2.2.1 and GraalVM Native Build Tools 0.9.9.
-
AWS Offers a Mainframe Modernization Service for Customers to Move from Their Mainframes
During re:Invent 2021, AWS launched a mainframe migration service allowing customers to migrate and modernize their on-premises mainframe workloads to a managed and highly available runtime environment on AWS. The service called AWS Mainframe Modernization is currently in preview.
-
Java News Roundup: Updates on Log4Shell, Spring Framework 6.0-M1, WildFly 26
This week's Java roundup for December 13th, 2021, features news from JDK 19, updates on the Log4Shell vulnerability, vendor statements on Log4Shell related to their products, point releases on various Spring-related projects and Hibernate, WildFly 26, Payara Platform, Quarkus 2.5.3.Final, Apache Camel 3.14.0, Piranha 21.11.0, and Apache Tika 2.2.0.
-
AWS Re-Launches Amazon Inspector with New Architecture and Features
Amazon Inspector is an automated vulnerability management service that continually scans AWS workloads for software vulnerabilities and unintended network exposure. It was first launched in 2015, and during the recent re:Invent 2021, AWS re-launched it with brand new architecture and a host of new features such as container-based workloads, integration with Amazon Event Bridge, and Security Hub.
-
An Overview of Twitter's Security Key Implementation
Recently, Twitter migrated their internal workforce accounts from legacy two-factor authentication (2FA) to physical security keys. Aimed at preventing phishing attacks, the security keys can identify malicious sites by leveraging the FIDO and WebAuthn security standards.
-
GitHub Release Improved Developer Flow at Universe Event
At their annual industry event, GitHub released new functionality with a focus on flow, better developer experience, and security. GitHub Universe is an annual conference -- which ran virtually this year -- bringing a raft of announcements relating to new functionality in GitHub - Microsoft’s developer source code repo and software integration tool.
-
Java News Roundup: JDK 18 in Rampdown, JDK 19 Expert Group, Log4j2 Vulnerability, MicroProfile 5.0
This week's Java roundup for December 6th, 2021, features news from OpenJDK JEPs, JDK 18 having moved into Rampdown Phase One, the creation of JDK 19 expert group, the discovery of a remote code execution vulnerability in Log4J, MicroProfile 5.0, and various Spring, Hibernate and Quarkus point releases.
-
Google's Network-Based Threat Detection Service Cloud IDS is Now Generally Available
Recently, Google announced the general availability of its Cloud IDS for network-based threat detection. This core network security offering helps detect network-based threats and helps organizations meet compliance standards that call for an intrusion detection system.
-
AWS Cloud WAN, a New Managed Wide-Area Networking Service, is Now in Preview
Recently, Invent 2021 AWS announced the preview release of a new networking service, AWS Cloud WAN. With this managed wide-area networking (WAN) service, customers can build, manage, and monitor a global network that connects resources running across your cloud and on-premises environments.
-
Vulnerability Affecting Multiple Log4j Versions Permits RCE Exploit
On December 9th, it was made public on Twitter that a zero-day exploit had been discovered in log4j, a popular Java logging library. All the library’s versions between 2.0 and 2.14.1 included are affected. Log4j 2.15.0 has been released, which no longer has this vulnerability. As the POC published on GitHub points out, when log4j logs an attacker-controlled string value it can result in an RCE.
-
AWS Announces Construct Hub and New Version of AWS Cloud Development Kit at re:Invent 2021
Recently, AWS announced the general availability (GA) of version 2.0 of the AWS Cloud Development Kit (AWS CDK) and AWS Construct Hub during its annual re:Invent conference.
-
AWS Releases Preview of a New Low-Code Development Tool with Amplify Studio at re:Invent
At the recent re:Invent AWS announced Amplify Studio, a new Figma-connected low-code service meant to help developers quickly build cloud-connected apps. The new tool is an extension of the existing AWS Amplify service, which focuses on building web and mobile apps but lacks the easy-to-use drag-and-drop interface of Amplify.
-
Leading a DevOps Transformation - a Collaborative Engineering Approach
When leading a DevOps transformation, transparency and visibility can help to get teams engaged in chance. Once involved, developers can act as knowledge multipliers and contribute to change initiatives. A mixture of solving frequently-occurring problems, addressing complex problems, and showing progress of the transformation can help to keep stakeholders involved.
-
Get Consistent Access to Third-Party APIs with AWS Data Exchange for APIs
During the recent AWS re:Invent in Las Vegas, the company announced the AWS Data Exchange for APIs. This new capability enables customers to find, subscribe to, and use third-party API products from providers on AWS Data Exchange.