Microsoft is releasing a new open-source tool to help developers find and fix bugs at scale. Project OpenFuzz is a fuzz testing framework for Azure. According to Microsoft, fuzz testing is an effective method for improving code quality, and is a gold standard for finding and removing exploitable security vulnerabilities. Although it is effective, it’s … continue reading
In an effort to get developers to build better collaborative solutions, Microsoft has announced its Fluid Framework is now open sourced. The Fluid Framework is a TypeScript library, powered by the same code as Microsoft 365, that enables developers to build distributed, real-time collaborative web apps. Key features include: a client-centric application model, data persistence, … continue reading
GraphQL database company Dgraph has announced the release of Slash GraphQL, a fully-managed GraphQL backend service for building GraphQL apps. According to the company, SlashGraphQL features custom logic and access to remote HTTP endpoints, the ability to run graph queries, integration with remote GraphQL servers, and more. “Dgraph is unique: it’s the only native GraphQL … continue reading
Android 11 was released this week with three primary themes: a focus on controls to let users get to and control all of their smart devices, increased privacy, and a people-centric approach to communication. The release also includes new features for developers such as conversation notifications, device and media controls, one-time permissions, enhanced 5G support, … continue reading
Red Hat and IBM have announced a new marketplace designed to enable organizations to more easily purchase, deploy and manage enterprise software from a variety of vendors across hybrid cloud environments running Red Hat OpenShift. The release of Red Hat Marketplace Select adds control and governance with curated software for an additional cost, according to … continue reading
This week Facebook has released Opacus, a new open-source project designed to train PyTorch models with differential privacy (DP). According to the company, differential privacy is a mathematical framework for quantifying the anonymization of sensitive data. It is meant to make PyTorch models more scalable and the adoption of machine learning easier. “With the release … continue reading
GitHub has introduced a new container registry to improve how it handles containers within packages. The registry is available as a public beta, and will enable users to enforce better access policies, encourage the usage of standard base images, and promote innersourcing. “While GitHub Packages already gives teams greater traceability of their software supply chain, … continue reading
Brian Fox, CTO of Sonatype: Today, more than 1,200 companies rely on the Nexus platform to unite software developers, security professionals, and IT operations on the same team so they can continuously identify and remediate open-source risk, without slowing down innovation. When speed is critical, Nexus ensures that controls keep pace and that innovation prospers. … continue reading
Security has become ever more important in the development process, as vulnerabilities last year caused the 2nd, 3rd and 7th biggest breaches of all time measured by the number of people that were affected. This has exposed the industry’s need for more effective use of security tooling within software development as well as the need … continue reading
LinkedIn wants to address bias in large-scale AI apps. The company introduced the LinkedIn Fairness Toolkit (LiFT) and shared the methodology it developed to detect and monitor bias in AI-driven products. LiFT is a Scala/Spark library that enables the measurement of fairness, according to a multitude of fairness definitions, in large-scale machine learning workflows. It … continue reading
The prebuilt development environment provider Gitpod has announced it is now open source, enabling teams to automatically spin up ready-to-code environments for GitLab, GitHub and Bitbucket projects. Gitpod is a browser-based, VS Code-powered Kubernetes application. With Gitpod, developers can maintain their environments as code and turn manual tasks into machine-executable code. “These days, developers are … continue reading
GitHub today announced the ReadME Project, a new space designed to share and highlight open-source stories that are moving humanity forward. According to the company, while 99% of the software that powers the world is built on open-source code, the maintainers and developers of the code often go unnoticed. “We read a lot about the … continue reading