“What copyright notice should appear at the top of a file in an OSS project with many contributors?” This is a question we get all the time. Many of our communities have discussed this issue and aligned on a common approach that we thought would be useful to share.
When source code, documentation and other content is contributed to an OSS project, the copyrights in those contributions typically remain owned by the original copyright holders1.
[Source: Linux Foundation Blog]
Amazon Web Services Inc. today launched a new open-source library to help developers write, with just a few lines of code, machine learning-based applications that use image, text or tabular data sets. Building machine learning apps that rely on such data isn’t an easy task. For example, developers need to know how to tune the “hyperparameters” that represent the choices made when constructing an AI model. They also need to grapple with issues such as neural architecture search, which enables them to find the best architecture design for their machine learning models.
[Source: Silicon Angle]
Mozilla Firefox 72 is now available to download, the latest in the web browser’s new monthly release cycle. The headline change in Firefox 72 for Linux and macOS users is out-of-the-box support for picture-in-picture video support on sites like YouTube and Netflix.
[Source: OMG! Ubuntu]
Falco, originally created by Sysdig in 2016, is approved to join CNCF Incubation after 257% increase in downloads. The CNCF’s only open source Kubernetes runtime security project has more than 8.5 million downloads as runtime security becomes cemented as a standard component of the cloud-native stack. Falco entered the CNCF as a Sandbox Project in October 2018, the first and still the only runtime security technology to join. In the event of unexpected behavior at runtime, Falco detects and alerts, reducing the risk of a security incident.
[Source: TFiR]
To match other CNCF and Linux Foundation certifications, the Certified Kubernetes Application Developer (CKAD) is extending the expiration date of the earned certification from 24 months to 36 months! That means that if you met the Program Certification requirements, your certification will remain valid for 36 months rather than the original 24 months.
Running an OS outside of official support can leave organizations vulnerable to potential security threats. On Windows 7, Chrome will continue to provide built-in security capabilities that help keep users safe while on the web. With Safe Browsing, Site Isolation and new advanced password and phishing protections, Chrome proactively helps protect users working in the cloud. With policy management, IT teams can tighten controls as they see fit. And our fast update cycles mean better protection from vulnerabilities, especially for enterprises taking advantage of automatic updates.
[Source: Google Blog]
Automotive Grade Linux is the Linux Foundation project building frameworks and related open-source infrastructure around automotive use-cases. The 100+ member project is backed by many of the prominent automobile manufacturers as well as hardware vendors like NVIDIA and Samsung. AGL software has begun running on some 2018+ vehicles from the likes of Toyota and Mazda and various reference boards, instrument cluster displays, and more are showcased at this year’s CES 2020 with Automotive Grade Linux. This week at CES, Subaru did announce Automotive Grade Linux is used as part of their infotainment platform on the 2020 Subaru Outback and Legacy vehicles.
[Source: Phoronix]
The recent work by longtime kernel developer Andy Lutomirski on improving Linux’s random APIs and introducing a new “GRND_INSECURE” option is now queued into the random dev queue ahead of the Linux 5.6 cycle.
These changes to the random number generation add a new GRND_INSECURE flag for getentropy() and removes the blocking pool (though /dev/random can still block after the system has booted). These changes provide for some code cleanups and GRND_INSECURE allows returning potentially “insecure” random data.
[Source: Phoronix]
How do you find the right open-source API testing tool for your needs? While most vendors are talking up the benefits of AI- and UI-based testing tools in general, AI- and machine learning-based applications that help with API testing have arrived. Before you begin API testing, however, make sure you understand test automation basics and know how to avoid the most common test automation mistakes.
[Source: TechBeacon]
If you don’t accept the options offered by the community contribution model of development, then you risk becoming a Proprietary 2.0 behemoth… or so the T-shirt slogan might go. But the issue of how open source software is licenced is still the stuff of some debate.
Chief operating officer (COO) for GitHub is Erica Brescia. Brescia has pointed out that the industry is witnessing rising levels of tension between open source projects (and open source development shops) and those commercially motivated organizations that are building services on top of open source, such as cloud vendors with their database services. So how do we move forward with open source?
[Source: ComputerWeekly.com]
