The founder of an open-source library discovery service launched a new project today that can continuously test open-source dependencies for potential vulnerabilities and other issues. The project is Dependency CI, an open-source tool that integrates directly into a GitHub workflow just like other CI systems. It runs a set of configurable tests on any dependency … continue reading
There have been plenty of announcements coming out of Google I/O this week, and yesterday, Google said that one of its projects that was created years ago is helping it accomplish its own custom accelerators for machine learning applications. The result of that project is called a Tensor Processing Unit (TPU), which is a custom … continue reading
The first beta release of PostgreSQL 9.6 is ready for download, containing previews of all the features that will become available when the final version is here. The PostgreSQL Global Development Group is encouraging its users to begin testing their applications against this new release. New changes and enhancements include parallel sequential scans, joins and … continue reading
The Apple and FBI battle over the encrypted iPhone was believed to be over when the FBI announced on Monday that it managed to unlock the San Bernardino shooter’s phone. But Apple wants to know how the agency was able to get through its security features, and so the battle continues. The Los Angeles Times … continue reading
At GCP Next, Google announced the latest results of work completed on the Google Cloud Platform. The next round of innovation builds on its portfolio of data-management and analytics capabilities by adding new products and services in areas like machine learning, open source and Big Data. Google introduced a new product family called Cloud Machine … continue reading
Microsoft is looking to collaborate more closely with the Eclipse community as a Solutions Member of the Eclipse Foundation. This move will allow Microsoft to develop tools and services to all development teams, as well as to continuously improve its cloud services, SDKs and tools. “Microsoft delivers a number of Eclipse-based tools today. The Azure … continue reading
Microsoft has submitted a pull request to the Node.js mainline in order to enable it to work with Microsoft’s recently open-sourced ChakraCore. According to Microsoft, the open-sourcing of ChakraCore helps the technology better align with Node.js release schedules. The pull request would allow Node.js to use the ChakraCore JavaScript engine, and to enable Node.js developers … continue reading
Adobe has put out a security advisory for its Flash Player. According to the company, there is a critical vulnerability in the plug-in affecting Adobe Flash Player 19.0.0.207 and earlier for Linux, Macintosh and Windows. The vulnerability has the ability to cause a crash and let a hacker take control of the system. The vulnerability … continue reading
Researchers from Georgia Tech have discovered an emerging class of C++ bugs, and Facebook has awarded them US$100,000 for their efforts. The bugs are rooted in a new method for identifying “bad casting” vulnerabilities in C++ programs casted dynamically or statically at runtime. The researchers, who presented their findings at the USENIX Security ’15 conference, … continue reading
Microsoft has released an early look at its open-source Windows 10 Bridge for iOS. Previously known as “Project Islandwood,” the bridge allows iOS developers to build and run apps on Windows. The version currently available to the open-source community is a work in progress, and Microsoft is encouraging feedback and code contributions before the final … continue reading
OpenSSL has issued a new security advisory outlining more than a dozen issues ranging from high to low severity. (Related: OpenSSL to undergo massive security audit) On the heels of announcing a sweeping security audit of the now-stable OpenSSL codebase, the SSL/TLS security protocol underlying much of the Web’s encryption has published warnings for security … continue reading
