InfoQ Homepage Development Content on InfoQ
-
Running Java on iOS: Gluon Introduces OpenJDK Mobile Resources and Automated Build Pipelines
OpenJDK is now able to build and run on iOS (and Android) as a native binary, opening the way to run unmodified Java code on mobile.
-
Microsoft Patches Critical ASP.NET Core Vulnerability with 9.9 Severity Score
Microsoft recently released a security advisory and patched a critical vulnerability in ASP.NET Core that allows an attacker to bypass a security feature over a network due to an inconsistent interpretation of HTTP requests. With a CVSS score of 9.9 out of 10, CVE-2025-55315 is the highest-rated Microsoft vulnerability.
-
Cloudflare Proposes Merkle Tree Certificates to Solve Post-Quantum TLS Performance Issue
Cloudflare's innovative Merkle Tree Certificates (MTCs) revolutionize WebPKI, enabling a seamless transition to Post-Quantum (PQ) cryptography without performance penalties. By minimizing TLS handshake overhead and integrating Certificate Transparency, MTCs promise enhanced security while addressing latency concerns, paving the way for future-ready internet security.
-
Java News Roundup: New Jakarta AI Specification, GlassFish, Spring RCs, Infinispan 16, Open Liberty
This week's Java roundup for November 3rd, 2025, features news highlighting: a new Jakarta AI specification; the fourteenth milestone release of GlassFish 8.0; second release candidates of Spring Boot 4.0, Spring for GraphQL 2.0 and Spring Batch 6.0; the release of Infinispan 16.0; and the November 2025 edition of Open Liberty.
-
Dev Proxy v1.3.0: HAR File Generation, LLM Usage Tracking, and Enhanced API Testing Feature
Dev Proxy v1.3.0 has been released, introducing several new features aimed at improving debugging, testing, and API monitoring. The update includes two new plugins, HAR file generation for standardized network tracing and OpenAI usage tracking for better visibility into AI-related costs, along with enhancements to permissions analysis, OpenAPI specification generation, and overall stability.
-
OpenJDK News Roundup: Vector API, Ahead-of-Time Object Caching, Prepare to Make Final Mean Final
There was a flurry of activity in the OpenJDK ecosystem during the week of November 3, 2025, highlighting three JEPs elevated from Proposed to Target to Targeted and three JEPs elevated from Candidate to Proposed to Target for JDK 26. The proposed release schedule has also been finalized.
-
Redis Critical Remote Code Execution Vulnerability Discovered after 13 Years
Redis recently released a security advisory regarding CVE-2025-49844. This critical (CVSS 10.0) use-after-free (UAF) vulnerability in Lua scripting could allow authenticated attackers to execute remote code on older versions of Redis and Valkey with Lua scripting enabled. Developers are urged to upgrade to patched releases as soon as possible.
-
AWS Launches Capabilities by Region Tool
AWS has launched "AWS Capabilities by Region," a powerful tool that streamlines service visibility for architects and developers. No more manual checks—now you can compare AWS services across regions interactively and plan deployments efficiently. With enhanced transparency and automated capability checks, streamline global projects and minimize delays.
-
TanStack Start: A New Meta Framework Powered by React or SolidJS
Introducing TanStack Start v1—a revolutionary full-stack framework for React and Solid applications. Built on TanStack Router and Vite, it offers type-safe APIs, streaming SSR, and universal deployment. Optimized for performance and flexibility, TanStack Start presents a compelling alternative to Next.js, catering to modern development needs with seamless integration and incremental adoption.
-
Grails 7.0, Now under the Apache Software Foundation, Delivers Enhancements for Micronaut and GORM
The release of Apache Grails 7.0.0 delivers notable changes such as: the ability to disable Micronaut auto configuration through the Grails plugin; improved reproducibility with implementations of GORM services; and a temporary removal of the GORM for Neo4J until it is compatible with Grails 7.0 or 8.0. InfoQ spoke to Søren Berg Glasius and James Fredley about this release.
-
Android GenAI Prompt API Enables Natural Language Requests with Gemini Nano
The ML Kit GenAI Prompt API, now available in alpha, enables Android developers to send natural language and multimodal requests to Gemini Nano running on-device, extending the text summarization and image description capabilities introduced with the initial GenAI release.
-
Azure APIM Simplifies Event-Driven Architecture with Native Service Bus Policy
Microsoft's new feature in API Management (APIM) enables seamless messaging to Azure Service Bus, simplifying API connections in event-driven architectures. By using the send-service-bus-message policy, developers can easily route HTTP requests to Service Bus for asynchronous processing, enhancing integration, security, and control without additional components.
-
Azure Front Door Outage: How a Single Control-Plane Defect Exposed Architectural Fragility
A recent 9-hour Azure Front Door (AFD) outage was triggered by a faulty control-plane configuration change that bypassed safety checks due to a software defect, leading to a massive blast radius and affecting M365 and Entra ID via Identity Coupling, exposing a critical architectural anti-pattern in centralized edge fabrics.
-
Voices Enables Fast Text-to-Speech for Java Applications
Voices, an open-source text-to-speech project, was designed for applications running on Java 17 or newer. The library requires no external APIs or manually installed software. Audio files can be generated for various languages based on dictionaries or OpenVoice. InfoQ spoke to Henry Coles, creator of Voices and Pitest.
-
QCon London 2026 Announces Tracks: AI Engineering, Building Teams, Tech of Finance, and More
The QCon London 2026 tracks are live: 15 practitioner-curated deep dives on AI adoption, resilient architectures, distributed systems, performance, modern languages, data, security, and Staff+ leadership, rooted in real production lessons.