InfoQ Homepage Development Content on InfoQ
-
Microsoft Addresses Data Residency with Private Cloud Expansion
Microsoft has strengthened its Sovereign Cloud offering to meet stringent global data-residency and control regulations, particularly in Europe. New capabilities include a commitment to EU Data Boundary, expanded in-country data processing, and enhanced Sovereign Private Cloud features.
-
Monzo’s Real-Time Fraud Detection Architecture with BigQuery and Microservices
Monzo has redesigned its fraud prevention platform to detect scams in real time, handle growing payment volumes, and deploy new controls rapidly. Explore the bank’s modular control architecture, feature computation pipeline, and observability using BigQuery for accurate, low-latency fraud detection.
-
.NET 10 Officially Released with Major Performance, AI, and Developer Experience Improvements
Microsoft announced the general availability of .NET 10, describing it as the most productive, modern, secure, and high-performance version of the platform to date. As stated by the company, the release is the result of a year-long effort involving thousands of contributors. It includes improvements across the runtime, libraries, languages, tools, frameworks, and workloads.
-
GitHub Rolls out Post-Quantum SSH Security to Protect Code from Future Threats
GitHub has deployed a hybrid post-quantum key-exchange algorithm for SSH access, strengthening protection against future quantum decryption threats. The rollout, now live across most regions, pairs classical and quantum-resistant methods to counter “store now, decrypt later” attacks and marks a major step toward quantum-safe software development.
-
Go's New Green Tea Garbage Collector May Improve Performance up to 40%
Go 1.25 introduces a new experimental garbage collector that delivers up to 40% faster than the current implementation, bringing a significant performance improvement for GC-heavy workloads.
-
Running Java on iOS: Gluon Introduces OpenJDK Mobile Resources and Automated Build Pipelines
OpenJDK is now able to build and run on iOS (and Android) as a native binary, opening the way to run unmodified Java code on mobile.
-
Microsoft Patches Critical ASP.NET Core Vulnerability with 9.9 Severity Score
Microsoft recently released a security advisory and patched a critical vulnerability in ASP.NET Core that allows an attacker to bypass a security feature over a network due to an inconsistent interpretation of HTTP requests. With a CVSS score of 9.9 out of 10, CVE-2025-55315 is the highest-rated Microsoft vulnerability.
-
Cloudflare Proposes Merkle Tree Certificates to Solve Post-Quantum TLS Performance Issue
Cloudflare's innovative Merkle Tree Certificates (MTCs) revolutionize WebPKI, enabling a seamless transition to Post-Quantum (PQ) cryptography without performance penalties. By minimizing TLS handshake overhead and integrating Certificate Transparency, MTCs promise enhanced security while addressing latency concerns, paving the way for future-ready internet security.
-
Java News Roundup: New Jakarta AI Specification, GlassFish, Spring RCs, Infinispan 16, Open Liberty
This week's Java roundup for November 3rd, 2025, features news highlighting: a new Jakarta AI specification; the fourteenth milestone release of GlassFish 8.0; second release candidates of Spring Boot 4.0, Spring for GraphQL 2.0 and Spring Batch 6.0; the release of Infinispan 16.0; and the November 2025 edition of Open Liberty.
-
Dev Proxy v1.3.0: HAR File Generation, LLM Usage Tracking, and Enhanced API Testing Feature
Dev Proxy v1.3.0 has been released, introducing several new features aimed at improving debugging, testing, and API monitoring. The update includes two new plugins, HAR file generation for standardized network tracing and OpenAI usage tracking for better visibility into AI-related costs, along with enhancements to permissions analysis, OpenAPI specification generation, and overall stability.
-
OpenJDK News Roundup: Vector API, Ahead-of-Time Object Caching, Prepare to Make Final Mean Final
There was a flurry of activity in the OpenJDK ecosystem during the week of November 3, 2025, highlighting three JEPs elevated from Proposed to Target to Targeted and three JEPs elevated from Candidate to Proposed to Target for JDK 26. The proposed release schedule has also been finalized.
-
Redis Critical Remote Code Execution Vulnerability Discovered after 13 Years
Redis recently released a security advisory regarding CVE-2025-49844. This critical (CVSS 10.0) use-after-free (UAF) vulnerability in Lua scripting could allow authenticated attackers to execute remote code on older versions of Redis and Valkey with Lua scripting enabled. Developers are urged to upgrade to patched releases as soon as possible.
-
AWS Launches Capabilities by Region Tool
AWS has launched "AWS Capabilities by Region," a powerful tool that streamlines service visibility for architects and developers. No more manual checks—now you can compare AWS services across regions interactively and plan deployments efficiently. With enhanced transparency and automated capability checks, streamline global projects and minimize delays.
-
TanStack Start: A New Meta Framework Powered by React or SolidJS
Introducing TanStack Start v1—a revolutionary full-stack framework for React and Solid applications. Built on TanStack Router and Vite, it offers type-safe APIs, streaming SSR, and universal deployment. Optimized for performance and flexibility, TanStack Start presents a compelling alternative to Next.js, catering to modern development needs with seamless integration and incremental adoption.
-
Grails 7.0, Now under the Apache Software Foundation, Delivers Enhancements for Micronaut and GORM
The release of Apache Grails 7.0.0 delivers notable changes such as: the ability to disable Micronaut auto configuration through the Grails plugin; improved reproducibility with implementations of GORM services; and a temporary removal of the GORM for Neo4J until it is compatible with Grails 7.0 or 8.0. InfoQ spoke to Søren Berg Glasius and James Fredley about this release.