GitHub Copilot will enable developers to code using their voice

A new GitHub Copilot feature will enable developers to code using their voice.

Copilot was introduced last year and uses AI to help speed up mundane coding tasks by suggesting how to complete lines.

Behind the Copilot feature is an AI model developed by OpenAI called Codex. OpenAI claims that Codex has a broad knowledge of how people use code and is “significantly more capable than GPT-3” in generating code.

Microsoft-owned GitHub announced at its annual...

GitLab pivots on decision to wipe dormant projects

GitLab appears to have pivoted on a decision to automatically wipe dormant projects.

On Thursday, The Register reported that GitLab planned to delete projects that have been inactive for a year and are owned by free users. The policy was due to come into effect in late September.

GitLab is said to have estimated the policy would save it up to $1 million a year. However, following the report, GitLab’s technically unannounced policy received significant...

These programming languages were most in-demand in 2021

Coding Dojo has released its annual review of the programming language skills most sought after from employers.

For its research, Coding Dojo scours jobs listing site Indeed. The company looks at what languages appear most in job descriptions and compares their prevalence with previous years to identify trends that could give you an advantage.

Python retained its lead in 2021 as the language which cropped up in the most (~70,500) job descriptions. Rounding out the top...

GitHub’s Mermaid support enables developers to quickly create diagrams

GitHub has added native support for Mermaid—enabling developers to quickly generate diagrams.

According to GitHub, both open-source and enterprise developers see a productivity boost of around 50 percent when provided with detailed documentation. Rich, visual formats often help to better present information.

Last month, GitHub added support for .svg files to comments in issues, PRs, discussions, and Markdown files like READMEs. However, GitHub says that it recognises...

State of Software Security v12: Don’t become complacent, but we’ve come a long way

Veracode’s latest State of Software Security report highlights that applications are, on average, more secure than ever.

Getting the negatives out the way first, the report warns about the devastating “domino effect” that one vulnerability can have on software across the globe.

One clear example of this in action was the SolarWinds attack in which hackers inserted malicious code into the company’s Orion software. Every company and organisation using Orion was...

Rust vulnerability enables attackers to delete files and directories

Maintainers of the Rust programming language have warned of a critical vulnerability that enables attackers to delete files and directories.

In a security advisory, the Rust Security Response Working Group wrote:

“The Rust Security Response WG was notified that the std::fs::remove_dir_all standard library function is vulnerable to a race condition enabling symlink following (CWE-363).

An attacker could use this security issue to trick a privileged program into...

Software supply chain attacks increased over 300% in 2021

We all knew there was an increase in software supply chain attacks in 2021, but a new study has quantified just how bad things got.

Argon Security – recently acquired by Aqua Security – published the latest edition of its annual Software Supply Chain Security Review this week.

The headline stat from Argon’s report that software supply chain attacks grew by more than 300 percent in 2021 compared to 2020.

Eran Orzel, Senior Director of Argon Customer...

Open-source developer corrupted his own popular libraries

An open-source developer intentionally corrupted his own libraries that have been used by thousands of projects.

Users of open-source projects that depend on the ‘colors’ and ‘faker’ libraries by Marak Squires were confronted with their applications indefinitely printing gibberish messages on their console—rendering them useless.

The colors library receives over 20 million weekly downloads on npm alone and has almost 19,000 projects depending on it. The faker...

Déjà vu: Python wins TIOBE Programming Language of the Year

According to TIOBE, Python was the programming language that stole developers’ hearts in 2021.

It’s the second time in a row that Python has been crowned the TIOBE Programming Language of the Year.

Last month, TIOBE Software CEO Paul Jansen floated the possibility that C# may take the crown for the first time after posting the highest rating growth (+2.21%) in the top 20 of the TIOBE Index in December.

"It is interesting to note that C# has never won the...

Is good security the answer to team happiness?

Nowadays, most businesses aren’t naive enough to imagine that they can manage without the most basic cybersecurity protections. However, they’re more likely to invest in such provisions after experiencing a direct threat or hearing a closely related business has suffered a breach.

This reactive approach to cybersecurity is costly — impacting not just the bottom line, but employee happiness and even customer trust. In reality, however, even a small investment in security...