Planet Ingres

March 23, 2023

Nikos Vaggalis - Sigstore Java - Sign And Verify Your Java Builds

sigstore-java, currently under development but not yet ready for general-purpose use,  is a tool for signing and verifying Java package distributions with Sigstore's keyless signing. This is one more step taken by Sigstore towards securing the software supply chain.Sigstore signing empowers software developers to securely sign software artifacts such as release files, container images and

by Nikos Vaggalis (noreply@blogger.com) at March 23, 2023 05:25 PM

March 17, 2023

Nikos Vaggalis - Surveying Software Supply Chain Security

Chainguard, the co-creator of Sigstore, has conducted a survey to better understand if and how software supply best practicesare utilized by the industry. We take a look at the findings.With the title, SLSA++ A Survey of Software Supply Chain Security, it was actually run by a consortium comprising  Chainguard, the Eclipse Foundation, the Rust Foundation and the OpenSSF. Suffice to say that these

by Nikos Vaggalis (noreply@blogger.com) at March 17, 2023 10:13 AM

March 14, 2023

Nikos Vaggalis - Jakarta vs Spring - The War Goes On

In a very interesting webinar streamed live as part of the recent JConference, Antoine Sabot-Durand talked about "hostility" between J2EE/Jakarta and Spring and the differences between them from decades ago to the recent times.Antoine is a Java Champion. He is also the CDI 2. 0 spec lead, involved in Microprofile and various projects linked to CDI ecosystem development and thus Jakarta EE.full

by Nikos Vaggalis (noreply@blogger.com) at March 14, 2023 09:30 AM

March 07, 2023

Nikos Vaggalis - JetBrain's Qodana Adds Taint Analysis For PHP

Qodana Code Quality platform detects and flags programming errors such as bugs, security vulnerabilities, anomalous code, dead code and the like. Now it adds Taint analysis support too.Today's news is that JetBrains is adding a new automated Taint analysis feature to Qodana that minimizes the attack surface by introducing inspections that scan the code and highlight the potential vulnerability.

by Nikos Vaggalis (noreply@blogger.com) at March 07, 2023 05:19 PM

Nikos Vaggalis - Entity Relationship Diagraming with ERDLab

ERDLab is a free and intuitive SQL Visualization Tool which helps in capturing your database design thoughts. Let's look into it.To be exact, ERDLab falls into the SQL schema visualization tools category. It allows you not only to draw your database design visually but also in code. And it's not just drawing per se; you can interact with your schema and explore its relationships end to end and

by Nikos Vaggalis (noreply@blogger.com) at March 07, 2023 05:18 PM

February 27, 2023

Nikos Vaggalis - Stride3D - Life beyond Unity?

Stride is an opensource C# game engine for realistic rendering and VR. With the recent Unity turmoil can it become a valuable replacement? Let's find out.Stride3D, as said, is open source and at the same time highly modular. It also comes with its own editor that allows you to create and manage the content of your games or applications visually. Of course, it is programmable under C#.full

by Nikos Vaggalis (noreply@blogger.com) at February 27, 2023 05:23 PM

February 24, 2023

Nikos Vaggalis - VSCode Can Do More Than You Imagine

Did you know about a list of videos that clearly depict tips and tricks that VSCode is able to do that nobody ever bothered to tell you about? Well if you didn't, you do now...The battle of the IDEs is well known and till recently the choice in programming language would also direct the choice in the IDE to do development too. But with the advent of the Language Server Protocol, which separates

by Nikos Vaggalis (noreply@blogger.com) at February 24, 2023 08:25 PM

February 23, 2023

Nikos Vaggalis - Spring Data JDBC For SQLite

spring-data-sqlite is a library that brings support to Spring Data JDBC for SQLite so that you can use Jdbctemplate to access your SQLite based datasets or use SQLite as a potential drop-in replacement for H2.Spring doesn’t provide a straightforward way to integrate a SQLite database compared to other databases such as MySQL, Postgres or MongoDB. You have to jump some hoops like making and

by Nikos Vaggalis (noreply@blogger.com) at February 23, 2023 07:55 PM

Nikos Vaggalis - Git-Sim - Use Git Fearlessly

Git-Sim enables you to visually simulate future Git operations in your own repos. Let's see why this is useful.Mastering Git is more an art than a skill. Its vastness in switches, options and features render its comprehension a difficult proposition. Thus, many beginners and not just beginners, find it hard to let their valuable code be handled by this version control system. full article on

by Nikos Vaggalis (noreply@blogger.com) at February 23, 2023 07:54 PM

Nikos Vaggalis - Ronin 2.0 – Open Source Ruby Toolkit For Security

Considered as a simpler and more modular version of Metasploit, version 2 of Ronin has been finally released after nearly a full year of non-stop development. So why Ronin?full article on i-programmer:https://www.i-programmer.info/news/90-tools/16108-ronin-20open-source-ruby-toolkit-for-security-research-and-development-.html

by Nikos Vaggalis (noreply@blogger.com) at February 23, 2023 07:51 PM