| IT |
InfoQ |
CNCF Kicks Off Cloud Native SecurityCon NA 2023 |
https://www.infoq.com/news/2023/02/cloudnative-securitycon-na-2023/?utm_campaign=infoq_content&utm_source=infoq&utm_medium=feed&utm_term=global
|
CNCF Kicks Off Cloud Native SecurityCon NA The Cloud Native SecurityCon North America kicked off this week in Seattle The first dedicated event focused on Cloud Native Security with over attendees sessions sponsors and vendors organized by the Cloud Native Computing Foundation CNCF By Mostafa Radwan |
2023-02-02 19:40:00 |
| AWS |
AWS Mobile Blog |
AWS AppSync pipeline resolvers and functions now support additional array methods and arrow functions |
https://aws.amazon.com/blogs/mobile/aws-appsync-pipeline-resolvers-and-functions-now-support-additional-array-methods-and-arrow-functions/
|
AWS AppSync pipeline resolvers and functions now support additional array methods and arrow functionsAWS AppSync is a managed service that makes it easy to build scalable APIs that connect applications to data Developers use AppSync every day to build GraphQL APIs that interact with data sources like Amazon DynamoDB AWS Lambda and HTTP APIs With AppSync developers can write their resolvers using JavaScript and run their code on … |
2023-02-02 19:29:53 |
| js |
JavaScriptタグが付けられた新着投稿 - Qiita |
画面キャプチャ API と MediaStream 収録 API を使ってみた |
https://qiita.com/nymphaea/items/7e41c54703bb61fad72a
|
mediastream |
2023-02-03 04:34:46 |
| 海外TECH |
Ars Technica |
ISP admits lying to FCC about size of network to block funding to rivals |
https://arstechnica.com/?p=1914454
|
coverage |
2023-02-02 19:06:44 |
| 海外TECH |
DEV Community |
Why setup is important as software developer |
https://dev.to/svenherr/why-setup-is-important-as-software-developer-4295
|
Why setup is important as software developerAs a beginner software developer having the right tools and configurations in place is essential for success This process is known as setup and it is critical for beginners to understand its importance In this blog post we will explain why setup is important for software developers in simple terms Consistency When everyone on the team sets up the same way everyone is using the same tools and configurations This helps avoid problems that can come from using different versions of tools or dependencies Efficiency A properly set up environment can help you work faster and be more productive You won t waste time setting up and can focus on writing code and solving problems Collaboration When working with others having a consistent setup is key This helps everyone work together effectively and share code Reproducibility If you need to work on a project later having a clear setup process makes it easy to get started again It also helps others pick up the project if needed Debugging Debugging means fixing problems in your code With the right tools and configurations in place it is easier to find and fix bugs In conclusion setting up your development environment is important for consistency efficiency collaboration reproducibility and debugging As a beginner software developer taking the time to set up properly can make a big difference in your experience and success This blog post was optimized for search engines like Google and platforms like dev to making it easier for beginners to find the information they need to start their journey in software development |
2023-02-02 19:03:39 |
| 海外TECH |
DEV Community |
sbomqs, an open source tool to quality check your SBOMS |
https://dev.to/aws/sbomqs-and-open-source-tools-to-quality-check-your-sboms-1hhb
|
sbomqs an open source tool to quality check your SBOMSWhen putting together a previous post on how to use open source tools to create a software bill of materials SBOM Ritesh Noronha alerted me to another project sbomqs that aims to simplify the evaluation of SBOM quality for both producers and consumers A quality SBOM is one that is accurate complete and up to date It should accurately reflect the components and dependencies used in the software application including their version and optionally any known vulnerabilities In addition it should be easily accessible and understandable by stakeholders such as developers security teams and compliance officers I guess these are some of the heuristics used I thought it was interesting enough to dive into and see how we can use this to check out the output from the previous post Building a software bill of materials SBOM using open source toolsInstallationTo install sbomqs we can follow the instructions on the GitHub project go install github com interlynk io sbomqs latestgo downloading github com interlynk io sbomqs v go downloading github com samber lo v go downloading github com spf cobra v go downloading go uber org zap v go downloading github com olekukonko tablewriter v go downloading github com spdx tools golang v go downloading github com CycloneDX cyclonedx go v go downloading golang org x exp v bbdaeafago downloading go uber org atomic v go downloading go uber org multierr v go downloading github com mattn go runewidth v go downloading github com spdx gordf v ffbAfter making sure sbomqs is in the path I can check it works and the version As we can see this is still early days for this project sbomqs version sbomqs sbomqs application provides sbom quality scores GitVersion v GitCommit unknownGitTreeState unknownBuildDate unknownGoVersion go Compiler gcPlatform linux amdFrom the docs it looks like we can run this tool against the SBOM we created in the previous post We can find out what parameters it takes via the command line help it is also in the README of the project sbomqs score helpprovides a comprehensive quality score for your sbomUsage sbomqs score flags Flags category string scoring category dirpath string sbom dir path filepath string sbom file path h help help for score reportFormat string reporting format basic or detailedIn the previous post I had originally tried and failed to attach an SBOM in json format I thought I would try and see how this tool handles this sbomqs score filepath os security sbom spdx jsonAnd sure enough it printed out my very first quality assessment for my SBOM I got a score of The docs say that the score is to with being the highest score so I think I am on the right track with this score SBOM Quality Score os security sbom spdx json CATEGORY FEATURE SCORE DESC NTIA minimum elements Components have supplier names have supplier names Doc has authors doc has authors Doc has relationships doc has relationships Components have versions have versions Doc has creation timestamp doc has creation timestamp T Z Components have uniq ids have unique ID s Components have names have names Quality Components have no deprecated components have licenses deprecated licenses Components have primary components have primary purpose defined purpose specified Components have multiple comp with uniq ids cpe formats of uniq ids purl total Components have valid spdx components with valid licenses license Semantic Components have checksums have checksums Components have licenses have licenses Doc has all required fields Doc Fields true Pkg Fields true Sharing Doc sharable license doc has a sharable license free of Structural Spec File Format provided sbom should be in supported file format for spec json and version json yaml rdf tag value SBOM Specification provided sbom is in a supported sbom format of spdx cyclonedx Spec is parsable provided sbom is parsable Spec Version provided sbom should be in supported spec version for spec SPDX and versions SPDX SPDX SPDX The project repo contains some additional command line recipes to show you how you can use this project Well worth checking those out Finally the doc provides some details as to the criteria evaluated and what they mean ConclusionIn this short blog post I looked at a new open source tool that looks to assess the quality of a software bill of materials SBOM I can see how this might be useful as part of a broader solution and should help move SBOMs from being a static asset to something more actionable As I mentioned in the post this is an early project version so will keep an eye on this tool and encourage you all to try it out and provide feedback to the maintainers I would love the hear more from readers about what your biggest pain points and frustrations when you work with open source is Please complete this very short survey as this would help me massively All responses are anonymous You can check out and explore the sbomqs tool here |
2023-02-02 19:02:19 |
| Apple |
AppleInsider - Frontpage News |
Grab Apple's new HomePod for $285 with this limited time deal |
https://appleinsider.com/articles/23/02/02/grab-apples-new-homepod-for-285-with-this-limited-time-deal?utm_medium=rss
|
Grab Apple x s new HomePod for with this limited time dealExclusive pricing is in effect on Apple s HomePod with the smart speaker dipping to with coupon Apple s new HomePod is on sale Select between the HomePod in Midnight or White and enter promo code APINSIDER during Step of checkout at Authorized Apple Reseller Adorama to save on the new release Read more |
2023-02-02 19:20:45 |
| Apple |
AppleInsider - Frontpage News |
Latest Shot on iPhone film is 'Fursat,' by director Vishal Bhardwaj |
https://appleinsider.com/articles/23/02/02/latest-shot-on-iphone-film-is-fursat-by-director-vishal-bhardwaj?utm_medium=rss
|
Latest Shot on iPhone film is x Fursat x by director Vishal BhardwajIndian film director Vishal Bhardwaj is out with a Shot on iPhone production about a man obsessed with controlling the future and he used an iPhone Pro Fursat A Vishal Bhardwaj film Shot on iPhone started as a marketing campaign from Apple to show off the photo and video capabilities of its flagship smartphone Apple has previously worked with film directors to create short films using the latest iPhone technology Read more |
2023-02-02 19:14:39 |
| 海外TECH |
Engadget |
Amazon told lawmakers it wouldn’t build warehouse storm shelters |
https://www.engadget.com/amazon-no-storm-shelters-warehouses-illinois-tornado-193224505.html?src=rss
|
Amazon told lawmakers it wouldn t build warehouse storm sheltersAmazon told lawmakers it wouldn t build storm shelters in its warehouses after a December tornado killed six employees at an Illinois location Although the company changed its severe weather response strategy after the incident it essentially told the elected officials that since building storm shelters isn t required by law it won t do that The company responded to lawmakers Senator Elizabeth Warren D MA and Representatives Alexandria Ocasio Cortez D NY and Cori Bush D MO who sent a letter on December th questioning the company s lack of storm shelters or safe rooms at its warehouses “Amazon s apparent unwillingness to invest in a storm shelter or safe room at its Edwardsville facility is made even more concerning by the fact that installing one could be done by Amazon at relatively low cost the lawmakers wrote “This cost is negligible for a company like Amazon which brought in more than billion in revenue over the month period ending September and clearly has the resources necessary to protect its workers should it have the will to do so Company vice president of public policy Brian Huseman responded via CNBC “Amazon requires that its buildings follow all applicable laws and building codes We have not identified any jurisdiction in the United States that requires storm shelters or safe rooms for these types of facilities Lawrence Bryant reutersHuseman added that Amazon follows Occupational Safety and Health Administration OSHA and National Weather Service guidelines and will continue using a “severe weather assembly area for sheltering in place instead of the requested storm shelters The six employees and contractors who died at the warehouse tried to protect themselves in a bathroom the surviving workers took refuge in an assembly area OSHA investigated the incident last April and ordered Amazon to review its severe weather policies but it fell short of penalizing the company for its response Additionally Amazon hired a meteorologist launched an internal center for monitoring severe weather and created emergency cards pointing out evacuation points and assembly areas Amazon reportedly began rebuilding the warehouse last June The families of two of the employees killed there have sued the company for wrongful death |
2023-02-02 19:32:24 |
| ニュース |
@日本経済新聞 電子版 |
日本製紙など、航空燃料SAFを安定調達 国産木材活用
https://t.co/8OBlNbLLJ2 |
https://twitter.com/nikkei/statuses/1621231919840247808
|
日本製紙 |
2023-02-02 19:39:45 |
| ニュース |
@日本経済新聞 電子版 |
ドイツ、フリーランスに「厚生年金」 デジタル化構想も
https://t.co/TgsxM9Tja9 |
https://twitter.com/nikkei/statuses/1621231667427028992
|
厚生年金 |
2023-02-02 19:38:45 |
| ニュース |
@日本経済新聞 電子版 |
米企業の人員削減、1月は前月比2倍10万人超 テック4割
https://t.co/EiFnPnYr1k |
https://twitter.com/nikkei/statuses/1621227132126138369
|
人員削減 |
2023-02-02 19:20:43 |
| ニュース |
@日本経済新聞 電子版 |
プーチン大統領、「ドイツ戦車再び脅威に」 欧米を非難
https://t.co/g1r4zPClVE |
https://twitter.com/nikkei/statuses/1621225127735357440
|
脅威 |
2023-02-02 19:12:46 |
| ニュース |
@日本経済新聞 電子版 |
ヤクルト、中国リオープンの曙光 好調「1000」に続くか
https://t.co/TIQKbxWznW |
https://twitter.com/nikkei/statuses/1621225125327802368
|
曙光 |
2023-02-02 19:12:45 |
| ニュース |
BBC News - Home |
EDF suspends forced prepayment meter installations |
https://www.bbc.co.uk/news/business-64504609?at_medium=RSS&at_campaign=KARANGA
|
meters |
2023-02-02 19:08:51 |
| ビジネス |
ダイヤモンド・オンライン - 新着記事 |
草刈機まさお、芝耕作…ダジャレ農機で年商70億円!福岡の笑撃メーカー成長秘話 - 飛び立て、世界へ! 中小企業の海外進出奮闘記 |
https://diamond.jp/articles/-/316708
|
草刈機まさお、芝耕作…ダジャレ農機で年商億円福岡の笑撃メーカー成長秘話飛び立て、世界へ中小企業の海外進出奮闘記「草刈機まさお」など、ユニークな商品を数多く手がける動力運搬車メーカー・筑水キャニコム福岡県うきは市。 |
2023-02-03 05:00:00 |
| ビジネス |
ダイヤモンド・オンライン - 新着記事 |
「働き方の変化についていけない人」が気づかない、たった1つのこと - 「40代で戦力外」にならない!新・仕事の鉄則 |
https://diamond.jp/articles/-/316910
|
感染拡大 |
2023-02-03 04:55:00 |
| ビジネス |
ダイヤモンド・オンライン - 新着記事 |
ドル安は期待ほど進まず、名目円高でも「安い日本」を象徴する実質的な円安 - 政策・マーケットラボ |
https://diamond.jp/articles/-/317073
|
円高ドル安 |
2023-02-03 04:50:00 |
| ビジネス |
ダイヤモンド・オンライン - 新着記事 |
吉野ヶ里遺跡に眠る王は「古代中国の伝説の男」か、史料から正体を大胆予想 - 新説・新発見!今こそ学ぶ「歴史・地理」 |
https://diamond.jp/articles/-/316706
|
吉野ヶ里遺跡に眠る王は「古代中国の伝説の男」か、史料から正体を大胆予想新説・新発見今こそ学ぶ「歴史・地理」佐賀県には「徐福伝説」なるものが存在する。 |
2023-02-03 04:45:00 |
| ビジネス |
ダイヤモンド・オンライン - 新着記事 |
ソニー復活の集大成となるか?十時新社長の「本当の実力」 - 長内 厚のエレキの深層 |
https://diamond.jp/articles/-/317118
|
集大成 |
2023-02-03 04:42:00 |
| ビジネス |
ダイヤモンド・オンライン - 新着記事 |
「恵方巻きが嫌い」な私が心変わりしそうな理由、“節分商法”は正常化? - 今週もナナメに考えた 鈴木貴博 |
https://diamond.jp/articles/-/317079
|
「恵方巻きが嫌い」な私が心変わりしそうな理由、“節分商法は正常化今週もナナメに考えた鈴木貴博今日は節分です。 |
2023-02-03 04:40:00 |
| ビジネス |
ダイヤモンド・オンライン - 新着記事 |
中国系「激安八百屋」が日本で攻勢中、“ゴミ野菜疑惑”の真相は? - China Report 中国は今 |
https://diamond.jp/articles/-/317078
|
chinareport |
2023-02-03 04:35:00 |
| ビジネス |
ダイヤモンド・オンライン - 新着記事 |
自衛隊官舎のボロすぎる実態、腐った床・コバエ発生する風呂…【写真付】 - News&Analysis |
https://diamond.jp/articles/-/316914
|
newsampampanalysis |
2023-02-03 04:30:00 |
| ビジネス |
ダイヤモンド・オンライン - 新着記事 |
「もう無理…」やる気を失った人に、“交渉のプロ”なら何と声をかける? - 頭がいい人の交渉術 |
https://diamond.jp/articles/-/316730
|
「もう無理…」やる気を失った人に、“交渉のプロなら何と声をかける頭がいい人の交渉術「これ以上がんばれない」「もう勉強したくない」と部下や子どもに泣きつかれたら、あなたは何と声をかけますかやる気を出してほしくて「もっとがんばろうよ」と励ますでしょうか。 |
2023-02-03 04:25:00 |
| ビジネス |
ダイヤモンド・オンライン - 新着記事 |
「親の介護で離職しなくていい」を実現した会社、どんな制度?なぜできた? - News&Analysis |
https://diamond.jp/articles/-/316856
|
「親の介護で離職しなくていい」を実現した会社、どんな制度なぜできたNewsampampAnalysis介護休業における取得可能日数を増やす企業が増えているが、介護休業を取ったところで、会社を休まなくてはならないことには変わりない。 |
2023-02-03 04:20:00 |
| ビジネス |
ダイヤモンド・オンライン - 新着記事 |
「風呂なし物件」「食費月1万円節約術」の記事に批判が上がる切実な事情 - News&Analysis |
https://diamond.jp/articles/-/317077
|
newsampampanalysis |
2023-02-03 04:15:00 |
| ビジネス |
ダイヤモンド・オンライン - 新着記事 |
「スマホ副業詐欺」被害が急増、巧みな手口とだまされない方法とは - ニュース3面鏡 |
https://diamond.jp/articles/-/316049
|
詐欺被害 |
2023-02-03 04:10:00 |
| ビジネス |
ダイヤモンド・オンライン - 新着記事 |
新型コロナ5類へ見直しで、気になる「医療費の自己負担」はどう変わる? - 知らないと損する!医療費の裏ワザと落とし穴 |
https://diamond.jp/articles/-/317076
|
医療費の自己負担 |
2023-02-03 04:05:00 |
| ビジネス |
東洋経済オンライン |
日光・鬼怒川、閑散期の週末「運賃無料」東武の狙い 各日先着600人、エリア内の鉄道とバス乗り放題 | 経営 | 東洋経済オンライン |
https://toyokeizai.net/articles/-/650052?utm_source=rss&utm_medium=http&utm_campaign=link_back
|
指定区間 |
2023-02-03 04:30:00 |
コメント
コメントを投稿