Programmer Weekly (Issue 44 March 4 2021)

Programmer Weekly - Issue 44

March 04, 2021

Programmer Weekly

Welcome to issue 44 of Programmer Weekly. Let's get straight to the links this week.

Quote of the Week

 

“In the one and only true way. The object-oriented version of 'Spaghetti code' is, of course, 'Lasagna code'. (Too many layers)." - Roberto Walkman

News

Flutter 2 is a major upgrade to Flutter that enables developers to create beautiful, fast, and portable apps for any platform. With Flutter 2, you can use the same codebase to ship native apps to five operating systems: iOS, Android, Windows, macOS, and Linux; as well as web experiences targeting browsers such as Chrome, Firefox, Safari, or Edge. Flutter can even be embedded in cars, TVs, and smart home appliances, providing the most pervasive and portable experience for an ambient computing world.

There's been a 2,000% increase of new malware written in Go over the past few years.

Hildegard is a new malware campaign believed to originate from TeamTNT. It targets Kubernetes clusters and launches cryptojacking operations.

Google reigns supreme in search and browsers. Brave Search wants to change that – and put privacy front and centre.

Microsoft unveiled a new open source programming language for its low-code development push centered around the Power Platform and its Power Apps component. Power FX is described as a general-purpose, strongly typed, declarative and functional programming language that helps users create canvas-based apps as opposed to model-based apps. 

This nasty set of bugs can lead to an attacker gaining root access, but the patch is already available.

Reading List

This article describes how Uber reduced the code size of is’s iOS Rider app by 23% using advanced compiler technologies. The ideas discussed herein also translated to 17% and 19% code size savings in the Uber Driver and Uber Eats iOS apps, respectively.

Learn more about how the same JSON document can be parsed with different values across microservices, leading to a variety of potential security risks.

How tech’s first responders built a culture of empathy.

We continue our walk on the path leading to Vim mastery by reviewing crazy Vim functionalities which will increase even more your productivity.

Expert written tutorials covering the three main programming languages used in the design and verification of FPGA - VHDL, Verilog and Sytem Verilog.

Interactive tutorials to learn API security.

This post gives you some pointers to those trying to decide whether it’s worth it to take the leap.

Strategies for nurturing that feel-good sense of accomplishment when doing largely invisible work.

The story of how GitHub Security Lab discovered an exploitable bug in OpenSSL that was patched while a researcher was working on it. This bug is present in non-security related areas of the code, so we’re looking to work with the maintainers of OpenSSL to fix these instances of the bugs.

Troubleshooting in Kubernetes can be a daunting task. In this article you will learn how to diagnose issues in Pods, Services and Ingress.

The widely used Python package cryptography changed their build system to use Rust for low-level code which caused an emotional GitHub thread. Enthusiasts of 32-bit hardware from the 1990s aside, there was a vocal faction that stipulated adherence to Semantic Versioning from the maintainers – claiming it would’ve prevented all grief. This post will show you not only why this is wrong, but also how relying on Semantic Versioning hurts you.

This article is about how the author found a vulnerability on Microsoft online services that might have allowed anyone to take over any Microsoft account without consent permission. Microsoft security team patched the issue and rewarded him $50,000 as a part of their Identity Bounty Program.

Watch and Listen

Postman has over 10 million users worldwide. This course will introduce you to Postman and is suited for beginners. You will learn how to build API requests with Postman, how to inspect responses and create workflows. The second part of the course will get into the most exciting feature of Postman: writing API tests and automating their execution. You will learn about the collection runner, Postman monitors and Newman.

Casey is a professional video game and game engine, creator. He has been doing it for over 30 years. His approach to development feels a little bit like it's from the 1970s. Yet, it resonates with many smart people.

Chatting about developer tools, web infrastructure, and building great APIs with Netlify's Matt Biilmann.

A discussion about all the things developers need to know to bring systems successfully into production and how to keep them there. It covers production environments, what goes wrong in production, architectural requirements for operations, cost of very high availability, stability and capacity, communicating operational concerns, observability, learning from incidents, chaos engineering and operational models (SRE, You build it, you run it, classic).

A chat about simplifying the address of your crypto wallet, static linking, the security risks you need to consider with package managers, and Paul’s paper hands.

A great presentation about the server infrastructure of the internet archive. 

Interesting Projects, Tools and Libraries

A curated and opinionated list of resources for Chief Technology Officers, with the emphasis on startups.

A toolkit for building end-to-end typesafe data layers.

Peer-to-Peer Databases for the Decentralized Web.

Unix tool that visualizes shell commands usage.

Open source and real-time architecture for designing, testing, and deploying embedded applications.

Communicate important updates to your team via git commit messages.

An open source cybersecurity protocol for syncing decentralized graph data.

Create modern cross-browser extensions with no build configuration. 

Unleash is a open source feature flag & toggle system, that gives you a great overview over all feature toggles across all your applications and services.

An open-source GitLab command line tool bringing GitLab's cool features to your command line.

Upcoming Events 

MozFest is a unique hybrid: part art, tech and society convening, part maker festival, and the premiere gathering for activists in diverse global movements fighting for a more humane digital world.

Axe-con is an open and inclusive digital accessibility conference that welcomes developers, designers, business users, and accessibility professionals of all experience levels to a new kind of accessibility conference focused on building, testing, and maintaining accessible digital experiences.

Our Other Newsletters

- A free weekly newsletter featuring the best hand curated news, articles, tools and libraries, new releases, jobs etc related to Python.

- A free weekly newsletter for entrepreneurs featuring best curated content, must read articles, how to guides, tips and tricks, resources, events and more.