Coverity Report Finds Open Source Code Quality Beats Commercial Code
Synopsys has announced the release of its annual Coverity Scan Open Source Report, which is widely followed. The 2014 report details the analysis of nearly 10 billion lines of source code through the Coverity Scan service and commercial usage of the Synopsys Testing Platform.
For the report, the company analyzed code from more than 2,500 open source C/C++ projects as well as an anonymous sample of commercial projects in 2014. Additionally, the report highlights results from several popular, open source Java and C# projects that have joined the Coverity Scan service since March 2013. Here are findings.
Also: Coverity Scan Open Source Report Shows Commercial Code Is More Compliant to Security Standards than Open Source Code
DragonFlyBSD Has Full-Acceleration Now Working For Intel Broadwell Graphics
Francois Tigeot's latest effort on porting the Intel i915 DRM code from the Linux kernel to DragonFlyBSD has paid off in the form of full acceleration for Broadwell "Gen8" HD/Iris Graphics.
Tigeot issued a call for testing a few days back of an update to the i915 DRM code that would position the DragonFlyBSD's code at the stage of the Linux 3.16 kernel. This updated code should fix some issues that previously caused X.Org Server crashes, correct outstanding bugs, improve performance for all GPU generations, and provide much improved support for Broadwell graphics. He noted that the Broadwell GPUs on DragonFlyBSD should now be fully accelerated with this new code.
Elive 2.6.8 beta released
Beta versions are not so optimized as the Stable ones due to debug flags and developer profiles, you can encounter errors and incomplete things, if you want a more polished system try the Stable version instead.
Docker’s momentum has been increasing by the week, and from that it’s clearly touching on real problems. However, for many production users today, the pros do not outweigh the cons. Docker has done fantastically well at making containers appeal to developers for development, testing and CI environments—however, it has yet to disrupt production. In light of DockerCon 2015’s “Docker in Production” theme I’d like to discuss publicly the challenges Docker has yet to overcome to see wide adoption for the production use case. None of the issues mentioned here are new; they all exist on GitHub in some form. Most I’ve already discussed in conference talks or with the Docker team. This post is explicitly not to point out what is no longer an issue: For instance the new registry overcomes many shortcomings of the old. Many areas that remain problematic are not mentioned here, but I believe that what follows are the most important issues to address in the short term to enable more organizations to take the leap to running containers in production. The list is heavily biased from my experience of running Docker at Shopify, where we’ve been running the core platform on containers for more than a year at scale. With a technology moving as fast as Docker, it’s impossible to keep everything current. Please reach out if you spot inaccuracies.
In fact, history is filled with examples of great people declaring a holiday for themselves. Take Christopher Columbus, for example. Upon discovering “The New World”, Columbus immediately declared the second Monday in October to be “Columbus Day” (to be celebrated with cake… and balloons… and confetti). It took a year or two to catch on, but before the decade was through, most of the world was already celebrating this new holiday. It's true. Look it up.
IBM has announced support for Apache Spark for Linux on z Systems, as part of its effort to expand the reach of its mainframe platforms. Among other benefits, the z Systems will now have a lot of appeal for data scientists that can leverage Apache Spark’s advanced analytics capabilities--all running on Linux.
The Open nature of the Operating system is what has endeared it to many users. Customizations and tweaks are done easily, further allowing people to make better use of their devices.
Many third party software providers have made the market place an even better place.on the other hand, the iOS is not an open platform. You cannot tweak or change it in anyway and no third party app maker make an app for iOS without being put through the OS.
To be fair, the Chrome Web Store is not the world's worst app store. It's just almost the worst, ranking somewhere between the Blackberry App World and the Windows App Store. But, with some small improvements, it can be significantly better.
GitHub rumor confirmed: It raised $250M at $2B valuation
Whether you do some blogging, work as a journalist or just make use of popular social media and cloud computing tools, you probably regularly need to acquire and customize publishable graphics. The good people at NPR are out to make that job easier.
Continuous integration (CI) is an integral part of an agile software development setup. Sprint after sprint, teams strive to "not break the build" while delivering incremental features. But when developers focus completely on adding features, code errors can sometimes creep in and render the software unusable. To stop such errors from being integrated into the software configuration management (SCM), a CI server is the gatekeeper that helps keep a tab on code quality. Even if the code is integrated to SCM, a CI server can quickly tell you what went wrong. In this post, let's take a look at six open source CI server tools that you can use in your agile setup.
After a run of bad publicity and floundering to retain and attract users, parent company DHI today announced SourceForge.net and Slashdot.org are for sale. DHi said the reason was due to a refocus on their employment services. Elsewhere, CoreOS CEO Alex Polvi spoke with InfoWorld.com's Paul Krill about cloud strategies and OpenSource.com wants to know what is your favorite desktop environment.
It's been a rough year for SourceForge. SourceForge began last Summer by asking users to change their passwords for now reason at all before finally admitting the database had been hacked. Then they were found to be taking over software sources that appeared to have been abandoned and adding spyware into bundled installers. Later projects began fleeing in droves and SourceForge began a campaign to soften their image by reaching out and communicating more with "the community." Today their owner announced the immediate availability of SourceForge.net and as an added bonus, if you dial before midnight tonight, you'll get Slashdot.org too. The announcement said the sale was due to "not successfully [leveraging] the Slashdot user base to further Dice's digital recruitment business." No asking price was given, but DHi paid $20 million for the sites in 2012.
Today I learned of some of the worst kind of news, my friend and a valuable contributor to the great open source community Nóirín Plunkett passed away. They (this is their preferred pronoun per their twitter profile) was well regarded in the open source community for contributions.
A $10 device capable of skimming access cards on the go is soon to be released into the open-source community.
Radio-frequency identification (RFID) cards are a quick and convenient way for businesses to track as and when their employees are on site, and also act as a way to both restrict and permit access to particular corporate locations. While RFID technology can help secure enterprise offices in this way, the ease in which these access controls can be hacked has hit the spotlight in the form of a tiny device which costs only $10 to make.
Colin Dixon, Technical Steering Committee Chair (TSC) at the OpenDaylight Project and a Principal Engineer at Brocade, said that the thing he's most proud of during the Lithium release cycle was that it landed on time, without too much pain. He commented that the maturity of the overall project has grown over the last two years, making a stable release cadence possible.