PyPi repository vulnerable to deleted package hijack, say researchers

Security researchers at JFrog report that the PyPi package repository is vulnerable to malware uploaded with the same name as a deleted package, causing...

AWS introduces macOS for CodeBuild service, blames Apple licensing requirement for high price

AWS has added features to its CodeBuild service, most notably macOS instances for building applications for iOS and Mac, as well as improved integration...

Daunting downtime stats help put industrial DevOps under spotlight

Industrial firms are belatedly adopting DevOps as they get their heads round the fact that industrial code is behind 50 percent of their extremely...

Django dev survey shows growing use of HTMX, Tailwind CSS, background workers approved

A survey of 4,000 Django developers shows strong growth in use of HTMX, Tailwind CSS and GitHub Actions – and that a third of...

Customers protest as JetBrains ends Space collaboration platform, intros SpaceCode as partial alternative

Citing weak adoption, JetBrains will discontinue its Space product - an all-in-one solution for code collaboration - in favour of SpaceCode, covering just git...

Interview: Developers spend too much time ‘not coding’ says Harness CEO

Harness CEO and co-founder Jyoti Bansal told DevClass that "developers spend 60 to 70 percent of their time not coding" because of all the things...

AWS combines “building block” blueprints with CodeCatalyst for rapid project creation including DevOps

AWS has added Project Development Kit (PDK) blueprints to its CodeCatalyst DevOps tool. Developers can now compose applications from common patterns while also setting...

GitHub autofix progresses to public beta: insecure code corrected with AI, but only for enterprise

GitHub code scanning autofix, a service which automatically detects code vulnerabilities and suggests fixes, is now in public preview for those signed up to...

From Docker to Dagger: Solomon Hykes on modernisation of the DevOps pipeline

Solomon Hykes, who started the original Docker project in 2010 and co-founded the Docker company in 2011, has spent the past five years trying...

Docker introduces Build Cloud for accelerated local development

Docker has introduced Build Cloud, a remote build service that runs in the background to speed up local development. “Build times are getting longer as...

Spotlight on GitHub self-hosted runners again as researcher demonstrates attack on PyTorch code

A researcher found that Meta’s popular open source PyTorch framework used self-hosted runners in its GitHub repository, against best practice, and was able to...

Microsoft-sponsored Radius project aims to mitigate “limitations of Kubernetes”

The Microsoft Azure Incubations Team has introduced an open source (Apache 2.0 license) platform called Radius, designed for deploying applications across on-premises, Azure or...