serverless Confluent touts serverless Apache Flink, AI ambitions at "Current" Adrian Bridgwater was at Confluent's "Current" event in San Jose. He reports back on serverless Apache Flink services and a lot of AI ambitions around data streaming.
Members only Hashicorp HashiCorp’s “poison pill” shift away from open source triggers call for Terraform foundation Now over 300 companies and individuals are calling for HashiCorp to reverse its decision or see Terraform forked and the community decamp...
Cloud Citi CTO spearheads new pan-industry ‘Common Cloud Controls’ project at FINOS Citi, Goldman, Morgan Stanley, LSEG, Natwest Group, and RBC are all participating amid concerns at the opacity of public cloud security and resilience tests and controls.
open source AI, open source and data - the shape of things to come "In the end, I think we will get something like Wikipedia in the AI space..."
machine learning With $1.3 billion MosaicML acquisition, Databricks sets itself up for open source generative AI fight Databricks has agreed the deal just weeks after releasing Dolly 2.0, a 12 billion parameter open source language model, as a battle begins for dominance of open source generative AI workflows and platforms.
cybersecurity There’s yet another CVSS 10, sandbox escape vulnerability in this widely used software library 23 million downloads last month. Four CVSS 10 vulnerabilities reported within weeks. Public exploits shared...
open source Featured 235.7 billion downloads; 2 staff on call. PyPI briefly shuts up shop amid burnout, malice An uptick in malicious new projects being created on the Python Package Index (PyPI) repository forced it to shut down new user registrations over the weekend in a worrying sign for the open source project. PyPI is a repository of open-source Python packages supplied by the worldwide community of Python
Featured A technology downturn and mass layoffs are having competing effects on FOSS Fewer funded roles, growing Understanding user behaviour has never been more important.
Enterprise IT Ubuntu wants your CIO to love a Lunar Lobster Canonical comes gunning for Windows, with a little help from Microsoft...
Featured Featured Introducing 6 new Top Level open source ASF projects The Apache Software Foundation (ASF) has graduated six new open source software projects to “Top Level” status in Q1 of 2023. (Getting Top-Level Project status is essentially a vote of confidence in a project’s community and product governance.) Perhaps interestingly to some, more than half (four of the six)
AI Pssssst, CTOs: Free, open source ChatGPT alternatives are landing A complete RLHF pipeline that includes supervised data collection, supervised and reinforcement learning fine-tuning
Enterprise IT LinkedIn slashes data processing time 94% by unifying batch and stream jobs with Apache Beam Data "backfilling" jobs cut from seven hours to 25 minutes
Cloud What IS this new open source S3 file client from Amazon? Amazon has open-sourced a new file client for S3 called Mountpoint for Amazon S3 that makes it “easy” for Linux-based applications to connect directly to Amazon S3 buckets and access objects using file APIs – not something that has always been easy or indeed possible for Linux-based large-scale analytics applications. Mountpoint
Enterprise IT Deutsche Bank's Peter Thomas: Execs recognising value of OSS ‘mutualisation’ "Take this Waltz..."
Enterprise IT Bloomberg, Man Group team up to develop open source "ArcticDB" database "Build it or buy it?" That's been answered here...
Financial Services The Big Interview: How Goldman Sachs built a cloud for financial data Lots of modular serverless AWS, lots of open source... We sat down with the team.
Enterprise IT This JavaScript library is EVERYWHERE. Its maintainer is broke Denis Pushkarev may make core-js closed source...
Cybersecurity 22,600+ emails = 599 vulnerabilities. Security disclosure triage is HARD Security researchers regularly chafe at the deafening silence when they report a critical vulnerability in software: White Hats simply wanting to help organisations fix their cybersecurity all too often still find themselves being ignored – or worse, threatened with legal action when trying to help publicly exposed organisations that have not
Enterprise IT Ubuntu Pro is GA: 10 years' support for OS, optional support for 23k packages Welcome stability for users and a canny move by Canonical
Enterprise IT As CIO budgets tighten, Apache Superset looks like a Big Data winner Free data exploration and visualisation tool continues to gain traction
Cybersecurity Peach and OSV-Scanner give fresh, free, food for thought on security Two new cybersecurity tools “OSV-Scanner” and “Peach” that landed this week deserve attention – whether you are a CISO, Blue Team, or just trying to tighten up your application development or cloud practices. OSV-Scanner was released under an Apache 2.0 licence by Google. Peach is an open framework from Wiz
Cybersecurity Log4J at 1: A third of downloads still vulnerable to RCE A year after a critical vulnerability in a ubiquitous piece of open source software, Log4J, set off what The Stack described at the time as an “internet cluster bomb”, nearly 40% of downloads of the popular open source java logging library are still of the vulnerable version – despite the high
Featured Microsoft's CTO touts S2C2F: IT leaders, pay heed to this one A highly practical framework to boost the security of open source consumption
Featured Linux Foundation launches open source telco project Sylva to provide solution to "edge/cloud continuum" challenges.