Inside Dev | Inside

[ Inside Dev ]

A thoughtful roundup of news and links for developers

1. The latest version of Vue build toolchain Vue CLI is now available. Vue CLI 3.0 differs dramatically from previous releases, with the Vue team explaining the overall goal was to "reduce configuration fatigue of modern frontend tooling, especially when mixing multiple tools together" and to "incorporate best practices in the toolchain as much as possible so it becomes the default for any Vue app." For more details about new features, readers can click here. - MEDIUM


2. Google removed an anti-censorship browser extension tool called Ahoy from the Chrome store, sparking controversy. The tool allowed users to access more than 1,700 blocked sites, yet was deleted without explanation. "Google decided to remove us from Chrome’s Web Store without any justification," Ahoy team member Henrique Mouta said, adding the number of installations has since dramatically decreased as a result of the move. "We always make sure our code is high quality, secure and 100% free (as in beer and as in freedom). All the source code is open source. And we’re pretty sure we never broke any of the Google’s marketplace rules." - HACKER NEWS


3. Hanami launched their v1.3.0.beta1 release and announced the stable version will be made available in October 2018. New features include a switch to RSpec as the new default testing framework, various deprecations, and more. Readers can learn more here. - REDDIT


Subscribe to Inside Dev


1. IEEE Spectrum reports software engineers are increasingly turning down job offers from big tech companies like Google, Amazon, Facebook, and Microsoft over ethical concerns. In doing so, many are hoping recruiters and companies will start paying attention, thus enacting change. It's a protest tactic that is starting to slowly prove effective because - as Jeremy Hsu argues - "Silicon Valley firms compete fiercely to recruit and retain relatively scarce engineering talent. For example, Google’s leadership sought to reassure employees by declaring it would not renew its Pentagon contract and by issuing a set of ethical principles for future uses of Google-developed technologies." - HACKER NEWS


2. The latest version of Babel, a free open-source Javascript compiler and configurable transpiler, has been released. Babel v7.0.0-rc.1 comes just a day after Babel v7.0.0-rc.0 was made available, yet featured a peerDependencies problem that necessitated the new release. In this most recent version, a regression was fixed while babel/polyfill no longer includes proposal polyfills by default. - REDDIT


3. The BBC's web services were blocked in China after the broadcaster changed addresses starting with "HTTP" to the more secure "HTTPS," which are often banned by the country. "In a climate of anxiety around fake news, it's vital that users are able to determine that articles have not been tampered with and that their browsing history is private to them," James Donohue, the principal software engineer at BBC News, explains when asked about the change. "HTTPS achieves both of these as it makes it far more difficult for ISPs [internet service providers] to track which articles and videos you're looking at or selectively suppress individual pieces of content." To get around the block, the BBC recommends those in China use either a virtual private network or the Psiphon app. - HACKER NEWS


Build better, faster applications with DigitalOcean’s all-in-one cloud platform for developers.

Start today with a $100 credit.


4. The Google Public DNS, known by its infamous IP address 8.8.8.8, celebrated its eighth birthday on August 10. The company reflected on the milestone and their journey in a blog post, highlighting accomplishments while also giving a glimpse into future priorities. Google remarked on the recent DNS attacks using BGP hijacking and said they are working on making sure it doesn't happen again. "Increasing the adoption and use of DNSSEC is an effective way to protect against such attacks and as the largest DNSSEC validating resolver, we hope we can influence things in that direction. We are also exploring how to improve the security of the path from resolvers to authoritative name servers—issues not currently addressed by other DNS standards." - HACKER NEWS


5. Google security researcher Ian Beer has asked Apple CEO Tim Cook to donate $2.45 million to Amnesty International to make up for unpaid iPhone bug bounties he has been reporting since 2016. "I've been working for years to help make iOS more secure," Beer tweeted, attaching a list of all the bugs he had worked on. "Here's a list of all the bugs I reported which qualified for your bug bounty since its launch, could you invite me to the program so we can donate this money to @amnesty?" - TWITTER


6. Prime announced they are now working on PrimeFaces 6.3, the latest release of the popular open source framework for JavaServer Faces. In this newest version, Nova themes will now be the default face of the Prime UI Suites. Other features include a new calendar and various chart components. - REDDIT


Written and curated by Inside Dev Editor Sheena Vasani, a freelance journalist based in California. Proficient in Javascript and Ruby. Got my start at Dev Bootcamp and Thinkful.

Editing team: Lon Harris (editor-in-chief at Inside.com, game-master at Screen Junkies), Krystle Vermes (Breaking news editor at Inside, B2B marketing news reporter, host of the "All Day Paranormal" podcast), and Susmita Baral (editor at Inside, recent bylines in NatGeo, Teen Vogue, and Quartz. Runs the biggest mac and cheese account on Instagram).


4. Microsoft Azure threatened to stop hosting social network Gab unless it took down two anti-Semitic posts written by Patrick Little, a neo-Nazi who ran for Senate in California, thus sparking controversy. "Microsoft received a complaint about specific posts on Gab.ai that advocate ‘ritual death by torture’ and the ‘complete eradication’ of all Jews," Microsoft said in a statement. "After an initial review, we have concluded that this content incites violence, is not protected by the First Amendment, and violates Microsoft Azure’s acceptable use policy." Azure gave the company 48 hours to remove the messages or they would take action, explaining that if Gab did not comply, they would be violating Azure's service terms. Little has since voluntarily deleted his posts. - TWITTER


6. Some believe blockchain smartphone voting in West Virginia may not be safe. One cybersecurity enthusiast noted the software to be used, a blockchain voting system by startup “Votez," already has vulnerabilities. "The Voatz website is running on a box with out of date SSH, Apache (multiple CVSS 9+), PHP etc," tweets Kevin Beaumont, adding that he couldn't find a Voatz CISO or security person to report this too. "I’m a foreign dude with an avatar of a cowboy porg riding a porg dog on Twitter who appears to have done more investigation of the security implications of this than anybody. Bonkers, America." - TWITTER


1. The latest version of programming language Julia is now available.  According to the language's team, Julia 1.0.0's most significant new feature is "a commitment to language API stability: code you write for Julia 1.0 will continue to work in Julia 1.1, 1.2, etc." Other new improvements include a built-in package manager, a built-in String type that can now safely hold arbitrary data, and more. - HACKER NEWS


2. GitHub has open sourced GLB Director, the company's scalable load balancing solution for bare metal datacenters. "When we started down the path of writing a better datacenter load balancer, we decided that we wanted to release it open source so that others could benefit from and share in our work," GitHub writes. "We’re excited to be releasing all the components discussed here as open source at github/glb-director. We hope this will allow others to reuse our work and contribute to a common standard software load balancing solution that runs on commodity hardware in physical datacenter environments." - TWITTER


3. Google Cloud announced a beta version of Python 3.7 is available on the App Engine standard environment, released as part of a larger Second Generation App Engine standard runtimes launch. It boasts a number of features, including support for the Google Cloud client libraries allowing developers to incorporate these into their apps and run it on platforms like App Engine. To try it out, readers can click here. - HACKER NEWS


4. Security flaws on Comcast Xfinity's login page exposed personal information of over 26.5 million customers. With just a customer’s IP address and the use of the "X-forwarded-for" technique, hackers could have easily obtained users' home addresses while customers used the “in-home authentication” page to sign-in and pay bills. Unsophisticated hackers could have also obtained Social Security numbers by repeating trying random combinations as Comcast's sign-up page revealed the last four digits, and the login-page did not limit the number of attempts. Since then, Comcast has both disabled in-home authentication and implemented a limit. - HACKER NEWS


5. Dev.to, a popular large online community of software developers, is now open source. "As we open-source, I'll remind folks that we are a for-profit company, but I can assure you that we are driven primarily by the values of building an inclusive and awesome software ecosystem," writes the site's webmaster and creator, Ben Halpern. "I'm sure everyone says this, but I think we wear it on our sleeves — the added transparency of open-sourcing should only help improve that accountability as we grow." Readers can click here to browse through the community's codebase on GitHub. - HACKER NEWS


6. The Rust Community Team is asking developers for their opinions about Rust -- whether they use it or not -- as part of their research for the 2018 State of Rust Survey. They will be accepting responses until September 8, 2018, and will summarize the results in October 2018. According to the team, developer "responses will help the project understand its strengths and weaknesses and establish development priorities for the future." To check out 2017's results, readers can click here. - REDDIT


8. Developer Jesse Duffield made a tool for lazy people, aptly called "Lazygit," which he claims made him faster at Git. According to Jesse, this is the app for those who don't want to both "typing every git command directly into the terminal" and yet are "too stubborn to use Sourcetree." - HACKER NEWS


load more stories