InfoQ Homepage DevOps Content on InfoQ
-
Microsoft Patches Severe Crypto32.dll Vulnerability
Microsoft has released patches for various versions of Windows 10 and Windows Server 2019 and 2016 to fix a severe vulnerability affecting system validation of Elliptic Curve Cryptography (ECC) certificates. This vulnerability enables an attacker to spoof the validity of a certificate chain and signature validation and requires prompt patching.
-
Preventing Inadvertent Changes, Amazon Adds Change Calendar to AWS Systems Manager
In a recent blog post, Amazon announced a new capability has been added to AWS Systems Manager called Change Calendar. This feature allows administrators to create change windows that either block or enable changes to be made, within a specific time frame, and is beneficial to organizations that have deployment freezes such as during the holidays or key business events.
-
Falco is the First Runtime Security Project to be Accepted into CNCF Incubator
Falco, a cloud-native runtime security project, was accepted by the Cloud Native Computing Foundation (CNCF) as an incubation-level hosted project. Falco provides intrusion and abnormality detection for platforms like Kubernetes, Mesosphere, and Cloud Foundry. With the move into the incubation stage, the Falco team has been focusing on making the tool easier to adopt and use.
-
Git 2.25 Improves Support for Sparse Checkout
Git maintainer Junio C Hamano announced the latest release of Git, version 2.25, including over 500 changes since 2.24. Most notably, Git 2.25 adds a new command to manage sparse checkouts, mostly useful with huge or monolithic repositories.
-
Amazon Releases AWS Outposts, Enabling Hybrid Data Center Architectures
Amazon have announced general available of AWS Outposts, a fully managed service that extends AWS infrastructure, AWS services, APIs, and tools to "virtually any datacenter, co-location space, or on-premises facility". This solution allows customers to take advantage of AWS technology, but addresses local processing and low latency requirements.
-
BLAKE3 Is an Extremely Fast, Parallel Cryptographic Hash
BLAKE3 is the most recent evolution of the BLAKE cryptographic hash function. Created by Jack O'Connor, Jean-Philippe Aumasson, Samuel Neves, and Zooko Wilcox-O'Hearn, BLAKE3 combines general purpose cryptographic tree hash bao with BLAKE2 to provide a big performance improvement over SHA-1, SHA-2, SHA-3, and BLAKE2.
-
The Status of HTTP/3
HTTP/3 is the next protocol for network communication across the Web, which is meant to partially replace HTTP/1 and HTTP/2. One month before the next QUIC Working Group meeting, to be held in Zurich next February, it may be useful to recap what HTTP/3 promises and what its current client/server support looks like.
-
HyScale Open Sources App Deployment Tool for Kubernetes
HyScale announced the open sourcing of their tool which aims to simplify the application development lifecycle on Kubernetes. HyScale uses a custom YAML format that employs existing Docker and Kubernetes APIs to build, deploy and expose an app as a service.
-
Babel 7.7 Released with Improved TypeScript Support, Top-Level Await and More
The recently released Babel 7.7 now parses top-level await, Flow enum declarations (Flow proposal), and proposes recovery options from certain syntax errors. Babel 7.7 now supports TypeScript 3.7. Babel also introduces a new optional babel.config.json configuration files, and miscellaneous other features and bug fixes.
-
Improving Continuous Integration at Dropbox Using Bazel
Benjamin Peterson recently shared how Dropbox leverages Bazel to improve their build and deploy experience. Using Bazel, Dropbox was able to scale their continuous integration and deployment pipelines to ensure quick feedback on commits. They achieved this by running only the affected tests within a grouping of commits and selectively pre-declaring which tests are gating to deployments.
-
Improving Capacity Management in Kubernetes Clusters: Q&A with Mohamed Ahmed
InfoQ recently spoke with Mohamed Ahmed, the co-founder and CEO of Magalix, a Kubernetes optimization company, to discuss the critical discipline of capacity management across cloud-native infrastructure and applications.
-
AWS CloudWatch Adds Observability Tool for Visualizing Distributed Applications
AWS released ServiceLens, a fully managed observability solution built within CloudWatch. ServiceLens is designed to visualize and analyze the health, performance, and availability of distributed applications. Currently it is available in all commercial regions but requires the usage of AWS X-Ray.
-
Google Introduces E2 Family of VMs in Beta for Google Compute Engine
In a recent blog post, Google announced its new E2 family of general-purpose VMs for Google Compute Engine are available in beta. With E2, Google aims to provide customers with flexible, performance-driven, and cost-effective VMs for Google Compute Engine on its Google Cloud Platform (GCP).
-
Snowpack Releases 1.0, Seeks to Speed Up App Development by Removing the Need for Bundlers
The Pika package registry recently released the first major version of Snowpack. Snowpack seeks to streamline the developer experience by leveraging web standards and modern browsers. Developers who restricts themselves to using ES modules, and standard features of the JavaScript language may no longer need to go through an often complex build chain to build, run and debug their applications.
-
Can We Build Trustable Hardware? Andrew Huang at 36C3
Andrew “bunnie” Huang recently presented at 36C3 on ‘Open Source is Insufficient to Solve Trust Problems in Hardware’ with an accompanying blog post ‘Can We Build Trustable Hardware?’ His central point is that Time-of-Check to Time-of-Use is very different for hardware versus software, and so open source is less helpful in mitigating the array of potential attacks in the threat model.