Page-fetch is a new open-source tool created by the Detectify Security Research team that helps hunt for prototype pollution issues. One of the most common places for prototype pollution — the ability to inject properties into existing JavaScript language construct prototypes — is in processing the query string. Detectify’s solution can already find issues that … continue reading
Lightbend has announced the launch of Akka Serverless, a cloud-native development platform-as-a-service that enables the creation of cloud-native apps using any programming language and eliminates the need for databases in deploying business-critical apps. Akka has a simple, API-driven programming model that makes it easy for developers to define the data that they need so that … continue reading
Grafana 8.0 introduces new alerts that centralize alerting information Grafana managed alerts and alerts from Prometheus-compatible data sources within one UI and API. Grafana Labs also introduced a new data source: Alertmanager, which is in alpha and includes built-in support for Prometheus Alertmanager. Also, data sources can now send real-time updates to dashboards over a … continue reading
Apple announced a number of newly available APIs for developers, updates to the programming language Swift, App Store enhancements and new software features at its online 2021 Worldwide Developers Conference (WWDC 2021) today. “We’re thrilled to provide our developer community with powerful new tools and technologies to help create even more compelling and higher-quality apps, … continue reading
Testing and the SDLC have evolved as a result of continuous integration and deployment becoming a popular method at organizations, but moving forward, organizations need to apply the same principles to documentation to keep developers up to speed. This is according to the newly released Continuous Documentation Manifesto written by Omer Rosenbaum, the CTO at … continue reading
The developers behind the Go programming language announced that native fuzzing is ready for beta testing in its development branch, dev.fuzz. Fuzzing is a type of automated testing that continuously manipulates inputs into a program to find issues such as panics or bugs that existing unit tests might miss. RELATED CONTENT: Why developers love Go … continue reading
The GCC Steering Committee updated its copyright assignment policy by relaxing the requirement to assign copyright to all changes to the Free Software Foundation (FSF). The project will still continue to exist under the GNU General Public License v3.0 and will now accept contributions with or without an FSF copyright assignment. The change is consistent … continue reading
Spectral’s newly released Preflight solution is an open-source tool designed to help developers defend against supply chain attacks by automatically verifying and safely executing a user’s CI and third-party scripts. The solution queries popular anti-malware services to verify and block binaries if they contain malware. “Hackers have become increasingly sophisticated, with a variety of tools, … continue reading
Cloudera has entered into a definitive agreement to be acquired by Clayton, Dubilier & Rice (“CD&R”) and KKR for $5.3 billion in cash, which will result in Cloudera becoming a private company. “This transaction provides substantial and certain value to our shareholders while also accelerating Cloudera’s long-term path to hybrid cloud leadership for analytics that … continue reading
Angular announced a new automated feature request process that it will implement over the next few weeks after the team found that a large portion of requests among its three main repos were feature requests. In the new process, an Angular team member will review a ticket manually and identify it as either a feature … continue reading
Amazon Redshift ML is now generally available. The cloud data warehouse enables users to create machine learning models and make predictions from data directly from their Amazon Redshift cluster. Users just have to use a simple SQL query to specify what data they want to use to train their model as well as the output … continue reading
The SmartBear and application stability management company Bugsnag announced new error monitoring capabilities designed to improve collaboration and team alignments. The features are designed to support code ownership and accelerate the debugging process, especially for large engineering teams, according to the company. “Most apps have a variety of engineers, including separate engineering teams, working from … continue reading
