InfoQ Homepage DevOps Content on InfoQ
-
Sonatype Disables Unencrypted Access to Maven
Sonatype has disabled unencrypted HTTP access to Maven Central, improving security for build systems such as Maven, Gradle, SBT, and other dependency systems.
-
Gradle 6 Brings Significant Dependency Management Improvements
Gradle, the customizable open source build automation tool, has released version 6.0 with significant improvements to dependency management, out of the box support for javadoc and source jars, and faster incremental compilation of Java and Groovy code. In addition, the latest release 6.1.1 supports a relocatable dependency cache for speeding up ephemeral CI builds.
-
Confluent Offers Apache Kafka as a Service on the GCP Marketplace
In a recent blog post, Confluent announced the general availability of Confluent Cloud on the Google Cloud Platform (GCP) Marketplace. Confluent Cloud is a fully managed Apache Kafka service, which removes the burden of its users to manage Kafka themselves.
-
Database Access Misconfiguration Exposes 250M Customer Records at Microsoft
Comparitech security firm reported a major data breach at Microsoft that exposed 250 million customer records over a period of a couple of days. Microsoft said the leaked data, which did not include personally identifiable information, was not used maliciously.
-
QCon London - Keynotes & Workshops on Kubernetes, Apache Kafka, Microservices, Docker
QCon London is fast approaching. Join over 1,600 global software leaders this March 2-4. At the event, you will experience: talks that describe how industry leaders drive innovation and change within their organizations; a focus on real-world experiences, patterns, and practices (not product pitches), and implementable ideas for your projects and your teams.
-
Reducing Build Time with Observability in the Software Supply Chain
Tools commonly used in production can also be applied to gain insight into the CI/CD pipeline to reduce the build time. Ben Hartshorne, engineer at honeycomb.io, gave the presentation Observability in the SSC: Seeing into Your Build System at QCon San Francisco 2019.
-
Elastic Cloud on Kubernetes Moves into General Availability
Elastic recently moved Elastic Cloud on Kubernetes (ECK) into GA. Originally announced as an alpha release in May 2019, Elastic is looking to support the growing number of users leveraging Kubernetes for deploying ElasticSearch. This release includes support for many of Elastic's core features and can run on a number of public cloud Kubernetes offerings.
-
Q&A on Okteto: a Tool to Develop Applications in Kubernetes
Okteto is an open-source tool that runs locally to synchronize application code changes to a running pod in a local or remote Kubernetes cluster. There's no need to commit, build, and push a container image to start testing an application. Developers can continue using their existing IDE, debuggers, compilers or hot reloaders to test their code changes instantly.
-
Microsoft Patches Severe Crypto32.dll Vulnerability
Microsoft has released patches for various versions of Windows 10 and Windows Server 2019 and 2016 to fix a severe vulnerability affecting system validation of Elliptic Curve Cryptography (ECC) certificates. This vulnerability enables an attacker to spoof the validity of a certificate chain and signature validation and requires prompt patching.
-
Preventing Inadvertent Changes, Amazon Adds Change Calendar to AWS Systems Manager
In a recent blog post, Amazon announced a new capability has been added to AWS Systems Manager called Change Calendar. This feature allows administrators to create change windows that either block or enable changes to be made, within a specific time frame, and is beneficial to organizations that have deployment freezes such as during the holidays or key business events.
-
Falco is the First Runtime Security Project to be Accepted into CNCF Incubator
Falco, a cloud-native runtime security project, was accepted by the Cloud Native Computing Foundation (CNCF) as an incubation-level hosted project. Falco provides intrusion and abnormality detection for platforms like Kubernetes, Mesosphere, and Cloud Foundry. With the move into the incubation stage, the Falco team has been focusing on making the tool easier to adopt and use.
-
Git 2.25 Improves Support for Sparse Checkout
Git maintainer Junio C Hamano announced the latest release of Git, version 2.25, including over 500 changes since 2.24. Most notably, Git 2.25 adds a new command to manage sparse checkouts, mostly useful with huge or monolithic repositories.
-
Amazon Releases AWS Outposts, Enabling Hybrid Data Center Architectures
Amazon have announced general available of AWS Outposts, a fully managed service that extends AWS infrastructure, AWS services, APIs, and tools to "virtually any datacenter, co-location space, or on-premises facility". This solution allows customers to take advantage of AWS technology, but addresses local processing and low latency requirements.
-
BLAKE3 Is an Extremely Fast, Parallel Cryptographic Hash
BLAKE3 is the most recent evolution of the BLAKE cryptographic hash function. Created by Jack O'Connor, Jean-Philippe Aumasson, Samuel Neves, and Zooko Wilcox-O'Hearn, BLAKE3 combines general purpose cryptographic tree hash bao with BLAKE2 to provide a big performance improvement over SHA-1, SHA-2, SHA-3, and BLAKE2.
-
The Status of HTTP/3
HTTP/3 is the next protocol for network communication across the Web, which is meant to partially replace HTTP/1 and HTTP/2. One month before the next QUIC Working Group meeting, to be held in Zurich next February, it may be useful to recap what HTTP/3 promises and what its current client/server support looks like.