InfoQ Homepage DevOps Content on InfoQ
-
HashiCorp Boundary 0.7 and Boundary Desktop 1.4 Released with Dynamic Host Catalogs
HashiCorp has released version 0.7 of their Boundary open-source project that automates secure identity-based user access to hosts and services across environments. Boundary Desktop 1.4 has also been released for Mac, Linux, and Windows. Key new features include dynamic host catalogs, plugin support (currently for internal use only), and managed groups and resource filtering in the admin console.
-
End of Year Learnings from Minecraft’s Migration to JDK 16 and Q&A with the Mojang Team
In an effort to obtain a smoother transition towards JDK 17, Minecraft decided to upgrade to JDK 16 first just months before Java's LTS release in September 2021. The changes point towards possible performance gains just by running JDK 17 out-of-the-box. InfoQ reached out to the Mojang team with further questions on their experience running JDK 16 in production.
-
GitLab 14.6 Improves Geo Replication and Adds Support for .NET 6 Projects
GitLab 14.6 new Geo configuration streamlines the process of using the geographically closest replica to speed up clone and pull commands. It also introduces an activity list for GitLab's Agent to log real-time events and brings support for .NET 6.
-
Java News Roundup: More Log4Shell Statements, Spring and Quarkus Updates, New Value Objects JEP
This week's Java roundup for December 20th, 2021, features news from OpenJDK with a new draft on value objects, JDK 18, JDK 19, Project Loom, additional statements from vendors on Log4Shell, numerous Spring and Quarkus updates, Hibernate ORM 6.0.0-M3, point releases from Apache Camel and Camel Quarkus, Apache Tika 2.2.1 and GraalVM Native Build Tools 0.9.9.
-
AWS Offers a Mainframe Modernization Service for Customers to Move from Their Mainframes
During re:Invent 2021, AWS launched a mainframe migration service allowing customers to migrate and modernize their on-premises mainframe workloads to a managed and highly available runtime environment on AWS. The service called AWS Mainframe Modernization is currently in preview.
-
Java News Roundup: Updates on Log4Shell, Spring Framework 6.0-M1, WildFly 26
This week's Java roundup for December 13th, 2021, features news from JDK 19, updates on the Log4Shell vulnerability, vendor statements on Log4Shell related to their products, point releases on various Spring-related projects and Hibernate, WildFly 26, Payara Platform, Quarkus 2.5.3.Final, Apache Camel 3.14.0, Piranha 21.11.0, and Apache Tika 2.2.0.
-
AWS Re-Launches Amazon Inspector with New Architecture and Features
Amazon Inspector is an automated vulnerability management service that continually scans AWS workloads for software vulnerabilities and unintended network exposure. It was first launched in 2015, and during the recent re:Invent 2021, AWS re-launched it with brand new architecture and a host of new features such as container-based workloads, integration with Amazon Event Bridge, and Security Hub.
-
An Overview of Twitter's Security Key Implementation
Recently, Twitter migrated their internal workforce accounts from legacy two-factor authentication (2FA) to physical security keys. Aimed at preventing phishing attacks, the security keys can identify malicious sites by leveraging the FIDO and WebAuthn security standards.
-
GitHub Release Improved Developer Flow at Universe Event
At their annual industry event, GitHub released new functionality with a focus on flow, better developer experience, and security. GitHub Universe is an annual conference -- which ran virtually this year -- bringing a raft of announcements relating to new functionality in GitHub - Microsoft’s developer source code repo and software integration tool.
-
Java News Roundup: JDK 18 in Rampdown, JDK 19 Expert Group, Log4j2 Vulnerability, MicroProfile 5.0
This week's Java roundup for December 6th, 2021, features news from OpenJDK JEPs, JDK 18 having moved into Rampdown Phase One, the creation of JDK 19 expert group, the discovery of a remote code execution vulnerability in Log4J, MicroProfile 5.0, and various Spring, Hibernate and Quarkus point releases.
-
Google's Network-Based Threat Detection Service Cloud IDS is Now Generally Available
Recently, Google announced the general availability of its Cloud IDS for network-based threat detection. This core network security offering helps detect network-based threats and helps organizations meet compliance standards that call for an intrusion detection system.
-
AWS Cloud WAN, a New Managed Wide-Area Networking Service, is Now in Preview
Recently, Invent 2021 AWS announced the preview release of a new networking service, AWS Cloud WAN. With this managed wide-area networking (WAN) service, customers can build, manage, and monitor a global network that connects resources running across your cloud and on-premises environments.
-
Vulnerability Affecting Multiple Log4j Versions Permits RCE Exploit
On December 9th, it was made public on Twitter that a zero-day exploit had been discovered in log4j, a popular Java logging library. All the library’s versions between 2.0 and 2.14.1 included are affected. Log4j 2.15.0 has been released, which no longer has this vulnerability. As the POC published on GitHub points out, when log4j logs an attacker-controlled string value it can result in an RCE.
-
AWS Announces Construct Hub and New Version of AWS Cloud Development Kit at re:Invent 2021
Recently, AWS announced the general availability (GA) of version 2.0 of the AWS Cloud Development Kit (AWS CDK) and AWS Construct Hub during its annual re:Invent conference.
-
AWS Releases Preview of a New Low-Code Development Tool with Amplify Studio at re:Invent
At the recent re:Invent AWS announced Amplify Studio, a new Figma-connected low-code service meant to help developers quickly build cloud-connected apps. The new tool is an extension of the existing AWS Amplify service, which focuses on building web and mobile apps but lacks the easy-to-use drag-and-drop interface of Amplify.