Quanta Magazine: Crucial Computer Program for Particle Physics at Risk of Obsolescence

Quanta Magazine: Crucial Computer Program for Particle Physics at Risk of Obsolescence. “Developed by the Dutch particle physicist Jos Vermaseren, FORM is a key part of the infrastructure of particle physics, necessary for the hardest calculations. However, as with surprisingly many essential pieces of digital infrastructure, FORM’s maintenance rests largely on one person: Vermaseren himself. And at 73, Vermaseren has begun to step back from FORM development. Due to the incentive structure of academia, which prizes published papers, not software tools, no successor has emerged. If the situation does not change, particle physics may be forced to slow down dramatically.”

TechCrunch: Heroku announces plans to eliminate free plans, blaming ‘fraud and abuse’

TechCrunch: Heroku announces plans to eliminate free plans, blaming ‘fraud and abuse’. “After offering them for over a decade, Heroku today announced that it will eliminate all of its free services — pushing users to paid plans. Starting November 28, the Salesforce-owned cloud platform as a service will stop providing free product plans and shut down free data services and soon (on October 26) will begin deleting inactive accounts and associated storage for accounts that have been inactive for over a year.”

The Verge: Google opens the door for Android apps that work across all kinds of devices

The Verge: Google opens the door for Android apps that work across all kinds of devices. “Google’s trying to make it easier for developers to create Android apps that connect in some way across a range of devices. In a blog post, Google explains that it’s launching a new cross-device software development kit (SDK) that contains the tools developers need to make their apps play nice across Android devices, and, eventually non-Android phones, tablets, TVs, cars, and more.”

TechCrunch: Mozilla launches paid subscriptions to its Developer Network

TechCrunch: Mozilla launches paid subscriptions to its Developer Network. “Mozilla today launched MDN Plus, a paid subscription product on top of the existing (and recently re-designed) Mozilla Developer Network (MDN), one of the web’s most popular destinations for finding documentation and code samples related to web technologies like CSS, HTML and JavaScript. The new subscription offering will introduce features like notifications, collections (think lists of articles you want to save) and MDN offline for when you want to access MDN when you’re not online.”

UConn Today: App Supporting Archival Research Continues Development with Community Partnerships

UConn Today: App Supporting Archival Research Continues Development with Community Partnerships. “The Andrew W. Mellon Foundation has awarded $805,000 to the UConn team behind Sourcery, a software designed to simplify archival document requests. This new funding will allow the team to develop Sourcery with input from partners at diverse collecting institutions. The team will work with the Hartford Public Library, Northeastern University, UConn Archives and Special Collections, and the Folger Shakespeare Library.”

CSO: GitHub makes Advisory Database public to improve software supply chain security

CSO: GitHub makes Advisory Database public to improve software supply chain security. “Software development platform GitHub has made its Advisory Database open to community contributions allowing anyone to contribute insight and intelligence on security vulnerabilities to help improve software supply chain security. The full contents of the database will also now be published to a new, freely accessible public repository under Creative Commons license. Experts say data sharing of this kind is key to improving the security of software supply chains and addressing software-related risks.”

SecurityWeek: Thousands of Mobile Apps Expose Data via Misconfigured Cloud Containers

SecurityWeek: Thousands of Mobile Apps Expose Data via Misconfigured Cloud Containers. “Thousands of mobile applications expose user data through insecurely implemented cloud containers, according to a new report from security vendor Zimperium. The issue, the company notes, is rooted in the fact that many developers tend to overlook the security of cloud containers during the development process.”

BetaNews: New Chrome extension provides security check on open source code

BetaNews: New Chrome extension provides security check on open source code. “Developers frequently make use of open source components in order to speed up projects and save them having to reinvent tasks. But this can lead to the introduction of hidden security risks. Now though open source marketplace xs:code is launching a new, free Chrome extension, xs:code Insights, which provides users with intuitive, in-depth analytics on open source repositories, including repository score, security analysis, maintenance and activity status, reviews, ratings and more.”

VentureBeat: GitHub launches Codespaces for browser-based coding

VentureBeat: GitHub launches Codespaces for browser-based coding. “The biggest facet of today’s news is a new product called GitHub Codespaces, which is designed to make it easier for developers to join a project, launch a developer environment, and start coding with minimal configuration — all from a browser. Available in ‘limited public beta’ from this week, Codespaces is a cloud-hosted development environment with all the GitHub features, and it can be set up to load a developer’s code and dependencies, extensions, and dotfiles, and includes a built-in debugger.”