The latest version of Git is now available. In Git 2.26.0, protocol version 2 – which starts with the client request and provides a way for the client to tell the server which references it’s interested in – is now the default. The new release also includes new config options form a few different files: … continue reading
With the coronavirus outbreak and recent New York State laws that mandate at least 50% of many business’ employees to work from home, professionals from all industries are talking about how it will impact the workplace. But working from home was already a trend that IT pros and developers have been dealing with for a … continue reading
HCL has announced a major update to its automated application security testing and management tool. AppScan 10 is designed to provide faster and more accurate security scans, secure DevOps and help enterprises manage application security problems. “AppScan V10 is another example of HCL Software’s commitment to unlocking new value in a battle-tested product that thousands … continue reading
I’ve previously written about the “Three T’s” of shifting security left: training, tools, and teamwork. In this blog, we’re going to delve down a level and look at some of the tools needed to shift left, what they do, and where in the software lifecycle they belong. The lifecycle question is important to think about … continue reading
Microsoft released .NET Preview 1, which is scheduled for a general availability release in November. Preview 1 includes support for Windows ARM64 for the first time and also the .NET Core runtime. Microsoft said it expects Preview 2 to include the SDK (ASP.NET Core but not WPF or Windows Forms). Some of the high-level goals … continue reading
Auth0 announced Auth0 Signals, a collection of threat intelligence tools and product capabilities designed to protect customers from identity attacks. The release coincides with the company’s acquisition of anti-abuse company Apility.io. According to the company, the acquisition will provide a crucial source of IP threat intelligence to it’s Anomaly Detection engine, which detects malicious and risky … continue reading
Rust 1.42.0 includes more useful panic messages when unwrapping, subslice patterns, the deprecation of Error::description, and more. Additionally, Rust said it is downgrading 32-bit targets to Tier 3 support by the project, since Apple no longer supports it either. More details on the language update are available here. Microsoft releases patch for critical security bug … continue reading
The Free Software Foundation (FSF) announced plans to launch a public code hosting and collaboration platform (“forge“) this year. Members of the FSF tech team are currently reviewing ethical web-based software that will help teams work on their projects, with features like merge requests, bug tracking, and other common tools. “Infrastructure is very important for … continue reading
Claris launched Claris Connect, a workflow automation platform designed for the real-world challenges of SMBs. “The right path to being cloud-first is to be cloud smart,” said Brad Freitag, CEO of Claris. “That means giving problem solvers all the power of the cloud – sharing, rapid deployment, scalability – without losing connection to the real … continue reading
Programmers err as much as any of us — between 15 and 50 errors per 1,000 lines of code to be more exact. QA tests for these bugs, attempting to ensure that releases are as bug-free as possible. Customers who trust their operations to software won’t tolerate poorly written code, and teams go out of … continue reading
In today’s era of digital transformation, every organization must focus on application security. However, focusing on security vulnerabilities alone is unwise because it’s nearly impossible to prioritize what needs to be done. “DevOps teams are sitting in front of a table with the keys to the kingdom on their computers,” said Jake King, co-founder and … continue reading
DevSecOps isn’t just a practice, it’s a continuous learning experience. If you want to be successful faster, avoid these common misconceptions. #1: Business as usual is good enough Cybercriminals are constantly changing their tactics. If your organization’s application security practices are static, they aren’t as robust as they should be. RELATED CONTENT: How to get … continue reading
