Disclaimer: This article is published solely for information purposes and is in no way a guide to action. The vulnerabilities described in the article were discovered by the author as part of the... | Continue reading
IaC Development Life CycleThis is the translation of my speech at T-Meetup: DevOps Life Cycle.I believe that you have heard about SDLC (Systems development life cycle). Is it possible that the... | Continue reading
The third quarter of 2021 brought a massive upheaval in the scale and intensity of DDoS attacks worldwide.It all led to September when together with Yandex, we uncovered one of the most devastating... | Continue reading
I am not an economist, but in light of current events with cryptocurrencies and the economy in general, I would like to share my thoughts on some kind of ideal economy, around which everything is... | Continue reading
Modern applications have lots of code. And the C++ language doesn't get easier. Nowadays, code reviews are not enough to fully analyze program code. Here's where static code analysis comes in.Why... | Continue reading
I had some experience in the matching engine development for cryptocurrency exchange some time ago. That was an interesting and challenging experience. I developed it in clear C++ from scratch. The... | Continue reading
Only after I had published a post detailing three iOS 0-day vulnerabilities and expressing my frustration with Apple Security Bounty Program, I received a reply from Apple:We saw your blog post... | Continue reading
In May 2021, CppCast recorded a podcast called ABI stability (CppCast #300). In this podcast, Marshall Clow and the hosts discussed rather old news — Visual Studio compilers support the... | Continue reading
Дисклеймер: Apple была уведомлена обо всех описанных в статье уязвимостях в период с 10 марта по 4 мая, ответы о принятии в работу со стороны Apple приходили на следующий день после каждого... | Continue reading
I want to share my frustrating experience participating in Apple Security Bounty program. I've reported four 0-day vulnerabilities this year between March 10 and May 4, as of now three of them are... | Continue reading
Video recording of a closed session of the upper house of Russia's parliament was leaked online by Telegram channel A000MP97. In the video, Andrei Klimov, head of the Ad Hoc Sovereignty and... | Continue reading
Once upon a time there was a guy on my team so weak that he was going to be fired (a developer! Fired!). Every comment of mine was another nail in his coffin. I could almost hear the bang of the... | Continue reading
IntroductionFor the last five years, there have virtually been almost no global-scale application-layer attacks.During this period, the industry has learned how to cope with the high bandwidth network... | Continue reading
In April 2021 Microsoft announced a new version of its IDE – Visual Studio 2022 – while also announcing that the IDE would be 64-bit. We've been waiting for this for so long – no more 4 GB memory... | Continue reading
On August 25th, 2021, the Linux kernel celebrated its 30th anniversary. Since then, it's changed a lot. We changed too. Nowadays, the Linux kernel is a huge project used by millions. We checked the... | Continue reading
It seems that the problem of calculating the absolute value of a number is completely trivial. If the number is negative, change the sign. Otherwise, just leave it as it is. In Java, it may look... | Continue reading
With the .NET5 release further development of some projects was questionable due to the complexity of porting. One can abandon small outdated libraries or find a replacement. But it's hard to throw... | Continue reading
Static code analysis allows you to identify and eliminate many defects at an early stage. Moreover, it's possible to detect dormant errors that don't show themselves when they appear. They can... | Continue reading
The PVS-Studio analyzer already has plugins for such IDEs from JetBrains as Rider, IntelliJ IDEA and Android Studio. Somehow we missed another IDE - CLion. The time has come to make amends! But why... | Continue reading
The year 2021 started on such a high note for Qrator Labs: on January 19, our company celebrated its 10th anniversary. Shortly after, in February, our network mitigated quite an... | Continue reading
Many of us spend time in specialized telegram groups. The power over communication here belongs to random people with their own shortcomings. Conflict and abuse... | Continue reading
Many of us spend time in specialized telegram groups. The power over communication here belongs to random people with their own shortcomings. Conflict and abuse... | Continue reading
Only 39% of the functions in node_modules are unique in the default Angular project created by ng new my-app. I think the developers of open source solve... | Continue reading
There is a lot of commotion in speech-to-text now. There is a great variety of toolkits, a plethora of commercial APIs from GAFA companies (based both on new... | Continue reading
At the very beginning of this year, Apple released the source code for macOS – Big Sur. It includes XNU, the kernel of the macOS operating system. A few years a... | Continue reading
Starting a startup can be tricky. To make money, you need clients. To attract clients, you need a portfolio. To have an attractive portfolio, you need to… Well,... | Continue reading
Techstars Startup Digest was designed as a discovery tool for entrepreneurs looking for tech events in their area. It was founded in 2009 by Chris McCann who... | Continue reading
Entrepreneurs make for easy targets. Whatever your business is doing, it’s guaranteed to ruffle some feathers. But don’t be quick to blame the public. Most tim... | Continue reading
The recent Qt 6 release compelled us to recheck the framework with PVS-Studio. In this article, we reviewed various interesting errors we found, for example,... | Continue reading
There is an open project COVID-19 CovidSim Model, written in C++. There is also a PVS-Studio static code analyzer that detects errors very well. One day they... | Continue reading
AngelList is a social network designed to connect startups with investors and vice versa. The founders of it were dissatisfied with how opaque the VC world was,... | Continue reading
Welcome to RISC-V era! Solutions based on the open standard instruction set architecture RISC-V are currently increasing their presence on the market. | Continue reading
IntroThere probably is no way one who stores some crucial data (in particular, using SQL databases) can possibly dodge from the thoughts of building some kind... | Continue reading
A few months ago Microsoft announced about the creation of Jupyter for .NET. However, people are barely interested in it despite how attractive the topic is. I... | Continue reading
Intro So you are writing some CPU-intensive code in Python and really trying to find ways out of its single-threaded prison. You might be looking towards... | Continue reading
The Big Data Tools plugin seamlessly integrates HDFS into your IDE and provides access to different cloud storage systems (AWS S3, Minio, Linode, Digital Open... | Continue reading
By writing the article "Upsetting Opinions about Static Analyzers" we were supposed to get it off our chest and peacefully let it all go. However, the article... | Continue reading
The story of Fatal Fight started in 2015. The time when going global and having 5 million downloads on Google Play Store seemed to be a dream of every game... | Continue reading
Introduction Each game has data that game-designers work with. In RPG there is a database of items, in match-3 — the cost in the crystals of tools from the s... | Continue reading
EAP 11 of the Big Data Tools plugin for IntelliJ IDEA Ultimate, PyCharm, and DataGrip is available starting today. You can install it from the JetBrains Plugin... | Continue reading
Before we start, I'd like to get on the same page with you. So, could you please answer? How much time will it take to: Create a new environment for testing?... | Continue reading
Static analysis tools have advanced far over the time they've been around. They no longer resemble the "linters" that were in active use 20 years ago. But... | Continue reading
Many of us grew up reading a classic, that was a staple of many home libraries. However, it doesn’t seem to be as prominent as it once was. To understand the o... | Continue reading
Zeppelin is a web-based notebook for data engineers that enables data-driven, interactive data analytics with Spark, Scala, and more. The project recently... | Continue reading
Do the police in the US really shoot black people more often than white people? Is use of lethal force connected with race? How is crime related to race? What... | Continue reading
I offer a solution to one beautiful task — writing code that outputs its text is valid for interpreters and compilers of different languages and is correctly e... | Continue reading
In July 2020, the European Court of Justice invalidated an exchange of the personal data between the European Union and the United States. The times of the Safe... | Continue reading