Microsoft announced that .NET Core 2.1 will reach end of support on August 21st, 2021, after which there will be no more updates and security fixes. The .NET Core cross platform and Mobile development workloads won’t be changed and the .NET Core 2.1 component remains as required because these workloads can’t be used without .NET … continue reading
Instead of building all software “from scratch” today, developers use open source to their advantage when needing to provide common or repetitive elements. Doing so primarily limits the use of the homegrown code they develop for proprietary features and functionality, while also being the adhesive that binds everything together. Consequently, developers spend much of their … continue reading
In an effort to better secure cloud-native apps, software security company Checkmarx has launched a new open-source static analysis solution. The new Keeping Infrastructure as Code Secure (KICS) solution enables developers to write secure infrastructure as code (IaC) by automatically detecting issues from the start. According to the company, as organizations move to the cloud … continue reading
Google and the Linux Foundation have announced plans to maintain and improve Linux’s long-term security. As part of the plan, the organizations will prioritize funds to underwrite long-time Linux kernel maintainers Gustavo Silva and Nathan Chancellor as full-time developers focused on Linux kernel security development. This decision follows a survey by the Linux Foundation’s Open … continue reading
Sauce Labs announced new shift-left capabilities such as new end-to-end visual testing as well as Sauce Testrunner, which supports a host of developer-preferred test frameworks such as Cypress, Playwright, and TestCafe. “Successful testing in the DevOps era is about giving developers the optionality and flexibility to work within the frameworks with which they’re most comfortable, … continue reading
Google is tackling one of the most problematic security issues in open source: memory-safety vulnerabilities. According to a recent report from Microsoft’s Security Response Center, a majority of vulnerabilities are due to memory-safety issues, and Google believes almost half of these issues could be prevented with a memory-safety language. “Software written in unsafe languages often … continue reading
The fifth JetBrains annual report showed that there are 10.1 million JetBrains users around the world and that the company’s revenue grew by 11% in 2020 (with the greatest increase in China at 85%). JetBrains has created an extended family of integrated development environments (IDE) for various programming languages and designed Kotlin, the officially preferred … continue reading
Visual Studio Code 1.53 includes JavaScript debugging with support for conditional exception breakpoints and Node.js worker_threads, as well as Notebook UX updates, a markdown preview image auto update, and more. Users can now start multiple concurrent debug sessions and each subsequent debug session will have a number at the end of the name so it … continue reading
Atlassian announced the general availability of Cloud Enterprise, a new cloud offering that features enterprise-grade scalability, security, and governance controls for Jira Software, Confluence, and Jira Service Management. Users can activate unlimited instances so that teams can tailor instances to their needs and they can also access Atlassian cloud products on any device. “This means … continue reading
The amount of open-source code being used in modern applications has exploded. According to multiple surveys, a large majority of enterprises are reporting that open-source components and third-party libraries are being implanted into their applications, both internal and outward-facing. Developers acknowledge that utilizing open source allows them to both speed up software development and focus … continue reading
Microsoft is introducing Azure Boards to help users track their work with “drag-and-drop” capabilities right in the browser. Azure Boards enables developers to filter to individual users, export data into calendars, plan sprints and query for their work items. “Whether you’re a scrum master or someone who’s still brand new to Agile, you’ll benefit from … continue reading
Security Compass has announced a hands-on training lab for balanced development automation. The new interactive virtual lab offers training across multiple exploit scenarios to help developers understand common vulnerabilities and how to build secure software, the company explained. The training lab can now be added to existing subscriptions for the Software Security Practitioner (SSP) Suites, … continue reading
