GitOps
Typosquat Supply Chain Attack Targets Go Developers
A backdoor that impersonates a widely used database module in the popular Go programming language can give hackers control of infected systems, according to a senior threat intelligence analyst with developer-focused platform ...
Fake Stars in GitHub a Growing Security Threat, Analysis Finds
There was a surge of inauthentic stars on code repositories in 2024, ramping up the threat of software supply chain attacks ...
Why and How to Go All-In on GitOps
When you can manage every cloud native deployment using a GitOps approach, as a consequence, declarative and automated processes become baked into your culture and transform your business. ...
GitLab Fixes Security Flaw That Lets Attackers Run Pipeline Jobs
If left unpatched, the vulnerability in the code repository could let threat actors run malicious code and access sensitive information ...
Security, Automation and Developer Experience: The Top DevOps Trends of 2024
Derek Ashmore | | automation, developer experience, gitops, IaC, infrastructure as code, Policy-Based ManagementIf you want to know what's truly changing in the world of DevOps – as opposed to which conversations are most hype-worthy – these are the places to look ...
Best of 2023: ‘Scrum == Cancer’ ¦ Plus: Linux 6.5 Ships
In this week’s #TheLongView: Scrum sucks, sources say; and here comes the Linux 6.5 kernel ...
Microsoft kills Python 3.7 ¦ … and VBScript ¦ Exascaling ARM on Jupiter
Richi Jennings | | ARM, ARM processors, Exascale, microsoft, Microsoft Visual Studio, Microsoft Windows, NVIDIA, Python, scripting, supercomputer, The Long View, VBScript, visual studio, Visual Studio Code, VS Code, windowsIn this week’s #TheLongView: VS Code drops support for Python 3.7, Windows drops VBScript, and Europe plans the fastest ARM supercomputer ...
Google’s Shiny New AI Dev Environment — the ‘Experimental’ Project IDX
Richi Jennings | | agile environments, ai, AI assistant, AI ChatBots, AI integrations, artificial intelligence, Cloud development environment, copilot, development environment, full stack, GitHub Copilot, google, PaLM, Project IDX, The Long ViewIn this week’s #TheLongView: Google’s full-stack, browser based development environment in the cloud. Project IDX is not just a Copilot clone, but aims to help you “get an app from zero to ...
Declarative Compliance With Policy-as-Code and GitOps
In recent times, the quest for greater agility, faster releases, enhanced scalability, security and performance brought forth the advent of several automation tools, technologies and frameworks. Software development has evolved considerably over ...
OpenAI Hires 1,000 Low Wage Coders to Retrain Copilot ¦ Netflix Blocks Password Sharing
Richi Jennings | | ChatGPT, Codex, github, GitHub Copilot, gitops, microsoft, Netflix, open source, OpenAI, password policies, The Long ViewIn this week’s #TheLongView: ChatGPT darling OpenAI wants people to write code in English, and the unintended consequences of blocking shared accounts ...
Microsoft Outage Outrage: Was it BGP or DNS?
Richi Jennings | | azure, BGP, DNS, gitops, it-as-code, microsoft, Microsoft Azure, Microsoft Teams, MSFT, Office 365, outage, The Long ViewAll of Microsoft’s cloud services go down, everywhere. Redmond’s IaaS, PaaS and SaaS—including GitHub—were dead for several hours, and are still running unreliably—despite Microsoft saying it’s fixed ...
The Secret to Secrets Management: Reduce Source Code Vulnerabilities
Gilbert Martin | | devsecops, GIT, secrets management, security, source code, source code managementWe are in the cyberattack age. From Microsoft to Crypto.com, no company is completely safe from malicious attackers, and it seems as if a new major cyberattack is announced weekly, if not ...
