CBR: Flurry of New Tools Aims to Improve Open Source Software Security . “With the projected revenue of open source services set to double in the next few years, coupled with the emergence of open source software registries, such as NPM (Node Package Manager) and Nuget, developers are downloading packages from increasingly variegated sources, sometimes with a host of security vulnerabilities. Yet the developer community is taking positive steps to solve this issue.”
TechCrunch: Exploit puts popular web and mobile apps at risk. “A new exploit could allow users to bypass security checks in Electron, a popular cross-platform development framework. The exploit, posted by Trustwave, has been patched and developers should update their apps as soon as possible. The exploit could allow cross site scripting in some apps by turning on nodeIntegration, a method that allows the app to not only connect to its own modules but also Node.js modules.”
The Register: Mulled EU copyright shakeup will turn us into robo-censors – GitHub. “Code-repository GitHub has raised the alarm about a pending European copyright proposal could force it to implement automated filtering systems – referred to by detractors as ‘censorship machines’ – that would hinder developers working with free and open source software.”
TechCrunch: AWS launches Amazon Sumerian to build AR, VR and 3D apps quickly. “We’d heard months ago that Amazon would be using its Re:Invent AWS event to roll out some a new service related to building in mixed reality — augmented reality and virtual reality. And on the eve of the conference kicking off, it’s done just that. Today the company announced Amazon Sumerian, a new platform for developers to build and host VR, AR and 3D apps quickly and with minimal coding, for smartphones and tablets, head-based displays, digital signage and web browsers.”
Small Business Trends: Bots Are Taking Over: Fiverr Adds Subcategory Dedicated to Chatbots Development Gigs. “The attack of the bots continues as they spread their reach everywhere from data gathering, to analytics, web indexing and more, automating tasks across the internet. And now it’s easier than ever to create your own bot. Freelance marketplace Fiverr has a new subcategory dedicated to chatbots development services.” Adding this is a data point about the proliferation of chatbots, not because I think everyone should rush to Fiverr.
TechCrunch: Deep Algo offers simple code visualization for people who don’t know how to code. “The system works by presenting a sort form that helps the user determine precisely what they want out of a piece of code. From there, the system breaks things down into more of a flow chart to help give a better understanding of the actions created by the code. The idea to get employees in other aspects of business involved in the process, to add their unique points of views to the system.”
TechCrunch: Google now lets hardware developers tinker with its Assistant. “Google has long said that it wants to open up its Assistant to a broader ecosystem of hardware companies and developers. Today it’s taking a major step in this direction with the launch of the Google Assistant SDK, which allows developers to build the Assistant’s smarts into their own hardware prototypes. Those could be smart mirrors, Google Home-like appliances or a teetotaler’s favorite robot bartender — the world is your oyster.”