InfoQ Homepage Architecture & Design Content on InfoQ
-
CloudFront Adds Origin mTLS Authentication for End-to-End Zero Trust
Amazon CloudFront now supports mutual TLS authentication for origin servers, completing end-to-end zero-trust authentication from viewers to backends. The feature replaces IP allowlists and shared secrets with cryptographic verification, proving particularly valuable for multi-cloud deployments, where origins can verify that traffic originated from CloudFront without VPN tunnels.
-
QCon Previews 20th Anniversary Conferences: Production AI, Resilience, and Staff+ Engineering
Celebrating its 20th anniversary, QCon’s 2026 conferences in London and San Francisco will focus on the engineering realities of agentic AI, resilient architectures, and platform ROI. The programs continue the series' two-decade tradition of practitioner-led content, curated by senior engineers from companies like Zoox, UBS, and LinkedIn.
-
Uber Moves In-House Search Indexing to Pull-Based Ingestion in OpenSearch
Uber transitions its in-house search indexing to OpenSearch with a pull-based ingestion framework, improving reliability, backpressure handling, and multi-region consistency for large-scale streaming data while simplifying recovery and supporting global, real-time search experiences.
-
Cloudflare Launches Vertical Microfrontend Template for Path-Based Edge Routing
Cloudflare has launched a Worker template for Vertical Microfrontends (VMFE), enabling independent teams to manage their stacks for specific URL paths, improving CI/CD efficiency. This architecture streamlines requests with low latency while offering a seamless SPA experience, promoting team autonomy and efficient dev practices. Ideal for large teams, it comes with operational trade-offs.
-
Java News Roundup: GlassFish 8.0, OmniHai 1.0, LangChain4j, Infinispan, Hibernate, JobRunr
This week's Java roundup for February 2nd, 2026, features news highlighting: GA releases of GlassFish 8.0 and OmniHai 1.0; point releases of LangChain4j, Infinispan and JBang; maintenance releases of Helidon and JobRunr; and milestone releases of Hibernate ORM, Hibernate Reactive and Hibernate Search.
-
LinkedIn Leverages GitHub Actions, CodeQL, and Semgrep for Code Scanning
LinkedIn has rebuilt its static application security testing (SAST) pipeline using GitHub Actions and custom workflows, enabling consistent, enforceable code scanning across thousands of repositories. The redesign improves security coverage, developer workflow, and observability while supporting the company’s shift-left strategy.
-
LinkedIn Re-Architects Service Discovery: Replacing Zookeeper with Kafka and xDS at Scale
LinkedIn's engineering team successfully upgraded its legacy ZooKeeper service discovery platform to enhance scalability and performance. By leveraging Apache Kafka and the xDS protocol, the new architecture enables eventual consistency, supports multiple languages, and allows migration without downtime. Post-upgrade, latency vastly improved, facilitating hundreds of thousands of app instances.
-
Java Explores Carrier Classes to Extend Data-Oriented Programming beyond Records
The OpenJDK Amber project has published a new design note proposing “carrier classes” and “carrier interfaces” to extend record-style data modeling to more Java types. The proposal preserves concise state descriptions, derived methods, and pattern matching, while relaxing structural constraints that limit records.
-
GitHub Reworks Layered Defenses after Legacy Protections Block Legitimate Traffic
GitHub engineers recently traced user reports of unexpected “Too Many Requests” errors to abuse-mitigation rules that had accidentally remained active long after the incidents that prompted them.
-
Airbnb Expands Global Checkout with “Pay as a Local,” Scaling to 220 Markets in 14 Months
Airbnb expands its global checkout with the “Pay as a Local” initiative, supporting over 20 locally preferred payment methods across 220 markets. The company replatformed its payments system with domain-oriented services, reusable flow archetypes, and a centralized configuration, enhancing integration speed, reliability, testing, and observability for diverse payment methods worldwide.
-
Cloudflare's Matrix Homeserver Demo Sparks Debate over AI-Generated Code Claims
A Cloudflare blog post claiming a "production-grade" Matrix homeserver on Workers didn't survive community scrutiny. Missing federation, incomplete encryption, and TODO comments in authentication logic pointed to unreviewed AI output. Matrix's Matthew Hodgson welcomed the effort but noted the implementation "doesn't yet constitute a functional Matrix server."
-
Java News Roundup: Jakarta EE 12, Spring Shell, Open Liberty, Quarkus, Tomcat, JHipster, Gradle
This week's Java roundup for January 26th, 2026, features news highlighting: an update on milestone and GA release schedule for Jakarta EE 12; the January 2026 edition of Open Liberty; a point release of Quarkus; maintenance releases of Spring Shell, Apache Tomcat and Gradle; and the first and second beta releases of JHipster 9.0.
-
Google Introduces Managed Connection Pooling for AlloyDB
Google Cloud has launched managed connection pooling for AlloyDB for PostgreSQL, boosting client connections by 3x and transactional throughput by up to 5x. This feature simplifies database management by automating connection management and reducing latency.
-
Uber Moves from Static Limits to Priority-Aware Load Control for Distributed Storage
Uber engineers detailed how they evolved their storage platform from static rate limiting to a priority-aware load management system. The approach protects Docstore and Schemaless, Uber’s MySQL-based distributed databases, by colocating control with storage, prioritizing critical traffic, and dynamically shedding load under overload conditions.
-
Google BigQuery Adds SQL-Native Managed Inference for Hugging Face Models
Google has launched SQL-native managed inference for 180,000+ Hugging Face models in BigQuery. The preview release collapses the ML lifecycle into a unified SQL interface, eliminating the need for separate Kubernetes or Vertex AI management. Key features include automated resource governance via endpoint_idle_ttl and secure identity-based execution using existing data warehouse permissions.