Latest News

Better app security cannot start with tools

There is a common trope in science fiction movies where robots start to think for themselves and launch a war with humans for control of Earth.

These storylines come from a familiar place. We continue to see robots, machines, and technological tools replace many traditional jobs...

OpenWallet aims to support Web3 wallet development

The Linux Foundation has announced OpenWallet, an initiative to support the development of Web3 digital wallets.

“We are convinced that digital wallets will play a critical role for digital societies,” said Jim Zemllin, Executive Director of the Linux Foundation.

“Open...

Building a new execution platform for Redis clients

Over the last decade, Redis has become a popular, widely used in-memory cache. Unlike most distributed caches, it offers a compelling set of built-in data structures that enhance its capabilities beyond just storing serialized objects.

Created in 2009 as a single-server store to...

Apple launches GymKit Certification Assistant app

Apple has launched a GymKit Certification Assistant app that should help with streamlining approvals.

GymKit launched in 2017 and enables the Apple Watch to pair with supported gym equipment for quick and accurate syncing of information.

The rollout of GymKit has been steady...

Google expands third-party billing support to more countries

Android developers in more countries now have the option to offer third-party billing options.

As spotted by 9to5Google, Google quietly expanded its ‘User Choice Billing’ pilot which allows third-party billing options in non-gaming apps.

Registered developers in the...

10 best practices to get the most out of test automation

Have you tried eating nuts in the shell? If yes, I guess it was not a very successful experience. Although everyone knows that nuts are very healthy and nutritious. Paradoxically, many companies implement test automation without looking at the nuances. Everyone knows that it is good for...

PyPI maintainers warn of ongoing phishing attack

The maintainers of the Python Package Index (PyPI) have warned of an ongoing phishing attack targeting users.

“Today we received reports of a phishing campaign targeting PyPI users. This is the first known phishing attack against PyPI,” wrote the maintainers in a...

InAppBrowser tool reveals hidden JavaScript injections

A tool created by developer Felix Krause reveals hidden JavaScript injections through in-app browsers.

In-app browsers offer a convenient way for developers to let users browse specific websites without leaving their apps. However, they can be used to invade users’...

Unity rejects AppLovin’s bumper takeover bid

Game development platform Unity has rejected a large takeover bid from mobile technology firm AppLovin.

AppLovin offered to acquire Unity in an all-stock deal worth $17.5 billion. However, the offer came with the stipulation that Unity drops its own bid for...

PyPI package installs cryptominer on Linux systems

A malicious PyPI package was used to install a Monero cryptominer on Linux systems.

The package in question, secretslib, was pushed to the official third-party software repo for Python on 6th August 2022. The package was described as “secrets matching and verification made...

GitHub now sends Dependabot alerts for vulnerable Actions

GitHub has announced that it will begin sending Dependabot alerts when it detects vulnerable GitHub Actions.

GitHub Actions makes it easy for developers to automate their workflows. Dependabot, meanwhile, automatically updates dependencies to keep your projects secure.

When...

GitLab pivots on decision to wipe dormant projects

GitLab appears to have pivoted on a decision to automatically wipe dormant projects.

On Thursday, The Register reported that GitLab planned to delete projects that have been inactive for a year and are owned by free users. The policy was due to come into effect in late...

Introducing OpenTDF: Open source, accessible security for developers

At Virtru, we believe that the ability to securely share data is essential — and that privacy is a human right that must be protected. It’s a mission we have stuck by since we started in 2011, and sees us supporting over 7,000 organisations worldwide to protect their most valuable asset,...

Apple opens registrations for next App Store Sessions

Apple developers wanting to optimise their listing and marketing strategies can now register for the next round of App Store Sessions.

The sessions connect developers with Apple’s experts to learn more about all things App Store, including:

Improving your listing...

Snyk launches the ‘first developer-centric cloud security solution

A security camera surrounded by clouds.

Snyk, a specialist in developer security, has unveiled Snyk Cloud, announcing the launch of the industry's first comprehensive Cloud Security Solution designed by and for developers.

This latest development was made possible by the acquisition of Fugue earlier this year. Thoughtfully...

AG Grid and TanStack Table join forces as open source partners

Leading industry players AG Grid and TanStack Table, the two main datagrid and table providers, have united as open-source partners to unify their ecosystems and educate users about how and when to choose between their different approaches.

AG Grid and TanStack Table operate within...

Web3 projects lost over $2B to hacks in H1 2022

A report from CertiK finds that web3 projects lost over $2 billion to hacks in H1 2022—more than all of 2021 combined.

“2022 is already the most expensive year for web3 by far. From these numbers, 2022 is forecast to see a 223% increase in the funds lost to attacks when compared...

SFC urges developers to quit GitHub

The SFC (Software Freedom Conservancy) has quit GitHub and urges other developers to follow.

SFC is a non-profit that aims to provide a home and services to Free, Libre, and Open Source Software (FLOSS) projects.

On Thursday, the SFC posted a blog post criticising the...

ShiftLeft: Just 3% of app vulnerabilities are attackable

ShiftLeft, an innovator in automated application security testing, has released its second annual AppSec Progress Report documenting critical trends in application security and how organizations are shifting security left to deal with the ever-rising volume of attacks and disclosed...

SmartBear launches all-in-one web browser and mobile app testing

A brown bear sitting on grass.

SmartBear, a provider of software development and quality tools, has made web testing on BitBar available.

The company has added web browser testing capabilities into its next-gen mobile app testing platform, BitBar, for the most reliable and streamlined cloud-based testing available...

Snowflake boosts native python support and data access

A green tree python.

Snowflake, the Data Cloud company, has unveiled new enhancements that improve programmability for data scientists, data engineers, and application developers

The company announced the update this week at its annual user conference, Snowflake Summit 2022, in Las...

Project Moorcraft: Xbox will pay game developers to publish demos

Xbox has unveiled Project Moorcraft, an initiative to boost the demos available on Game Pass while helping developers to earn some bucks.

This month is when game developers and fans usually flock to the E3 Expo to see the latest game reveals and platform updates and get their hands on...

Xcode Cloud is now available to all developers

Apple has announced that Xcode Cloud is now available to all developers.

Xcode Cloud was first announced during WWDC 2021. Over the past year, it’s gradually been rolling out in beta to lucky developers.

A year (and a WWDC) later, Xcode Cloud is leaving...