✂️Cut your QA cycles down to minutes with QA Wolf (Sponsored)If slow QA processes bottleneck you or your software engineering team and you’re releasing slower because of it — you need to check out QA Wolf. QA Wolf’s AI-native service supports web and mobile apps, delivering 80% automated test coverage in weeks and helping teams ship 5x faster by reducing QA cycles from hours to minutes. ...
On April 11, 2025 the CA/Browser forum officially voted to amend the TLS Baseline Requirements to set a schedule for shortening both the lifetime of TLS certificates and the reusability of CA-validated information in certificates. The new ballot targets certificate validity of 47 days by March 15, 2029 . This change isn't just an infrastructure concern that can be relegated to security teams. This change will fundamentally require a reexamination of how products and services operate within the enterprise IT landscape to ensure operational uptime, availability and better security. The shorter lifespan of certificates means that customers must prioritize automation of certificate lifecycle as a core security tenet. Accelerated certificate expiration is a burden mostly to organizations who have manual processes around certificate issuance. In other words, this is only hard if you don't automate your certificate lifecycle management processes, and HashiCorp Vault helps you do that. ...
Cybersecurity remains top-of-mind again this year. According to Gartner, 69% of CIOs say managing cybersecurity and technology risks is their top focus for the next 12 months. Breaking that down further, CIOs are specifically concerned about aligning their cybersecurity program and technology investments with their organization’s appetite for risk, largely due to increasingly sophisticated threats and adoption of AI. But how do you determine what constitutes acceptable risk? This post will provide a basic framework for defining risk, as well as risk measurement, identification, and analysis. Finally, it will offer strategies for lowering risk to a level within your organizational risk appetite. ...
We had a good earnings call yesterday and don’t seem to be experiencing the AI slowdown that other hyperscalers are. Full speed ahead! Go into the weekend by queuing up a few of the pieces below for a deep read. [blog] DORA’s new report: Unlock generative AI in software development. Great new report from a trusted name in the analysis of software delivery performance. [blog] Celebrating Five Years of Backstage: From Open Source Project to Enterprise Software Business. This is an important product in the mainstreaming of platform engineering. Kudos on the achievement! ...
Top Links Learn how to build agentic apps with Flutter, Angular, Firebase, and Vertex AI (Kelvin Boateng) A guide to deciding what AI model to use in GitHub Copilot (Klint Finley) Pocket Flow Tutorial – Codebase–>Knowledge – Turns Codebase into Easy Tutorial with AI (Zachary Huang) The Prof G Pod – Why Women Still Struggle for Real Power — with Melinda French Gates (Scott Galloway) AI Agent with Dart + Gemini (Chris Sells) Hands On with Microsoft’s AI Playground in a Windows App (David Ramel) ...
<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN" "http://www.w3.org/TR/REC-html40/loose.dtd"> Most developers are familiar with the standard Git workflow. You create a branch, make changes, and push those changes back to the same branch on the main repository. Git calls this a centralized workflow. It’s straightforward and works well for many projects. However, sometimes you might want to pull changes from a different branch directly into your feature branch to help you keep your branch updated without constantly needing to merge or rebase. However, you’ll still want to push local changes to your own branch. This is where triangular workflows come in. ...
Terraform has two AWS providers: AWS and AWSCC — one handwritten, the other automatically generated. But why the difference? In this post, we’ll dive into: The reasoning behind these approaches How each provider interacts with AWS APIs How they complement rather than compete with each other We’ll also share best practices for using them together and migrating resources from one provider to the other, without recreating them. AWS provider The Terraform AWS provider was the first official Terraform provider for AWS integrations and is built on the AWS SDK. The provider celebrated its 10 year anniversary in 2024, and has surpassed three billion downloads. It includes resources for various AWS services, each making API calls to its respective service. For example, when Terraform creates an Amazon S3 bucket, the AWS provider calls the S3 CreateBucket API. ...
Lots of good content today. Check out items below to get smarter on vibe coding, cloud security, and how enterprises are adopting AI. [article] Vibe Coding is not an excuse for low-quality work. Excellent advice as always, from Addy. He lays out a handful of guiding principles that you should consider when using AI assisted coding tools. [blog] Product 101: Avoid the “Thud” PRD Trap. Traverse explains why lengthy, ambitious, and fixed requirements docs are an anti-pattern. ...
Top Links Building Real‑Time iOS Apps with SignalR: Introducing the Official Swift Client (Public Preview) (Kevin Guo) In depth with Windows 11 Recall—and what Microsoft has (and hasn’t) fixed (Andrew Cunningham) Effortless adjustments with an adaptive paste (Leah Tran) You’ll Soon Be Able to Sign in to Have I Been Pwned (but Not Login, Log in or Log On) (Troy Hunt) PyTorch Arm native builds now available for Windows (Sanket Kalaskar) Contextual logging in Microsoft Edge DevTools with console.context() (Patrick Brosset & Leah Tu) Introducing the AI Dev Gallery: Your Gateway to Local AI Development with .NET (Jon Galloway & Luis Quintanilla) ...