InfoQ Homepage News
-
CNCF Graduates in‑toto, Bolstering Software Supply Chain Security
On April 23, 2025, the Cloud Native Computing Foundation (CNCF) announced the graduation of in‑toto, a framework designed to enforce supply chain integrity by ensuring that every step in the software development lifecycle, such as building, signing, and deployment, is properly authorized and verifiable.
-
Microsoft Azure Enhances Observability with OpenTelemetry Support for Logic Apps and Functions
Microsoft has expanded OpenTelemetry support in Azure Logic Apps and Functions, enhancing observability and interoperability across platforms. This open-source framework enables seamless data generation and correlation, enhancing diagnostics beyond standard telemetry. With streamlined configuration and integration, Azure's offerings aim for standardized observability across cloud services.
-
Spring News Roundup: Spring Vault Milestone, Point Releases and End of OSS Support
There was a flurry of activity in the Spring ecosystem during the week of June 16th, 2025, highlighting: the first milestone release of Spring Vault 4.0; and point releases of Spring Boot, Spring Security, Spring Authorization Server, Spring Modulith, Spring AMQP and Spring for Apache Kafka. Release trains for numerous Spring projects will also reach the end of OSS support on June 30, 2025.
-
Claude Code Gains Support for Remote MCP Servers over Streamable HTTP
Anthropic has recently introduced support for connecting to remote MCP servers in Claude Code, allowing developers to integrate external tools and resources without manual local server setup.
-
Phoenix.new Launches Remote Agent-Powered Dev Environments for Elixir
Chris McCord has released Phoenix.new, a browser-native agent platform that gives large language models full-stack control over Elixir development environments. Designed to work entirely in the cloud, Phoenix.new spins up real Phoenix apps inside ephemeral VMs, allowing LLM agents to build, test, and iterate in real time.
-
AWS Shield Network Security Director: Network Topology Visibility and Remediation Guidance
Introducing AWS Shield Network Security Director: a game-changer in DDoS protection and network security visibility. This innovative feature automates resource discovery, evaluates configurations against best practices, and prioritizes security findings. With actionable remediation steps and natural language queries via Amazon Q Developer, organizations can enhance their security posture.
-
TC39 Advances Nine JavaScript Proposals, Including Array.fromAsync, Error.isError, and Using
The Ecma Technical Committee 39 (TC39), the body responsible for the evolution of JavaScript (ECMAScript), recently advanced nine proposals through its stage process, with three new language features becoming part of the standard: Array.fromAsync, Error.isError, and explicit resource management with using.
-
AlphaWrite: Improving AI Narratives through Evolution
AlphaWrite is a new framework designed to enhance creative writing with structure and measurable improvements. Developed by Toby Simonds, it employs an evolutionary process to iteratively boost storytelling quality during inference.
-
Docker Launches Hardened Base Images
Docker has launched its Docker Hardened Images (DHI), a security-focused range of base images that reduce vulnerabilities by up to 95%. Built using a distroless approach, these minimal images eliminate unnecessary components, offering automatic patching and compatibility with existing Dockerfiles. Ideal for regulated environments, DHI enhances software supply chain security and transparency.
-
The Void IDE, Open-Source Alternative to Cursor, Released in Beta
The Void IDE was recently released in beta, positioning itself as a privacy-focused and free alternative to popular closed-source AI editors like Cursor and GitHub Copilot. Void IDE is a fork of Visual Studio Code. While Microsoft recently announced plans to open Source its GitHub Copilot Chat Extension possibly in a few months, the beta release is available now for the community to fiddle with.
-
Android 16 Introduces Wide-Ranging Features and Changes
Google has released Android 16, now available for supported Pixel devices. The new release introduces a wide range of new APIs and changes, some of which affect existing apps and require developers to update their code. Material 3 Expressive, the new paradigm for Android user interfaces, is not yet included and will roll out later this year.
-
Innovation Sandbox on AWS: Provisioning and Managing Temporary Environments
AWS has recently introduced Innovation Sandbox on AWS, a new open source solution for managing AWS sandbox environments through a web user interface. This solution enables developers to provision and manage secure, cost-effective, and recyclable temporary sandbox environments.
-
Yearly MariaDB LTS Release Integrates Vector Search
MariaDB has recently released MariaDB Community Server 11.8 as generally available, its yearly long-term support (LTS) release for 2025. The new release introduces integrated vector search capabilities for AI-driven and similarity search applications, enhanced JSON functionality, and temporal tables for data history and auditing.
-
How Software Engineers Can Grow Their Career
To grow their career, Bruno Rey suggests that software engineers should develop ambition, increase their capacity, and seek opportunities. He advises being proactive, broadening your influence by learning from peers, and stepping outside your comfort zone. Software engineers can keep a brag doc to ensure that their work is visible and plan their growth with realistic long-term goals.
-
AWS Open-Sources Smithy API Models for Public Access and Developer Tooling
AWS has unveiled public access to its comprehensive API models, delivering daily updates and open-source resources via GitHub. By utilizing Smithy, AWS aims to empower developers to build custom SDK clients, server stubs, and innovative tools, enhancing integration and understanding of AWS APIs. Explore the potential of API development with these powerful new tools!