The inside story of how and why a leading cloud-based visual-effects rendering platform moved from Kubernetes to Nomad and how it turned out. | Continue reading
The top developer site GitHub has had enough second-rate security. So, as of August 13th, GitHub blocked the use of account passwords when authenticating Git operations. | Continue reading
Engineers at IBM Research and Red Hat OpenShift recently teamed up to tackle a problem that had been plaguing the Kubernetes space — how to more efficiently manage resources in a way that took existing loads and patterns into account. | Continue reading
The problem with three separate pillars of observability is how we use them. To be useful, we have to bring all of the tools together. | Continue reading
We’re about to transition from the cloud computing era to the sky computing era, according to a pair of Berkeley computer science professors. | Continue reading
This milestone year offered a chance for reflection, and the EFF founders got candid in a conversation about social media, the changing role of government, and more. | Continue reading
Through a podcast, technologist Marianne Bellotti takes listeners on her journey to write a new language from scratch. It's no easy task, but the host has fun while shedding light on the tools programmers use. | Continue reading
Agricultural equipment giant John Deere left an extremely sensitive Okta-generated digital certificate on a public-facing website, potentially jeopardizing the security of a whole range of remotely-accessible farm equipment, according anonymous independent researcher Sick Codes, … | Continue reading
NoSQL database system provider MongoDB launched MongoDB 5.0 this week at MongoDB.live, the company's user conference, unveiling some features previously predicted such as live resharding, along with several others. | Continue reading
Wiz Chief Technology Officer Ami Luttwak and head of research Shir Tamari discovered a simple loophole that allowed them to intercept dynamic DNS (DDNS) traffic going through managed DNS providers like Amazon and Google. | Continue reading
Organizations are caught in a seemingly endless cycle of trying to keep up with the latest updates, often spinning their wheels and expending effort to fix issues within their own forks of the Linux kernel. | Continue reading
In July, a retired Microsoft engineer kicked off a competition aimed at finding the fastest programming language. So far, the accompanying GitHub repo has more than 650 contributions. | Continue reading
This Week in Programming gathers the hottest development news for the cloud native computing community. | Continue reading
Seeking a role that straddles development and business? The path to an architect role isn't always clear, but one quality is a must-have: the ability to respond to everyone's needs. | Continue reading
The Kubernetes Cluster API project promises a declarative, Kubernetes-style APIs for creating, configuring and managing clusters and automating cluster lifecycle management for platform operators. | Continue reading
Yes, the National Security Agency (NSA), aka the “No Such Agency,” aka master code-breakers of the world, can also help you secure your Kubernetes clusters. No, this is not a joke. Not only can its “Kubernetes Hardening Guidance” help you, but it’s also darn good. That’s not as a … | Continue reading
An outline of some key items that I have found to be useful to cover in a process-improvement or process change proposal. | Continue reading
A Q&A with HashiCorp founder Mitchell Hashimoto, on his decision to step down from his executive position within the company. | Continue reading
The distributed architecture turns 10 this year. What challenges lie ahead? Experts including Sam Newman, author of Building Microservices, weigh in. | Continue reading
Code sharing repository giant GitHub has hired Jacob DePriest as its vice-president of security operations. In that position, he'll lead the Security Operations team under CSO Mike Hanley as part of GitHub's continued investments in security. | Continue reading
Not every application requires observability, but it becomes crucial for critical applications to gauge performance, stability, and analysis. As a result, observability has become a necessity in the DevOps industry. | Continue reading
Styra is using Terraform to extend its Declarative Authorization Service guardrails to public cloud storage, network, and compute resource configuration in Styra DAS for Terraform. | Continue reading
Pushing requests through a distributed microservices architecture can feel like shoving Larry, Curly and Moe through a passage built for one. A Reddit engineer shared a solution to ease the squeeze. | Continue reading
When a designated FinOps team has yet to be established, no one is formally accountable for seeking solutions to remediate the billing data and/or conduct post-processing in an attempt to meet management’s reporting needs. | Continue reading
It's easy to get carried away and build a complex data layer without thinking about the consequences. The IMS score was created to help you. | Continue reading
While working on the Helm source, a Helm core maintainer discovered — whoops! — that you could all too easily set up a situation where the username and password credentials associated with one Helm repository could be passed on to another domain. Ow. | Continue reading
Even though the off-grid paradigm of Scuttlebutt takes some getting used to, its decentralized architecture for social networks is promising. | Continue reading
Why do I need a tester? I am a tester! But I am wearing a developer’s hat today, and there are things a developer won’t do. | Continue reading
Females are 16% more likely than males to be "burned out" from work, but men are 16% more likely to cite a "high workload" as the reason for feeling this way, whereas females' point to "unrealistic demands" on the part of management. | Continue reading
Developers don’t need to be experts in Kubernetes, but they should be proficient in skills that matter to the performance of their applications. Here's how to be a better DevOps team member. | Continue reading
Work on an open source project that would help programs written for Nvidia's proprietary CUDA platform to run on Intel GPUs has come to halt, as the project's previous owner looks for someone else to lead the effort. | Continue reading
Two decades ago, while building software for a Navy destroyer, he led the creation of a new open source database to overcome the glitches he encountered. Then Google came calling. | Continue reading
Why your business should get a consolidated web application and API security solution. | Continue reading
We are building more and more custom software, but producing it more quickly by integrating higher-level building blocks such as OSS or vendor APIs. | Continue reading
Should it be Javascript? Python? C++? There's little consensus on where today's computer science students should start their programming knowledge. | Continue reading
Last week, Pittsburgh-based Brazilian database administrator Vanny received a DM from a stranger on Instagram that, translated from Portuguese, read: Lady, you had everything to be a reference in the tech community, but you lower yourself and expose yourself too much. I started f … | Continue reading
As hot as the hybrid cloud is these days, the multicloud is just as prevalent. Every large enterprise is a multicloud enterprise. | Continue reading
When a Quora user asked if software development was a dead-end job by middle age, hundreds of stories poured in. Upbeat tales from programmers in their 60s countered conventional wisdom. | Continue reading
Normally, Ruckstack is used to package and connect your services, databases, etc. into a single installable for on-site customers. But, that same packaging logic can instead be used to collect up everything you need for your development environment installations. | Continue reading
Sonatype has released Sonatype Lift, a deep code analysis platform that gives developers the ability to scan for a wide range of bug types and code issues. | Continue reading
Observability should enable application performance analysis throughout the lifecycle without overemphasis on logs, metrics and tracing capabilities. | Continue reading
This Week In Programming assembles all the latest development news for the cloud native computing community. | Continue reading
Baking security into the rapidly-iterating DevOps shops (via "shift left") continues to be a challenge, though some smart thinkers at JFrog's recent SwampUP virtual conference have a few ideas on how to make it happen. | Continue reading
Serverless is at "the plateau of productivity," with increased use and less discussion. The next stop is better integration. | Continue reading
Well, wasn’t that fun? On June 8, 2021, many internet users went to their usual sites such as Amazon, Reddit, CNN, or the New York Times and found nothing but an “Error 503 service unavailable” and an ominous “connection failure” note. So, what happened? The Fastly Content Delive … | Continue reading
Decentralized cloud storage is very real. Here is our take on the common misconceptions we hear about decentralized storage. | Continue reading
AWS promises that you simply provide their source code, container image, or deployment pipeline, and AWS App Runner does all the rest. | Continue reading
Static analysis tools can help find security gaps in source code, such as in the Linux kernel, but such tools are notorious for generating false positive results. Here's a look at some of the tools used with Linux, including their challenges. | Continue reading