Organizations such as the Linux Foundation, OpenSSF, Google, Akamai, and Red Hat attended a White House Summit meant to address supply chain security challenges following the recent log4j crisis. “The open-source ecosystem will need to work together to further cybersecurity research, training, analysis, and remediation of defects found in critical open-source software projects. These plans … continue reading
The goal of the open-source project EVerest is to develop and maintain an open source software stack for EV charging infrastructure. EVerest consists of a framework to configure several interchangeable modules which are coupled by MQTT with each other. The EVerest stack is made out of loosely coupled modules that are orchestrated by the EVerest … continue reading
Microsoft released the January 2022 Security and Quality Rollup Updates for .NET Framework. This security update addresses an issue where an unauthenticated attacker could cause a denial of service on an affected system. Other quality and reliability improvements include an AppContext Switch that can clean up connections on any kinds of failures even while running … continue reading
The DevOps Institute announced its lineup for 2022 events and webinars and plans for two new DevOps certifications. The new certifications include DevOps Practitioner and DevOps Engineering Foundation. Also, SKILup Days, SKILup Hours, and SKILup Festival 2022: A Live DevOps Educational Experience will provide insights and education needed by DevOps professionals in a wide variety … continue reading
The CNCF Technical Oversight Committee (TOC) has voted to approve LitmusChaos’ move from the CNCF Sandbox to Incubation level. LitmusChaos is an open-source chaos engineering platform that helps teams identify weaknesses and potential outages in infrastructures by inducing chaos tests in a controlled way. “The CNCF ecosystem has helped us build a strong and vibrant … continue reading
DataOps company DataKitchen announced the launch of its new DataOps Training and Certification program which educates data professionals on the “why, what, and how” of DataOps and prepares them to lead DataOps change within their own organizations. The 2.5 hour course covers the fundamentals of DataOps including Production Pipelines, Development Pipelines, Environment Pipelines, and Implementation. … continue reading
BumbleBee simplifies building extended Berkeley Packet Filter (eBPF) tools and allows users to package, distribute, and run them anywhere. eBPF provides Linux kernels the extensibility to enable developers to program the Linux kernel to quickly build intelligent or feature-rich functions based on their business needs. BumbleBee brings a Docker-like experience for eBPF, and through simple … continue reading
This year, Microsoft went all in on open-source and security and launched a plethora of new solutions aimed at bettering the lives of developers working remotely and on-premises. Microsoft launched its flagship Visual Studio 2022 and .NET 6. in November. .NET 6 is a follow-up to the notable .NET 5, which merged .NET Framework and … continue reading
2021 was a tumultuous time for security, marking both massive breaches — a trend that sped up during the pandemic — and widespread action for trying to fix the problem. On May 7, 2021, the Colonial Pipeline, an American oil pipeline system, suffered a ransomware cyberattack that impacted computerized equipment managing the pipeline. In response, … continue reading
SafeLog4j is an open-source tool that can detect and verify vulnerable Log4j applications and protect them. This project comes after a 0-day exploit in the Java logging library, Log4j (version 2) was discovered on December 9. The vulnerability resulted in Remote Code Execution by logging a certain string. SafeLog4j works inside an application, blocking the … continue reading
ZenML is an extensible open-source MLOps framework designed to create reproducible pipelines. The framework enables data scientists to write their code as automated pipelines from day one. It is built to encourage the iterative and experimental nature of machine learning work, but also to provide a path to an automated, production-ready software base that can … continue reading
Developers can now fine-tune GPT-3 on their own data, creating a custom version tailored to their application, which allows for faster and cheaper running of models. GPT-3 is a natural language programming tool developed by AI research laboratory OpenAI. Users have to run a single command in the OpenAI CLI tool with the file that … continue reading
