Topic: vulnerability

Dependency CI reviews potential vulnerabilities for open-source projects

The founder of an open-source library discovery service launched a new project today that can continuously test open-source dependencies for potential vulnerabilities and other issues. The project is Dependency CI, an open-source tool that integrates directly into a GitHub workflow just like other CI systems. It runs a set of configurable tests on any dependency … continue reading

Google’s machine learning chip, Apache Software Foundation’s new executive director, and the SBRA developer portal—SD Times news digest: May 19, 2016

There have been plenty of announcements coming out of Google I/O this week, and yesterday, Google said that one of its projects that was created years ago is helping it accomplish its own custom accelerators for machine learning applications. The result of that project is called a Tensor Processing Unit (TPU), which is a custom … continue reading

PostgreSQL 9.6 beta, SyntaxNet goes open source, and Mozilla files a motion with U.S. District Court—SD Times news digest: May 13, 2016

The first beta release of PostgreSQL 9.6 is ready for download, containing previews of all the features that will become available when the final version is here. The PostgreSQL Global Development Group is encouraging its users to begin testing their applications against this new release. New changes and enhancements include parallel sequential scans, joins and … continue reading

Report: FBI hacked into encrypted iPhone, and Apple wants to know how

The Apple and FBI battle over the encrypted iPhone was believed to be over when the FBI announced on Monday that it managed to unlock the San Bernardino shooter’s phone. But Apple wants to know how the agency was able to get through its security features, and so the battle continues. The Los Angeles Times … continue reading

Google announces intelligent cloud products, Java vulnerability affects Oracle products, and GNOME 3.20 Delhi released—SD Times news digest: March 24, 2016

At GCP Next, Google announced the latest results of work completed on the Google Cloud Platform. The next round of innovation builds on its portfolio of data-management and analytics capabilities by adding new products and services in areas like machine learning, open source and Big Data. Google introduced a new product family called Cloud Machine … continue reading

Microsoft joins Eclipse, Embarcadero squares in on developers, and AlphaGo beats worldwide Go champion—SD Times news digest: March 9, 2016

Microsoft is looking to collaborate more closely with the Eclipse community as a Solutions Member of the Eclipse Foundation. This move will allow Microsoft to develop tools and services to all development teams, as well as to continuously improve its cloud services, SDKs and tools. “Microsoft delivers a number of Eclipse-based tools today. The Azure … continue reading

Microsoft’s pull request to Node.js with ChakraCore, Microsoft Philanthropies, and OpenStack adoption—SD Times digest: Jan. 20, 2016

Microsoft has submitted a pull request to the Node.js mainline in order to enable it to work with Microsoft’s recently open-sourced ChakraCore. According to Microsoft, the open-sourcing of ChakraCore helps the technology better align with Node.js release schedules. The pull request would allow Node.js to use the ChakraCore JavaScript engine, and to enable Node.js developers … continue reading

Adobe is working on a fix for Flash, Arduino 101 is announced, and Nintendo begins distributing SDKs for the NX—SD Times news digest: Oct. 16, 2015

Adobe has put out a security advisory for its Flash Player. According to the company, there is a critical vulnerability in the plug-in affecting Adobe Flash Player 19.0.0.207 and earlier for Linux, Macintosh and Windows. The vulnerability has the ability to cause a crash and let a hacker take control of the system. The vulnerability … continue reading

Researchers discover emerging class of C++ bugs, Intel’s diversity report, and Android Experiments—SD Times news digest: Aug. 13, 2015

Researchers from Georgia Tech have discovered an emerging class of C++ bugs, and Facebook has awarded them US$100,000 for their efforts. The bugs are rooted in a new method for identifying “bad casting” vulnerabilities in C++ programs casted dynamically or statically at runtime. The researchers, who presented their findings at the USENIX Security ’15 conference, … continue reading

Microsoft’s open-source iOS bridge for Windows 10, a Firefox exploit, and WebGLStudio.js—SD Times news digest: Aug. 7, 2015

Microsoft has released an early look at its open-source Windows 10 Bridge for iOS. Previously known as “Project Islandwood,” the bridge allows iOS developers to build and run apps on Windows. The version currently available to the open-source community is a work in progress, and Microsoft is encouraging feedback and code contributions before the final … continue reading

OpenSSL issues urgent security advisory

OpenSSL has issued a new security advisory outlining more than a dozen issues ranging from high to low severity. (Related: OpenSSL to undergo massive security audit) On the heels of announcing a sweeping security audit of the now-stable OpenSSL codebase, the SSL/TLS security protocol underlying much of the Web’s encryption has published warnings for security … continue reading

Ad will close in seconds
Continue to site
HTML Snippets Powered By : XYZScripts.com

Get access to this and other exclusive articles for FREE!

There's no charge and it only takes a few seconds.

Sign up now!