Codecov breach prompts fears of another SolarWinds-style hack

A hack impacting software testing firm Codecov is expected to have resulted in hundreds of networks being compromised, prompting fears of a fallout similar to the recent SolarWinds attack.

Codecov has over 29,000 customers including companies such as IBM, Proctor & Gamble, Hewlett Packard Enterprise, Atlassian, Washington Post, and GoDaddy. The potential scale of the attack has led to a federal investigation.

"We are aware of the claims and we are investigating...

Why should you use Rust for developing distributed applications?

Rust was originally developed at Mozilla Research and has gained increasing traction as a popular language to develop distributed computing applications. Major software providers such as Microsoft and Amazon have announced publicly their affection for the language and the fact that they are using Rust in house as a means to develop safety-critical software components. Even more tellingly, the language has been voted by developers “the most loved programming language” every year since...

GitHub expands CLI functionality to bring Actions to your terminal

GitHub is expanding the functionality of its CLI (Command-Line Interface) tool to bring Actions to your terminal.

The first stable version of GitHub CLI launched in September last year with the aim of enabling developers to keep their repo workflows in their terminal.

“Developers spend a lot of time in their terminals, and our CLI helps to mitigate the frequent context switching between your terminal and GitHub.com,” Amanda Pinsker, Product Designer at GitHub, said...

The necessary evolution to DevSecOps: Building security into the development lifecycle

Hindsight is a wonderful thing. Looking back on the early stages of DevOps, one moment of 20/20 clarity is that if people were doing it right from the beginning, there would be no need to change DevOps to DevSecOps. Security should have been part of the approach from the start.

Security should always be fundamental, but in a rush to develop new ideas or to deliver applications faster, it may get overlooked. This is – ironically - precisely what happened with DevOps. Establishing...

Unity partners with the UN and Project Drawdown to help create a sustainable future

Unity is often used to create incredible worlds people use to take a break from reality, but a new collaboration uses the 3D content platform to tackle a real-world problem that impacts all of humanity.

A new grant, the Unity For Humanity Environment and Sustainability Grant, has been launched in collaboration with the United Nations Environment Programme (UNEP) and Project Drawdown.

Jessica Lindl, VP of Social Impact at Unity, said:

“The future of humanity...

Open-source solution switches GMS for HMS to enable AppGallery distribution

Bluesource has released a solution that switches apps using GMS (Google Mobile Services) for HMS (Huawei Mobile Services) to enable AppGallery distribution.

The open-source solution is called the Choice SDK and aims to save developers time and cost in converting their existing apps which use GMS and Firebase frameworks to be usable in Huawei’s ecosystem.

Martin Sprengseis-Kogler, Managing Partner at Bluesource, said:

“Businesses across Europe would like to...

Gitpod adds support for VS Code and expands features after raising $13M

Open-source developer platform Gitpod has announced a slew of enhancements after raising $13 million in venture capital funding.

The platform – which is used by over 350k global developers – aims to streamline workflows by providing prebuilt, collaborative browser-based development environments.

Stephen O'Grady, Principal Analyst with RedMonk, commented:

"While developers have a wealth of tools at their fingertips, integrating them all together and...

Giving tech a voice: A conversation with Google’s Jessica Earley-Cha

There have been many innovations in voice communication over the past few hundred years — everything from phonographs to telephones to digital recordings and playback. Humanity has taken another leap forward in recent decades with voice-recognition and -controlled technologies like Google Assistant, allowing people to interact, learn, and create simply by saying, “Hey, Google.” On the latest episode of our podcast, Decoded, we talked to Jessica Earley-Cha, developer relations engineer...

Five ways to use AI in app development to improve your customer service experience

As we move towards a digital world, the relationship between businesses and customers has been changing over the last few years. With customers' expectations higher than ever, companies need to find new ways to interact with them and improve their processes and services' efficiency and quality. It’s in this context that several organizations are starting to board the AI train to enhance their customer service with smarter experiences and process automation.

Artificial...

Hackers are using shared Xcode projects to infect Apple developers

Developers for Apple’s platforms are being hacked through importing shared Xcode projects infected with malware.

Researchers from SentinelOne detailed the growing trend after discovering a macOS malware dubbed XcodeSpy.

“Threat actors are abusing the Run Script feature in Apple’s Xcode IDE to infect unsuspecting Apple Developers via shared Xcode Projects,” the researchers explained.

“XcodeSpy is a malicious Xcode project that installs a custom variant...