In an effort to better secure cloud-native apps, software security company Checkmarx has launched a new open-source static analysis solution. The new Keeping Infrastructure as Code Secure (KICS) solution enables developers to write secure infrastructure as code (IaC) by automatically detecting issues from the start. According to the company, as organizations move to the cloud … continue reading
Google and the Linux Foundation have announced plans to maintain and improve Linux’s long-term security. As part of the plan, the organizations will prioritize funds to underwrite long-time Linux kernel maintainers Gustavo Silva and Nathan Chancellor as full-time developers focused on Linux kernel security development. This decision follows a survey by the Linux Foundation’s Open … continue reading
Sauce Labs announced new shift-left capabilities such as new end-to-end visual testing as well as Sauce Testrunner, which supports a host of developer-preferred test frameworks such as Cypress, Playwright, and TestCafe. “Successful testing in the DevOps era is about giving developers the optionality and flexibility to work within the frameworks with which they’re most comfortable, … continue reading
Google is tackling one of the most problematic security issues in open source: memory-safety vulnerabilities. According to a recent report from Microsoft’s Security Response Center, a majority of vulnerabilities are due to memory-safety issues, and Google believes almost half of these issues could be prevented with a memory-safety language. “Software written in unsafe languages often … continue reading
The fifth JetBrains annual report showed that there are 10.1 million JetBrains users around the world and that the company’s revenue grew by 11% in 2020 (with the greatest increase in China at 85%). JetBrains has created an extended family of integrated development environments (IDE) for various programming languages and designed Kotlin, the officially preferred … continue reading
Visual Studio Code 1.53 includes JavaScript debugging with support for conditional exception breakpoints and Node.js worker_threads, as well as Notebook UX updates, a markdown preview image auto update, and more. Users can now start multiple concurrent debug sessions and each subsequent debug session will have a number at the end of the name so it … continue reading
Atlassian announced the general availability of Cloud Enterprise, a new cloud offering that features enterprise-grade scalability, security, and governance controls for Jira Software, Confluence, and Jira Service Management. Users can activate unlimited instances so that teams can tailor instances to their needs and they can also access Atlassian cloud products on any device. “This means … continue reading
The amount of open-source code being used in modern applications has exploded. According to multiple surveys, a large majority of enterprises are reporting that open-source components and third-party libraries are being implanted into their applications, both internal and outward-facing. Developers acknowledge that utilizing open source allows them to both speed up software development and focus … continue reading
Microsoft is introducing Azure Boards to help users track their work with “drag-and-drop” capabilities right in the browser. Azure Boards enables developers to filter to individual users, export data into calendars, plan sprints and query for their work items. “Whether you’re a scrum master or someone who’s still brand new to Agile, you’ll benefit from … continue reading
Security Compass has announced a hands-on training lab for balanced development automation. The new interactive virtual lab offers training across multiple exploit scenarios to help developers understand common vulnerabilities and how to build secure software, the company explained. The training lab can now be added to existing subscriptions for the Software Security Practitioner (SSP) Suites, … continue reading
Ionic has announced the beta release of Ionic Capacitor 3.0. The new version of the cross-platform runtime includes improvements to community involvement, adaptability, first-class APIs, and developer experience and productivity. Ionic also added the Proposals repo to make it easier to plug in ideas into a project by creating proposals as well as gauge interest … continue reading
2020 was a big year for open source. Sixty million new repositories were created last year, and more than 56 million developers are now on GitHub, according to GitHub’s Octoverse report. This prompted Microsoft to lay out a few things developers can do to improve their engagement with open source moving forward. The first lesson … continue reading
