Developer

In order to meet short deployment cycles, 73 percent of security professionals and developers feel forced to compromise on security according to a new report.

The study into DevSecOps from open source security and license management specialist WhiteSource, based on responses from over 560 developers in the US and Europe, finds that 20 percent of respondents describe their organizations' DevSecOps practices as 'mature', while 62 percent say they are improving, with only 18 percent being classed as 'immature'.

Around half of respondents to a new survey say that investment of time and resources into APIs will increase over the next 12 months, while another third think investments into APIs will stay the same, despite a tough economic environment.

The study from development collaboration platform Postman shows over 60 percent of survey respondents rate themselves as five out of 10 or better in terms of embracing an 'API-first' philosophy.

The highest performing developers put out releases 15 times more often and are 26 times times faster to detect and fix open source vulnerabilities than their low performing counterparts, according to a new study.

The report from Sonatype is based on analysis of over 1.5 trillion open source download requests, 24,000 open source projects, and 5,600 enterprise development teams.

Businesses experience problems in leveraging information to make data-driven decisions, communicating between teams and management layers, dealing with 'software sprawl', and accurately quantifying the cost of feature delivery delays a new report shows.

The survey by Accelerated Strategies Group (ASG), commissioned by CloudBees, also shows that many organizations have been able to tackle some of the facets of modern software delivery management, but that there’s still much room for improvement.

PHP 8.0 is due for release in November, but when this major new version appears Windows will not support it.

The company says that bug fixes and security patches will continue to be released for the lifecycles of PHP versions 7.2, 7.3 and 7.4. But when the latest version is released later this year, Microsoft will "not [...] be supporting PHP for Windows in any capacity for version 8.0 and beyond".

In a new survey of over 165 developers, AppSec and DevOps professionals, application security automation company ShiftLeft finds that 96 percent of developers believe the disconnect between developer and security workflows inhibits developer productivity.

When asked to prioritize, application security professionals rank creating developer-friendly security workflows as their top priority, even higher than protecting applications in production environments.

As technology continues to evolve, software development teams are bombarded with security alerts at an increasing rate, making it almost impossible to address every potential vulnerability.

New research from WhiteSource, an open source security and license compliance management specialist, and CYR3CON, which predicts cybersecurity attacks based on AI-gathered intelligence looks at how development teams prioritize fixing vulnerabilities and compares this to discussions in hacker communities.

The latest State of Software Quality survey from continuous reliability company OverOps shows that 70 percent of respondents say quality is paramount and they would rather delay the product roadmap than risk a critical error impacting their users.

In addition, over half of survey respondents (53 percent) indicate they encounter critical or customer-impacting issues in production at least one or more times a month. A quarter of participants also say that over 40 percent of critical production issues are first reported by end users or customers rather than internal mechanisms.

New research from DevOps automation specialist Sonatype has discovered that software development activity in the UK decreased by 28 percent since February.

However, the UK position contrasts with some other countries where development activity has continued to grow in the midst of the pandemic. Notably, this includes the United States with a six percent increase and Germany with a 12 percent increase since January 2020.

For around two decades now, hackers have exploited the design of the memory management system used by Linux programs in order to take control of a target's computer.

Now though researchers at Check Point have introduced a new security mechanism for Linux users called 'safe-linking' which means attackers will need more than one vulnerability in order to take over the program.

Microsoft is preparing for a (probable) May 28 launch of Windows 10 May 2020 Update, but developers can already grab this feature update right now.

Windows 10 May 2020 Update / Windows 10 version 2004 / Windows 10 20H1 was supposed to have been finalized recently, but Microsoft decided to issue one more update to it -- and the company is going to release it knowing that it is still problematic. But now in an indication that the public launch is just around the corner, Microsoft has made the May 2020 Update available to MSDN subscribers.

Google has released a new preview version of Android 11 for developers to play with, and also revealed details of a revised release schedule for the operating system.

Android 11 Developer Preview 4 has been released ahead of the first beta version, and it should come as no surprise to anyone that, given what's been going on in the world recently, this launch has been pushed back a bit. The good news is that everyone will be able to attend the launch event.

If you've used Firefox, Chrome or numerous other browsers, you'll be used to the extensions you install synchronizing between device. This simple but wonderfully handy feature is something that has been sadly lacking from Microsoft Edge, but now this is changing.

Microsoft has promised extension syncing for a little while, and the company is finally starting to roll it out to users. But not everyone is going to get the feature right now.

There are numerous technology companies that have agreed to offer their services for free as the world tries to tackle the coronavirus crisis, and others who have taken steps to reduce their strain on the internet. Tomorrow, #BuildforCOVID19 Global Online Hackathon kicks off, with many of the big names from the world of tech coming together to tackle some of the problems COVID-19 presents.

There are also numerous partners from the health community, including the World Health Organization, and the aim is to come up with software solutions that can be used to improve health and hygiene, help with social isolation, assist in education, and help businesses stay afloat.

It won't be until November that we see the general release of .NET 5, but ahead of this Microsoft has released .NET 5 Preview 1 for developers to try out.

With .NET 5, Microsoft is continuing to unify .NET into a single platform; it will include ASP.NET Core, Entity Framework Core, WinForms, WPF, Xamarin and ML.NET. Key changes here are significant improvements to the Regex engine, which Microsoft says brings throughput improvements of  between 3x and 6x.