TECH |
Engadget Japanese |
2019年1月11日、車載用ワイヤレス充電器「PowerWave 7.5 Car Mount」が発売されました:今日は何の日? |
https://japanese.engadget.com/today-203003585.html
|
powerwavecarmount |
2022-01-10 20:30:03 |
AWS |
AWS Big Data Blog |
Define error handling for Amazon Redshift Spectrum data |
https://aws.amazon.com/blogs/big-data/define-error-handling-for-amazon-redshift-spectrum-data/
|
Define error handling for Amazon Redshift Spectrum dataAmazon Redshift is a fully managed petabyte scale data warehouse service in the cloud Amazon Redshift Spectrum allows you to query open format data directly from the Amazon Simple Storage Service Amazon S data lake without having to load the data into Amazon Redshift tables With Redshift Spectrum you can query open file formats such as … |
2022-01-10 20:16:36 |
AWS |
AWS Database Blog |
Get started with Babelfish for Aurora PostgreSQL |
https://aws.amazon.com/blogs/database/get-started-with-babelfish-for-aurora-postgresql/
|
Get started with Babelfish for Aurora PostgreSQLEnterprises that want to migrate from a SQL Server database engine to Amazon Aurora PostgreSQL Compatible Edition typically convert the database schema from one database to another then take data from the first database and load it into the target database This process tends to be error prone and requires quite a bit of work after the … |
2022-01-10 20:32:26 |
AWS |
AWS |
AWS for Industrial - Smart Products & Machines | Amazon Web Services |
https://www.youtube.com/watch?v=r7kDsKOpwEs
|
AWS for Industrial Smart Products amp Machines Amazon Web ServicesSee how AWS can help you make your products and machines smarter for a better customer experience and new revenue streams Learn more about smart products and machines Subscribe More AWS videos More AWS events videos ABOUT AWSAmazon Web Services AWS is the world s most comprehensive and broadly adopted cloud platform offering over fully featured services from data centers globally Millions of customers ーincluding the fastest growing startups largest enterprises and leading government agencies ーare using AWS to lower costs become more agile and innovate faster AWS AmazonWebServices CloudComputing |
2022-01-10 20:18:05 |
AWS |
AWS |
AWS for Industrial - Production and Asset Optimization | Amazon Web Services |
https://www.youtube.com/watch?v=q4pvFdF1q2w
|
AWS for Industrial Production and Asset Optimization Amazon Web ServicesWith AWS and our network of leading industrial partners see how you can transform your industrial operations with the most comprehensive and advanced set of cloud solutions available today while taking advantage of security designed for the most sensitive industries Learn more about production asset optimization Subscribe More AWS videos More AWS events videos ABOUT AWSAmazon Web Services AWS is the world s most comprehensive and broadly adopted cloud platform offering over fully featured services from data centers globally Millions of customers ーincluding the fastest growing startups largest enterprises and leading government agencies ーare using AWS to lower costs become more agile and innovate faster AWS AmazonWebServices CloudComputing |
2022-01-10 20:17:41 |
AWS |
AWS |
AWS for Industrial - Product & Production Design | Amazon Web Services |
https://www.youtube.com/watch?v=YFkyjnW9aQ0
|
AWS for Industrial Product amp Production Design Amazon Web ServicesSee how AWS can help you focus on your best product and production design not on the infrastructure needed to make it happen Learn more about product design in the cloud Subscribe More AWS videos More AWS events videos ABOUT AWSAmazon Web Services AWS is the world s most comprehensive and broadly adopted cloud platform offering over fully featured services from data centers globally Millions of customers ーincluding the fastest growing startups largest enterprises and leading government agencies ーare using AWS to lower costs become more agile and innovate faster AWS AmazonWebServices CloudComputing |
2022-01-10 20:17:18 |
Program |
[全てのタグ]の新着質問一覧|teratail(テラテイル) |
pythonで配列の内容を行列に移したい。 |
https://teratail.com/questions/377555?rss=all
|
pnbspysnbspnbspzsnbspnbsp |
2022-01-11 05:43:07 |
Program |
[全てのタグ]の新着質問一覧|teratail(テラテイル) |
シーケンスに入力するためのメソッドについて |
https://teratail.com/questions/377554?rss=all
|
シーケンスに入力するためのメソッドについて深層学習の学習をしていた疑問として、データを入力する方法が複数あることです。 |
2022-01-11 05:21:37 |
海外TECH |
Ars Technica |
Microsoft posts its own teardown and repair video for the Surface Laptop SE |
https://arstechnica.com/?p=1824855
|
efforts |
2022-01-10 20:30:32 |
海外TECH |
MakeUseOf |
9 Free Project Proposal Templates That Grab Attention |
https://www.makeuseof.com/free-project-proposal-templates/
|
proposals |
2022-01-10 20:46:42 |
海外TECH |
DEV Community |
Chat App |
https://dev.to/erenkarakaya01/chat-app-18b9
|
Chat App Instructionsnpm inpm run dev Overview of My SubmissionHi I m Eren and I study at Eskisehir Technical University as a Computer Science grade student I made a realtime chat app called SprinkaiChat with MERN Stack I made this site to improve my coding skills I used MongoDB technologies and MongoDB Atlas To use my app just create an acount log in join a room and chat with other people Submission Category Choose Your Own Adventure Link to Code Github Website Additional Resources Info |
2022-01-10 20:38:55 |
海外TECH |
DEV Community |
DevSecOps and Shift Left Security: A Guide |
https://dev.to/softwaredotcom/devsecops-and-shift-left-security-a-guide-3dfh
|
DevSecOps and Shift Left Security A Guide What is DevSecOps methodology DevSecOpsーshort for development security and operationsーadds security first thinking into every phase of the software development pipeline helping engineering teams deliver secure software with speed and at scale Previously development teams performed security testing after the development cycle meaning they handed work over to separate QA and security teams for final inspection As software development teams adopted DevOps practices particularly continuous integration and deployment security reviews created costly bottlenecks by backloading important work at the final stages of the delivery pipelines Teams only uncovered issues after features had been built meaning they were costlier and more difficult to debug and fix DevSecOps integrates security into every stage of the development pipeline providing teams with tools and resources at each phase to create safe and secure code As a result DevSecOps helps teams address security issues earlier and faster without slowing their organization s software delivery By adopting principles of DevSecOps teams can benefit from Faster and more efficient software delivery More secure codebase and proactive security Continuous feedback and faster security vulnerability patching Highly automated standardized and predictable security practices How does shift left security fit into DevSecOps Before DevSecOps engineering teams structured their development cycles to be highly sequential which meant completing all testing and security reviews after the planning implementation and integration phases Once changes reach the end of the development cycle they are often more complex to debug forcing teams to disentangle several factors all at once such as performance integration and more As a result uncovering significant issues late in the cycle requires large amounts of rework for development teams After receiving a long list of complex defects from testers developers need to design and apply multiple fixes all at once and across thousands of lines of code Security testing late in the development life cycle creates especially painful bottlenecks throughout the delivery pipeline Insufficient resource planning By failing to include testers early in the planning phases teams may not properly allocate resources later in the development cycle Less time and more debt Cramming testing at the end of the cycle increases the likelihood of teams skipping testing altogether increasing technical debt and deferring problems to later versions Wasted development time Engineers may continue to work on defective features or changes before receiving any feedback leading to wasted energy and effort Complex debugging Systems become more complex later in the development cycle making testing more challenging and burdensome Shifting left means performing testing earlier in the development cycle In other words testing is moved to the left on the project timeline Importantly the goal is not to shift security to the left as a discrete phase instead teams should integrate security into every phase of developmentーdesign implementation verification and so on Many of these improvements can be introduced by automating security tests particularly as a part of the continuous integration and deployment pipeline According to W Edwards Deming an American engineer famous for his key principles on transforming business effectiveness engineering teams should design more secure products from the moment they start building Cease dependence on inspection to achieve quality Eliminate the need for inspection on a mass basis by building quality into the product in the first place Why shift left The benefits of earlier intervention include faster development speed and improved security throughout the organization s DevOps capabilities Ultimately the goal of shift left security and DevSecOps should be to avoid critical bugs and security defects during the deployment phase while preserving the fast flow of work Greater transparencyImplementing security measures throughout the value stream improves visibility into security coverage including the number of defects discovered and any potential security blind spots The consistent monitoring of threats in the delivery pipeline also introduces a high degree of traceability and auditability which helps teams iterate and improve their security controls after incidents More secure codebaseShift left security increases test coverage by encouraging more security testing during the development phase Additionally shift left security enables distributed security where more team members involved in the development process are responsible for building secure software Shift left security also inspires better software design instead of a culture of patching and hotfixes by making teams more aware of security requirements Teams can code with security in mind from the outset of a project avoiding ad hoc and clumsy fixes in the later stages of development Lower production costsShift left security reduces the cost of development by resolving issues before introducing additional dependencies According to IBM researchers fixing defects is times more expensive to fix during the testing phase than during the design phase Worse that number jumps to times more expensive when defects are fixed during the maintenance phase Fixing security issues earlier requires less effort and rework than if teams wait until after implementation Organizational learningShift left security introduces key security practices to development teams and equips them with tools that provide fast feedback on their work These insights help spread knowledge about security best practices throughout the organization creating a more security conscious culture Improved response timeBetter collaboration between development and security means issues can be discovered faster and fixed sooner When coupled with continuous integration shift left security helps teams patch newly identified security vulnerabilities in faster release cycles decreasing the time threat actors can take advantage of them Standardization and automationDevSecOps encourages teams to adopt highly repeatable and predictable security workflows They can apply security controls consistently across environments including containers databases serverless functions and more Such standardization prevents security issues from accidentally slipping through security controls due to human error Shift left security also introduces a high degree of automation into the software development life cycle shortening feedback loops and eliminating handoffs Teams can continuously decrease the workload of manual testers by iteratively and incrementally offloading routine testing to automated tooling Decreased time to marketOverall shift left security can increase delivery speed Optimized security workflows and automation mean less wait time for developers and fewer bottlenecks when shipping new features How to shift left in DevSecOpsAdopting shift left security is not a linear binary outcome with a strict timeline instead it is a continuous process of security improvements over the long term Define a strategyBefore changing any security workflows engineering and security teams must first agree on standards and expectations for their shift left initiatives It s important they decide what shift left security looks like at their organization creating a roadmap of iterative long term improvements They can also perform a risk based analysis to decide where to start implementing testing and tooling balancing potential risk to the organization s security and resources required to implement new workflows Incident history and can provide a list of high priority and high impact areas for improvement Understand the flow of work in your organizationNext teams need to understand the flow of work through the software delivery pipeline The goal is to provide context to security teams about the tools and environments used by developers They can then create a unified test strategy outlining the tests tools and data required for each new security requirement They can also identify opportunities to improve existing workflows so they are more compatible with shift left security For example teams can adopt trunk based development to streamline automated security tests Implement security guardrailsWhen adding security guardrails the goal is to make security a seamless part of daily work Teams can introduce these changes into the development pipeline by De emphasizing acceptance and system level testing while refocusing on unit testing and integration testing Reducing toolchain complexity with pre approved tools Introducing testing automation including security workflows directly into continuous integration pipelines Hardening continuous integration systems with checklists to ensure teams follow best practices Continuously train and improveShift left security requires continuous improvement to respond to the ever changing needs of development and security teams As part of the ongoing shift left security teams can be more involved in the early phases of design reviewing implementation details to advise on potential testing requirements architecture considerations and security considerations Development teams can also be kept up to date on the OWASP Top testing best practices and other security trends Shift left security best practicesShift left security needs to be implemented with careful consideration for its impact on the development process Like all DevOps capabilities it works best when combined with visibility monitoring and continuous improvement Optimize test environmentsSecurity testing should also follow the test pyramid to provide the most valuable feedback to developers at the right time It s important to implement smaller faster tests earlier such as static code analysis unit tests and smoke tests By starting with these smaller tests developers avoid the need to create full builds to reveal certain security issues Teams should run more comprehensive test suitesーsuch as API integration and cross browser testingーlater in the development pipeline These test suites should be designed to fail fast stopping builds early if they uncover catastrophic issues Teams should also consider using short lived testing environments Long running environments can quickly become obsolete or require significant upkeep while temporary environments avoid maintenance costs and outdated data For example containers for smoking tests can be created and destroyed quickly according to predefined configurations Monitor pipeline performanceShift left security should be highly automated with tools and tests added directly to the build process Teams will need to maintain security tests and plan for their upkeep each development cycle As a result an important part of shift left security is consistently monitoring pipeline performance Teams should highlight slow pipelines and jobs as well as their success rates The goal is to fine tune their configuration to eliminate false positives increase speed or flag outdated tests They can also identify recurring security weaknesses that require additional tooling earlier in the development cycle Security teams involved in designRequesting feedback from security teams during the design phase helps teams flag potential issues and highlight areas of focus during implementation Security teams can help teams prevent complex security issues before developers have a chance to build them into the codebase Increase pre approved toolsStandardization and pre approval for dependencies packages toolchains libraries encourages their use and avoids rework Overall it decreases the surface area for security issues by eliminating vulnerable toolchains before they re added into the codebase Develop a culture of visibilityAbove all teams should improve visibility into their organization s shift left security practices They should make it easy for all team members to understand their organization s security posture including its strengths and areas for improvements Measuring shift left securityTo measure the effectiveness of shift left security teams should improve visibility into Security review time The goal should be to decrease the time required for security reviews so they do not slow the development process Percentage of security requirements integrated into automated testing Teams should increase the coverage of security requirements performed as part of test automation which provide faster feedback to developers Percentage of development tools in use that have been pre approved Teams should increase their approval coverage until most or all tools used by development teams have been pre approved by security teams Shift left security toolsOrganizations can implement several different types of tools to help developers shift security to the left The four main security testing methods include Static Application System Testing SAST involves scanning source code for vulnerabilities It s typically fast and cheap because it does not require code to compile or run Dynamic Application Security Testing DAST involves black boxing testing exposing an application to common attacks Interactive Application Security Testing IAST a hybrid of SAST and DAST analyzes running applications and watches behaviors initiated by both manual and automated tests Runtime Application Self Protection RASP integrates with an application to prevent attacks during runtime blocking or preventing execution based on traffic and user behavior Two popular tools include OpenRASP and Sqreen Teams can also implement security practices to further secure the software supply chain Secrets detection Teams can use tools to scan code for secrets like API keys encryption keys and credentials to prevent accidental exposure Dependency scanning Tools like WhiteSource and FOSSA scan dependencies and open source projects for security issues or identify outdated packages Start small start todayAs teams work in increasingly complex development environmentsーrelying on more dependencies tools and open source technologyーsecurity is more important than ever With widespread security scares such as Logj and SolarWinds creating a resilient and security focused organization can be a daunting task In alone the US CERT Vulnerability database recorded more than vulnerabilities breaking previous records In spite of these challenges DevSecOps and shift left security testing offers teams a way to confidently and consistently write more secure code and build safer software With small continuous improvements any engineering team can inspire a culture that prioritizes better security |
2022-01-10 20:35:46 |
Apple |
AppleInsider - Frontpage News |
You can't hail an Uber from your Apple Watch anymore |
https://appleinsider.com/articles/22/01/10/you-cant-hail-an-uber-from-your-apple-watch-anymore?utm_medium=rss
|
You can x t hail an Uber from your Apple Watch anymoreYou are no longer able to hail an Uber from your Apple Watch because the ride sharing service has killed support for the wearable Users of Uber checking on the watchOS version of the app are discovering they cannot use it at all A brief on screen message advises it is not available anymore and to instead use their iPhone to call a ride The poorly written message that appears on the Apple Watch states Please switch to the Uber mobile app We no longer supporting the Apple Watch app Sorry for the inconvenience and ends with a crying emoji Read more |
2022-01-10 20:50:57 |
Apple |
AppleInsider - Frontpage News |
Apple TV+ 'The Morning Show' renewed for a third season |
https://appleinsider.com/articles/22/01/10/apple-tv-the-morning-show-renewed-for-a-third-season?utm_medium=rss
|
Apple TV x The Morning Show x renewed for a third seasonThe Jennifer Aniston and Reese Witherspoon fronted The Morning Show will return for a third season on Apple TV with Apple also signing a multi year deal with a new showrunner The Morning Show tells of the behind the scenes trials and tribulations of the stars and production team behind a fictional TV show After two successful seasons Apple has signed a deal to renew the show for a third season The new season will have a different showrunner than the first two with Charlotte Stoudt taking over duties from Kerry Ehrin Apple revealed on Monday Stoudt formerly of Homeland and House of Cards will be taking the role as part of a multi year deal with Apple TV Read more |
2022-01-10 20:25:49 |
Apple |
AppleInsider - Frontpage News |
Apple TV+ shares first look at upcoming film 'The Sky Is Everywhere' |
https://appleinsider.com/articles/22/01/10/apple-tv-shares-first-look-at-upcoming-film-the-sky-is-everywhere?utm_medium=rss
|
Apple TV shares first look at upcoming film x The Sky Is Everywhere x Apple TV has shared a first look at The Sky Is Everywhere a film adaptation of the best selling young adult novel of the same name by Jandy Nelson The Sky Is Everywhere Credit AppleCreated by Apple Original Films and A The Sky is Everywhere follows year old Lennie Walker played by Grace Kaufman and described as a radiant musical prodigy who is struggling after the sudden loss of her older sister Bailey Bailey is played by Havana Rose Liu Read more |
2022-01-10 20:19:05 |
Apple |
AppleInsider - Frontpage News |
5 MacBook Air, M1 iMac models with 16GB RAM are up to $150 off, in stock |
https://appleinsider.com/articles/22/01/10/5-macbook-air-m1-imac-models-with-16gb-ram-are-up-to-150-off-in-stock?utm_medium=rss
|
MacBook Air M iMac models with GB RAM are up to off in stockFive of Apple s current MacBook Air and iMac inch configurations are discounted exclusively for AppleInsider readers this week with triple digit savings and free expedited shipping on premium models with GB of memory Exclusive Apple dealsB amp H Photo this week is offering AppleInsider readers exclusive savings on five popular MacBook Air and iMac inch configurations ーeach with Apple s M chip and GB of RAM Read more |
2022-01-10 20:44:00 |
海外TECH |
Engadget |
Razer reneges on its claim the Zephyr mask uses 'N95-grade' filters |
https://www.engadget.com/razer-reneges-on-zephyr-n95-claims-201857955.html?src=rss
|
|
2022-01-10 20:18:57 |
海外TECH |
Engadget |
Spotify is still working on HiFi streaming, but won't say when it's coming |
https://www.engadget.com/spotify-hifi-cd-quality-audio-no-timing-details-201240379.html?src=rss
|
Spotify is still working on HiFi streaming but won x t say when it x s comingAlmost a year ago Spotify announced plans to roll out a higher tier of its streaming service with CD quality music in some markets in However Spotify HiFi is still not available and there s no indication as to when it will actually arrive “We know that HiFi quality audio is important to you We feel the same and we re excited to deliver a Spotify HiFi experience to Premium users in the future But we don t have timing details to share yet a Spotify moderator wrote on the Community forums “We will of course update you here when we can Engadget has contacted Spotify for more details Back in Spotify tested CD quality audio by offering some users in the US access to lossless music for an extra per month Since then other prominent music streaming services have embraced lossless streaming with Apple Music joining the likes of Tidal and Deezer French HD streaming service Qobuz arrived in the US in Spotify hasn t said how much HiFi will cost when the service rolls out more broadly but competitors may force its hand into offering lossless music streaming at no extra cost Apple Music Amazon Music and Tidal have all rolled CD quality audio into their standard plans over the last year Other details about Spotify HiFi beyond pricing and availability remain unclear However the company has confirmed the service will work with Spotify Connect enabled speakers |
2022-01-10 20:12:40 |
Cisco |
Cisco Blog |
Nine Top of Mind Issues for CISOs Going Into 2022 |
https://blogs.cisco.com/security/nine-top-of-mind-issues-for-cisos-going-into-2022
|
discussions |
2022-01-10 20:33:18 |
海外科学 |
NYT > Science |
In a First, Man Receives a Heart From a Genetically Altered Pig |
https://www.nytimes.com/2022/01/10/health/heart-transplant-pig-bennett.html
|
human |
2022-01-10 21:00:12 |
海外科学 |
NYT > Science |
Here’s How Climate Change and Covid Are Transforming Skiing |
https://www.nytimes.com/2022/01/07/climate/skiing-climate-change.html
|
surprising |
2022-01-10 20:46:26 |
ニュース |
BBC News - Home |
'100 invited' to Downing Street garden lockdown drinks |
https://www.bbc.co.uk/news/uk-politics-59930733?at_medium=RSS&at_campaign=KARANGA
|
downing |
2022-01-10 20:48:23 |
ニュース |
BBC News - Home |
FA Cup: McTominay scores Man Utd's first goal of the match against Aston Villa |
https://www.bbc.co.uk/sport/av/football/59944075?at_medium=RSS&at_campaign=KARANGA
|
FA Cup McTominay scores Man Utd x s first goal of the match against Aston VillaManchester United score the first goal of the match against Aston Villa thanks to an early header by Scott McTominay in the FA Cup third round |
2022-01-10 20:24:32 |
ビジネス |
ダイヤモンド・オンライン - 新着記事 |
異例の2022年、最もお薦めの投資は? - WSJ発 |
https://diamond.jp/articles/-/292894
|
異例 |
2022-01-11 05:29:00 |
ビジネス |
ダイヤモンド・オンライン - 新着記事 |
「フルロナ」とは何か? 早わかりQ&A - WSJ発 |
https://diamond.jp/articles/-/292895
|
qampampawsj |
2022-01-11 05:28:00 |
ビジネス |
ダイヤモンド・オンライン - 新着記事 |
GAFAの半導体“自前路線”が加速、グーグルに独自開発を決断させた「予測」の中身とは - 総予測2022 |
https://diamond.jp/articles/-/291216
|
開発 |
2022-01-11 05:25:00 |
ビジネス |
ダイヤモンド・オンライン - 新着記事 |
トランプ復活へ!?中間選挙で民主党の「負け方」に注目が集まる米国政治2022 - 総予測2022 |
https://diamond.jp/articles/-/291215
|
中間選挙 |
2022-01-11 05:20:00 |
ビジネス |
ダイヤモンド・オンライン - 新着記事 |
ソフトバンク宮川社長が「もはや通信会社ではいられない!」と断言する理由 - 総予測2022 |
https://diamond.jp/articles/-/291214
|
技術戦略 |
2022-01-11 05:15:00 |
ビジネス |
ダイヤモンド・オンライン - 新着記事 |
楽天とソフトバンクをドコモとKDDIが追う!?2022年の通信業界は「非通信3分野」で総力戦 - 総予測2022 |
https://diamond.jp/articles/-/291213
|
携帯電話 |
2022-01-11 05:10:00 |
ビジネス |
ダイヤモンド・オンライン - 新着記事 |
みずほ「旧行意識払拭」を狙った人事が、3.11直後のシステム障害で傷口を広げた皮肉 - みずほ「言われたことしかしない銀行」の真相 |
https://diamond.jp/articles/-/290382
|
東日本大震災 |
2022-01-11 05:05:00 |
ビジネス |
電通報 | 広告業界動向とマーケティングのコラム・ニュース |
テレビの役割に変化!?「コネクテッドTV」の利用実態に迫る |
https://dentsu-ho.com/articles/8033
|
tvconnectedtv |
2022-01-11 06:00:00 |
ビジネス |
電通報 | 広告業界動向とマーケティングのコラム・ニュース |
おなかも、ココロも、ノーペコ ラボ! |
https://dentsu-ho.com/articles/8032
|
社会貢献 |
2022-01-11 06:00:00 |
北海道 |
北海道新聞 |
スーチー氏有罪「政治的だ」 ノーベル賞委が批判 |
https://www.hokkaido-np.co.jp/article/631908/
|
選考 |
2022-01-11 05:12:00 |
北海道 |
北海道新聞 |
<社説>核戦争回避声明 言葉だけでは無意味だ |
https://www.hokkaido-np.co.jp/article/631874/
|
首脳 |
2022-01-11 05:05:00 |
北海道 |
北海道新聞 |
上野動物園など休業開始 感染拡大、図書館・公園は対象外 |
https://www.hokkaido-np.co.jp/article/631907/
|
上野動物園 |
2022-01-11 05:02:00 |
ビジネス |
東洋経済オンライン |
「もう買いたいモノがない」日本人の消費のリアル 10万円給付金も「使わず貯蓄」されてしまう? | トクを積む習慣 | 東洋経済オンライン |
https://toyokeizai.net/articles/-/500524?utm_source=rss&utm_medium=http&utm_campaign=link_back
|
東洋経済オンライン |
2022-01-11 05:30:00 |
コメント
コメントを投稿