Best Programming Master

The BigCode initiative’s aim is to build state-of-the-art large language learning models (LLMs) to build code in an open and responsible way. Code LLMs enable the completion and synthesis of code from other code and natural language descriptions, and enables users to work across a wide range of domains, tasks, and programming languages.  The initiative is led by ServiceNow Research, which does research to futureproof AI-powered experiences, and Hugging Face, a community and data platform that provides tools to enable users to build, train, and deploy ML models based on open-source code and technologies.  BigCode is inviting AI researchers to collaborate on a representative evaluation suite for code LLMs covering a diverse set of tasks and programming languages, responsible development and governance of data sets for code LLMs, and faster training and inference methods for LLMs. “The first goal of BigCode is to develop and release a data set large enough to train a state-of-the-art

Tel Aviv, Israel, September 29, 2022 — Ox Security , the end-to-end software supply chain security platform for DevSecOps, exited stealth today with $34M in funding led by Evolution Equity Partners, Team8, and M12, Microsoft’s venture fund, with participation from Rain Capital. OX was founded less than a year ago by Neatsun Ziv and Lior Arzi, two top Check Point executives. Its platform is already used by over 30 leading companies to secure their software supply chains, including Kaltura and Bloomreach. The rise in software supply chain attacks, like the SolarWinds hack, prompted last year’s executive order requiring vendors to provide a software bill of materials (SBOM). This software “ingredients list” can help security teams understand if a newly disclosed vulnerability impacts them. However, industry experts caution that it isn’t comprehensive enough to prevent attacks or address the challenges of securing today’s dynamic software supply chains. “The introduction of SBOM is an

Permissions framework company Permit.io has announced the release of Attribute Based Access Control (ABAC).  ABAC has low-code/no-code interfaces for building permissions into applications, which allows any team at a company to incorporate permissions, not just developers. According to the company, ABAC includes all elements required for enforcement, gating, auding, approval flows, impersonation, and automating API keys.  Permissions can be based on a number of different attributes, such as geo-location, subscription status, billing status, usage metrics, and relationship to the resource owner.  “When you first build an application, setting up permissions is more straightforward: you just have a single service and a few users, and what they can do is based on their role within the organization,” said Or Weis, CEO and co-founder of Permit.io. “This is what’s known as Role Based Access Control (RBAC). But as your application scales, Attribute Based Access Control (ABAC) is necessary

Infrastructure-as-Code (IaC) has revolutionized the management and provisioning of everything from local virtual machines to exotic AWS services. It is time for Monitoring-as-Code (MaC) to do the same in the application performance monitoring (APM) and synthetic monitoring fields — and the good news is that everyone stands to benefit. Provisioning monitoring checks by hand is slow, too slow when the checks need to keep up with an application that is evolving quickly. This stays true no matter which monitoring service or platform you are using. Another problem is with documentation. Who documents what the monitoring setup should look like, as a whole and in its parts? What is each check’s configuration? What about the alerting logic for when things catch on fire? It’s up to you to put that all down on paper to avoid the risks that come with having everything live in somebody’s head. Possibly the worst and often unseen issue, though, is that manual monitoring workflows do not fit in t

Enterprise automation company UiPath is previewing new features coming to its Business Automation Platform.  “The UiPath Business Automation Platform provides the foundation every enterprise needs to develop new apps and automate existing ones. Whether the desired business outcome is acceleration of profitable growth, cost savings, or improved employee and customer experiences, UiPath makes it easy to transform more processes into digital, automated workflows,” said Ted Kummert, executive vice president, products & engineering at UiPath. UiPath Studio Web is a browser-based automation development tool and it now includes capabilities to make it easier to create public-facing processes and apps for customer service and value chain use cases.  Continuous delivery updates include Automation Hub featuring ROI comparisons between estimated and actual benefits, Process Mining, and Assisted Task Mining that captures the common way a process is completed and the natural variations that

The security, performance, and reliability company, Cloudflare , today introduces Turnstile, an easy to use and private replacement for CAPTCHA (Completely Automated Public Turing test to tell Computers and Humans Apart). With this, any site can choose to replace CAPTCHA through an API, regardless of whether or not they are a customer of Cloudflare.  According to Cloudflare, this alternative to CAPTCHA is intended to solve the issues of poor user experience and privacy practices through a drop-in replacement for reCAPTCHA that works to preserve the users privacy.  “Cloudflare is taking one of the most hated pieces of Internet technology, and making it easier, more secure, and more private for everyone to use,” said Matthew Prince, co-founder and CEO of Cloudflare. “Similar to our 1.1.1.1 app that makes every user and the Internet safer, we’re excited to share Turnstile with developers of any size and anywhere, for an improved and more private end user experience.” Turnstile works

CloudBees acquired the ReleaseIQ DevOps Platform to expand the company’s DevSecOps capabilities and to empower customers with a low-code, end-to-end release orchestration and visibility solution.  The SaaS offering enables DevOps organizations to compose and analyze workflows, and also orchestrate a combination of CI/CD technologies including Jenkins without the need to migrate or replace.  “The decision to acquire ReleaseIQ was rooted in three core beliefs: choice, visibility and continuous value,” said Anuj Kapur, president and CEO at CloudBees. “First, businesses need to empower developers by providing a choice of tools versus forcing a toolset. Second, as DevSecOps matures, it is no longer acceptable to have a limited view of your software delivery ecosystem. And lastly, the future of business is rooted in the ability to continuously deliver innovation to the customers you serve.” The new capability enables teams to coordinate coherent, effective deployments and releases across

At today’s fifth annual Kong Summit 2022 conference, the cloud natuve API organization, Kong , unveiled several new performance, security, and extensibility capabilities across the entirety of its product portfolio. Among these updates are major new releases of Kong Gateway , Kong Konnect , Kong Mesh , Kong Insomnia , and Kong Ingress Controller, and multiple new projects from the Kong Incubator.  According to the company, it has also strengthened its partner ecosystem through deeper partnerships with companies such as Red Hat and AWS. “APIs are no longer the simple building blocks of yesterday; they’re becoming the smart neural network of today’s cloud,” said Augusto Marietti, CEO and co-founder of Kong Inc. “Organizations of the future are software-enabled, data-driven and secure from cyberattacks – and APIs are the common language to achieve all three. To accomplish this, businesses need an effective API-first strategy to build a ‘cloud nervous system.’ That’s where Kong c

Today, Intel kicked off its second annual Intel Innovation conference where it shared a number of announcements for new software, hardware, and services. In a keynote address, the company’s CEO Pat Gelsinger revealed a number of solutions to address challenges that developers face, such as vendor lock-in, access to the latest hardware, productivity, and security. Intel Developer Cloud now gives developers and partners early access to Intel technologies. This will allow developers to try out technologies from a few months to even a full year ahead of product availability.  The company also announced the Intel Geti computer vision platform that allows anyone to quickly develop AI models. It reduces the time, AI expertise, and cost of developing models, and provides a single interface for data upload, annotation, and model training and retraining.  Its existing product portfolio also got a few updates, such as a new generation of Intel Core desktop processors. The 13th Gen processor

American computer Pioneer, David Andrew Patterson, was a professor of computer science at the University of California. He is best known for his operating systems, central processing units, and programming languages. Personal Life and Education David Patterson was born on 16th November 1947 at Evergreen Park, Illinois, in the United States. From South High School in Torrance, he did graduation. He was the first person in his family who did graduation. Degrees awarded to him were Bachelor of Arts in Mathematics in 1969, Master in Computer Science (1970), and Ph.D. in 1976 from California University at Los Angeles. His thesis was the Verification of Microprograms. David married his childhood sweetheart, Linda, his high schoolmate. She is the founder of East Bay IMpRoV. They had two sons. David likes soccer, mountain biking, body surfing, and weight lifting in his spare time. He used to talk about his hobbies, his work, and his team in his lectures. He always convinced the students to

BellSoft , creator of progressive Java runtime for a complete Java experience, Liberica JDK, and an OpenJDK contributor, today announced the release of BellSoft Alpaquita Cloud Native Platform and Alpaquita Linux.   The company stated that these offerings are intended to address the growing demand for more efficient, secure, and supported Java software that performs well as well as reduces cloud computing costs. According to the company, the Alpaquita Cloud Native Platform is a compilation of a new Alpaquita Linux with other BellSoft tools that works to empower container-based software development. “Our mission at BellSoft is to deliver the most complete Java experience to developers and IT managers. We are passionately committed to the modernization of Java for a cloud-native world, and we believe the best way to achieve this is through open source collaboration, and it’s why we are one of the top contributors to OpenJDK,” said Alex Belokrylov, CEO and co-founder of BellSoft. “W

Cloudflare Calls was released to let developers build real-time audio/video apps.  It exposes a set of APIs to allow them to build things like a video conferencing app with a custom UI, an interactive conversation where moderators can invite select audience members on stage, or even private group workout apps.  It uses the peer-to-peer protocol WebRTC that enables two or more devices to talk to each other directly and without leaving the browser. The native implementation works especially well for one to one calls that have only two participants, and reliability issues such as video freezes and participants getting out of sync may arise when there are additional participants.  This is fixed through a selective forwarding unity (SFU) that connects users with each other in real-time apps by intelligently managing and routing video and audio data between participants. Apps that use this reduce the data capacity required from each user because they don’t have to send data to every other

The team at Google has recently announced that PerfKit Benchmarker (PKB), the open-source benchmarking tool used to measure and compare cloud offerings, now supports testing Dataflow jobs.  According to Google, Dataflow is a managed service for executing a wide variety of data processing patterns. Released in 2015, PKB provisions and cleans up resources in the cloud, selecting and executing benchmark tests, as well as collecting and publishing results for actionable reporting.  Performance benchmarking can help ensure that a pipeline is sized correctly and configured, in order to meet expected data volumes without hitting capacity limits or breaking cost budgets. In order to get started using PKB, see the public PKB docs . Users who prefer walkthrough tutorials, click here to see the beginner lab to review PKB setup, PKB command-line options, and how to visualize test results in Data Studio.  The repo includes example PKB config files, including dataflow_template.yaml which c

Organizations who are (justifiably) moving from REST APIs to more powerful and flexible GraphQL APIs need to be aware: would-be attackers are watching. Your GraphQL APIs are a prize that could pay out a treasure trove of sensitive data (or serve up other opportunities for bad actors to take advantage of your services for their monetary gain).  For these reasons, some attackers want nothing more than to locate and exploit your GraphQL APIs, and will deploy rather sophisticated methods to subtly poke and prod for revealing information. However, by learning to recognize the telltale signs of these methods, DevSecOps teams can flip the script on attackers so that the hunter becomes the hunted, and so that attacks are blocked as soon as they betray their presence. Attackers can be impressively resourceful at passively collecting valuable reconnaissance before they even risk sending packets at your application. Browsing your organization’s GitHub page and public repositories can yield ins

IBM has announced a new partnership with 20 Historically Black Colleges and Universities (HBCUs) to address the cybersecurity skills gap by setting up Cybersecurity Leadership Centers.  According to a recent study by IBM, organizations that don’t have sufficient security teams experience $550,000 more in costs related to data breaches compared to companies with sufficiently staffed security teams.  Faculty and students at these 20 schools will be able to access coursework, lectures, immersive training experiences, certifications, IBM Cloud-hosted software, and professional development resources, for free.  This includes access to IBM Security’s Command Center, where students can experience a simulated cyberattack to learn and practice response techniques. “Collaborations between academia and the private sector can help students prepare for success. That’s especially true for HBCUs because their mission is so vital,” said Justina Nixon-Saintil, vice president of IBM corporate soci

Microsoft announced new capabilities in its employee experience platform Viva to help empower employees in times of economic uncertainty. The new Viva capabilities will start rolling out to customers in early 2023.  “The data makes clear that hybrid work has created a growing disconnect between employees and leaders. They’re at odds about what constitutes productivity, how to maintain autonomy while ensuring accountability, the benefits of flexibility and the role of the office,” Microsoft stated in a blog post , that contains additional details on all of the new releases.  Among the new tools is Viva Pulse, a new app for managers and team leaders to seek regular and confidential feedback on their team’s experience by using smart templates and research-backed questions to pinpoint where to focus on.  Also, Viva Amplify is a new app that centralizes communications campaigns, offers writing guidance to improve message resonance, enables publishing across multiple channels and distrib

Project Liberty is an open-source project with a goal of creating a new “civic architecture for the digital world that returns the ownership and control of personal data to individuals, embeds ethical values into technology, and expands economic opportunities for web users and developers alike.” In other words, it aims to give users control over their data. The project maintainers envision a future in which all people benefit from their participation and contribution to the data economy, rather than just a few people benefiting.  According to the project’s website, in our current system, private companies control our social networks and data and also have control over innovation, and that control begins with the ownership of the social graph, which is the digital representation of online relationships.  The underlying infrastructure for Project Liberty is an open-source protocol called Decentralized Social Networking Protocol (DSNP). DSNP transforms the social graph from an asset c

ALISO VIEJO, Calif. – Sept. 22, 2022 – Quest Software , a global systems management, data protection and security software provider, today announced the public beta of SharePlex for PostgreSQL. SharePlex is the industry-leading database management and replication solution designed to help customers ensure high availability and facilitate the movement of data between platforms. Businesses are under increasing pressure to get more value from their data while simultaneously driving down costs. In addition, database administrators (DBAs) are trying to ensure database operations run smoothly while improving data resiliency through high availability (HA) and disaster recovery (DR) efforts. Businesses looking to replace mission-critical Oracle databases typically opt for PostgreSQL, due to the similarities and compatibility features provided by PostgreSQL. While the databases provide similar functionality, there are still significant challenges for the most business-critical applications,

To help developers move from learning to applying that knowledge to make their code more secure, Secure Code Warrior today launched Coding Labs, to enable real-time coding in an in-browser IDE. “We found that 40% of developers don’t believe they’re receiving enough hands-on training from their current tools and resources. We’ve set out to fundamentally change that,” said Pieter Danhieux, co-founder and CEO, Secure Code Warrior. “Coding Labs enables developers to learn in an environment that simulates the way they work and in turn, will see them more confidently write secure code. This is the future of vulnerability mitigation.” With security moving into the realm of development in many organizations, developers often are not given enough training to know how to identify and eliminate vulnerabilities. Secure Code Warrior is taking training to the next level, replacing virtualized environments with writing code in familiar IDEs. According to the company, the Coding Labs platform

Sentiment analysis is considered one of the most popular strategies businesses use to identify clients’ sentiments about their products or service. But what is sentiment analysis? For starters, sentiment analysis, otherwise known as opinion mining, is the technique of scanning words spoken or written by a person to analyze what emotions or sentiments they’re trying to express. The data gathered from the analysis can help businesses have a better overview and understanding of their customers’ opinions, whether they’re positive, negative, or neutral. You may use sentiment analysis to scan and analyze direct communications from emails, phone calls, chatbots, verbal conversations, and other communication channels. You can also use this to analyze written comments made by your customers on your blog posts, news articles, social media, online forums, and other online review sites. Businesses in the customer-facing industry (e.g., telecom, retail, finance) are the ones who heavily use sent

For all the talk of server and network security, the fact remains that applications are among the main attack vectors leveraged by bad actors. This is so because development teams are focused on delivering new functionality and features as quickly as possible. They are not usually trained in security practices, and often have little desire to do so. Meanwhile, that can leave modern applications – which are more likely to be assembled from open-source and third-party components, and tied together with APIs and other connectors – vulnerable to intrusion. Development today is driven by short-term benefits, but faces long-term risk, according to Jonathan Knudsen, the head of global research in the Synopsys Software Integrity Group’s Cybersecurity Research Center. “You’re trying to make something that works as fast as you can, and that means that you’re not necessarily thinking about how somebody could misuse the thing” down the road, Knudsen said. “The short-term benefit is you build so

NVIDIA CEO Jensen Huang took the stage for a keynote at the company’s GTC conference and gave some exciting updates regarding new technologies from the company. He announced the GeForce RTX 40 Series GPUs, which are powered by the company’s new Ada Lovelace architecture. Advancements in Ada include a new Streaming Multiprocessor, an RT core with twice the ray-triangle intersection throughput, a new Tensor Core, 1.4 petaflops of Tensor processor power, and the latest version of NVIDIA DLSS technology.  Huang called this launch a “quantum leap” forward for creating fully simulated worlds.  He also announced that the next-gen Hopper GPU is in full production and will be ready to ship in a few weeks. Grace Hopper combines the Arm-based Grace data center CPU and Hopper GPUs. It will significantly increase fast-memory capacity and be ideal for recommender systems. Systems with Grace Hopper will be available in the beginning of 2023. Huang went on to announce DRIVE Thor, which is a proc

Cockroach Labs announced the general availability of its serverless database that can help teams accelerate their software design cycles. “We envision a world where your data-intensive applications effortlessly and securely serve millions of customers anywhere on the planet, with the exact right capacity for that moment – all enabled by a simple SQL API in the cloud,” said Nate Stewart, chief product officer at Cockroach Labs. “We’re a step closer to that vision now that CockroachDB Serverless is generally available. We’ve also released a new migration toolset and formed critical partnerships to help customers with existing applications take full advantage of CockroachDB.” Users of the serverless database can save time by automating management and maintenance. It also offers scalability and high availability, and can automatically handle spikes in demand without bottlenecks. Other capabilities include instant start, a CLI, PostgreSQL ORMs and drivers, and no-downtime schema changes.

Development company Sopheon has announced the launch of three new SaaS products for innovation management that span the ideas, product, and project spectrum. Bundled together as Acclaim, the offerings include Acclaim Ideas, Acclaim Projects, and Acclaim Products.  According to Sopheon, Acclaim gives developers in charge of idea generation, product management, or project management more control of the process and the ability to make data-driven decisions.  Acclaim Ideas allows users to find, align, test the best ideas in order to advance those options and meet company goals.  Acclaim Projects offers an integrated change management workflow, real-time project health scores, and detailed resource management information. Acclaim Products allows users to track goals, progress, and day-to-day work. This provides product managers with the information they need to keep stakeholders informed, monitor product performance, and plan future products.  “Innovation is indispensable to an organ

Fivetran announced the Metadata API for creating data governance automations and data quality workflows. Fivetran’s Metadata API can track data in-flight as it moves through Fivetran-managed pipelines. “Every enterprise knows it must be data-driven, but traditional data governance has been a barrier with manual processes and reactive enforcement of policies. That’s not a scalable approach, especially as data infrastructure grows to thousands of pipelines,” said Fraser Harris, the vice president of product at Fivetran. “With Metadata API, our customers get out-of-the box data governance automations and data quality workflows so they can proactively identify and take action on governance issues before they become a problem. Our automated in-flight approach enables data access at scale without increasing risk to the business.” With the API, data analysts will be able to see where their data is coming from and can then run impact analyses on it. Meanwhile, data stewards will know that al

The latest version of Java has been released by Oracle. Java 19 includes a number of updates related to performance, stability, and security.  The most significant improvements to the language itself are the ability to nest record patterns and pattern matching for switch expressions, both of which are currently in preview. The record patterns update extends pattern matching and allows for more composable data queries. Pattern matching for switch expressions allows an expression to be tested against multiple patterns. New library tool updates include an API for invoking foreign functions and safely accessing foreign memory, which enables Java programs to call native libraries and process native data using a Java development model. A new Vector API allows Java programs to express vector computations that compile at runtime to vector instructions.  Project Loom, which is an attempt to provide a lightweight concurrency model for Java, has also resulted in a few new features.

The release today of Android Studio Dolphin is focused on Jetpack Compose, the toolkit for native UI; Wear OS, the operating system for wearable devices; and on development productivity. The Jetpack Compose update includes a new Compose UI counter within the Layout Inspector to monitor when the UI recomposes during the debugging process. The release also includes new tooling for previewing multiple screens and animations, according to the team’s announcement . The stable Android Studio Dolphin (2021.3.1) release also includes features that help developers get their applications, tiles and watch faces prepped for Wear OS 3 devices. Among them are an updated emulator, pairing assistant and new deployment flows for launch tiles and watch faces. Finally, on the productivity side, the team enabled Gradle Managed Virtual Devices in Android Studio to have a central place to manage test devices. To try out the Android Studio Dolphin release, download it here. The post Android Studio Do