UK government faces software skills crisis


Governments don't have a good record when delivering IT projects, but a new study from digital experience company Acquia that the UK government is facing a major software skills crisis.
Results show that 28 percent of vacancies remain unfilled. Across the 12 departments which responded to freedom of information requests, some 317 developer positions are open, while just 808 developers are currently employed.
Rookout improves visibility into third-party code


Increasingly developers are reliant on code modules that weren't created in house and when it comes to debugging applications this third-party code can present a problem.
Now though debugging platform Rookout is announcing new functionality that makes it easier for developers to debug other people's code.
Poor quality software costs businesses over $2 trillion


The cost of poor software quality in the US in 2020 was approximately $2.08 trillion according to a report released today produced by the Consortium for Information and Software Quality (CISQ) and sponsored by Synopsys.
The figure includes poor software quality resulting from software failures, unsuccessful development projects, legacy system problems, technical debt and cybercrime enabled by exploitable weaknesses and vulnerabilities in software.
More automation, earlier security and 'Switzerland platforms' -- development predictions for 2021

Software industry turns to crowdsourced security during the pandemic


Among the many things that have changed in 2020 it's proved to be a record year for crowdsourced cybersecurity adoption, according to Bugcrowd.
Enterprises across all industries have been implementing crowdsourced cybersecurity programs to keep up with the evolving threat landscape. Bugcrowd has seen a 50 percent increase in submissions on its platform in the last 12 months, including a 65 percent increase in Priority One (P1) submissions, which refer to the most critical security vulnerabilities.
Open source vs open core -- the development battle you may never have heard of [Q&A]


There's a battle playing out in the enterprise open source arena right now, but it's one you probably haven't heard about.
It's a clash between pure open source and commercialized open source (or 'open core') versions. While this may be below the radar for anyone not directly involved it has important long-term implications for the industry.
DevSecOps adoption grows worldwide despite security concerns


DevSecOps methodology is an important, rapidly growing trend worldwide, with 63 percent of respondents to a new study reporting they are incorporating some measure of DevSecOps into their software development pipelines.
The survey of 1,500 IT professionals conducted by the Synopsys Cybersecurity Research Center (CyRC) and Censuswide also shows 33 percent have DevSecOps in a mature or widely deployed state in their business.
Open source developers spend less than three percent of their time on security


The latest FOSS (Free and Open Source Software) contributor survey from the Open Source Security Foundation (OpenSSF) and the Laboratory for Innovation Science at Harvard shows respondents spend on average, just 2.27 percent of their total time on security and express little desire to increase that time.
The survey of almost 1,200 respondents working on FOSS software shows the majority of respondents (74.87 percent) are already employed full-time and more than half (51.65 percent) are specifically paid to develop FOSS.
Ubuntu Linux maker Canonical publishes curated container images to help secure software supply chains


A good deal of software development now relies on open source images, but it can be hard for businesses to know if they're introducing security flaws by using them.
Canonical -- the company behind Ubuntu Linux -- is addressing this by publishing the LTS (Long Term Support) Docker Image Portfolio, a curated set of secure container application images, on Docker Hub.
MACH and what it means for development [Q&A]


Launched in June of this year, the MACH Alliance (MACH standing for Microservices based, API-first, Cloud-native SaaS and Headless) is a non-profit group of tech leaders advocating for a new, open and best-of-breed enterprise technology ecosystem.
The Alliance aims to help enterprise organizations navigate the complex modern technology landscape with the belief that competitive advantage doesn't come from owning the stack, but rather from being free to select the best available resources for the moment.
Developer productivity in the remote era [Q&A]


Many more people are now working remotely and developers are no exception. But how does this shift in working patterns affect their productivity?
We spoke to Manish Gupta, CEO and founder of code analysis specialist ShiftLeft to find out more about the challenges of development in a remote world.
Only eight percent of virtual appliances are free of vulnerabilities


Virtual appliances are an inexpensive and relatively easy way for software vendors to distribute their wares for customers to deploy in public and private cloud environments, but new research shows appliances often have exploitable and fixable vulnerabilities, or are running on outdated or unsupported operating systems.
The Orca Security research study found 401,571 total vulnerabilities in scanning 2,218 virtual appliance images from 540 software vendors. This means less than eight percent of virtual appliances were free of known vulnerabilities.
Developers and security professionals sacrifice security for speed


In order to meet short deployment cycles, 73 percent of security professionals and developers feel forced to compromise on security according to a new report.
The study into DevSecOps from open source security and license management specialist WhiteSource, based on responses from over 560 developers in the US and Europe, finds that 20 percent of respondents describe their organizations' DevSecOps practices as 'mature', while 62 percent say they are improving, with only 18 percent being classed as 'immature'.
API investments remain strong despite tough times


Around half of respondents to a new survey say that investment of time and resources into APIs will increase over the next 12 months, while another third think investments into APIs will stay the same, despite a tough economic environment.
The study from development collaboration platform Postman shows over 60 percent of survey respondents rate themselves as five out of 10 or better in terms of embracing an 'API-first' philosophy.
High performing developers release more often


The highest performing developers put out releases 15 times more often and are 26 times times faster to detect and fix open source vulnerabilities than their low performing counterparts, according to a new study.
The report from Sonatype is based on analysis of over 1.5 trillion open source download requests, 24,000 open source projects, and 5,600 enterprise development teams.
Recent Headlines
Most Commented Stories
BetaNews, your source for breaking tech news, reviews, and in-depth reporting since 1998.
© 1998-2025 BetaNews, Inc. All Rights Reserved. About Us - Privacy Policy - Cookie Policy - Sitemap.