A strong type system helps you catch compilation errors early on and point you in the right direction, but how far can we push it to express the correctness of our programs?
In this talk, we'll explore what type level programming is and how we can leverage Scala's powerful type system not only to catch compilation errors, but begin supplying proofs of correctness to our programs.
We'll take a stroll from programming at the value level to expressing our intentions at the type level.
Kyua ( https://github.com/jmmv/kyua/ ) is a framework for running tests,
and generating test reports. It was written
by Julio Merino, as follow-on work
to the Automated Testing Framework (ATF) ( https://github.com/jmmv/atf ) which
he developed for the NetBSD project
during the 2007 Google Summer of Code.
Kyua is actively used in NetBSD and FreeBSD
for testing those operating systems. It is also
used actively in several companies who have BSD based products.
This talk will cover:
- how to write test cases in Bourne shell and C
- how to run the tests
- how to generate reports
- how to integrate test reports with Jenkins
Aggregate programming is a novel paradigm that addresses, at the core, many issues commonly found in the development of large-scale, situated, self-adaptive systems. It is a particular macro-programming approach where a developer expresses the behaviour of the system at the aggregate-level, by targeting the distributed computational machine which is given by the entire set of (possibly mobile and heterogeneous) networked devices pervading the environment. It is the model that takes care of turning a system-level behaviour specification into the concrete, device-centric programs executed locally by each component.
Aggregate computing is formally grounded in the field calculus, a minimal functional language that works with computational fields, i.e., distributed data structures mapping devices (digital representatives of space-time portions) to computational objects. Fields are a useful unifying abstraction for drawing a connection between the physical and the computational world, and between the local and global programming viewpoints. This approach is compositional, allowing to define layers of building blocks of increasing abstraction, and is also amenable to formal analyses.
In this talk, I will present scafi (SCAla with computational FIels), an aggregate computing framework for the Scala programming language which provides (i) an internal DSL for expressing aggregate computations as well as (ii) a library support for the configuration and execution of aggregate systems. There is no need to learn ad-hoc external DSLs anymore: with scafi, Scala programmers can instantaneously start playing with this new, intriguing development approach!
This talk was given in the Israeli Scala Meetup, Underscore, on February 13, 2018.
Video (Hebrew): https://youtu.be/57iAD9X_1jI
These days sbt is the de-facto build tool for Scala, but most of us just write the minimum viable build.sbt file, import the libraries we need (and maybe throw in some sbt-assembly) and forget about it.
In this Good Practices session, you will learn about making your build safer and more robust by making the Scala compiler work for you and through using some sbt plugins.
This talk will be quite high-level. There will be no need for prior knowledge of sbt and it should be beneficial for you even if you don’t use sbt.
Using the Android Native Development Kit (NDK)DroidConTLV
Android NDK is used to integrate C/C++ code into Android applications. Learn when and how to use it ; and what it implies to do so from development, integration within Eclipse and Android Studio, to distribution.
http://fr.droidcon.com/2014/agenda/
http://fr.droidcon.com/2014/agenda/detail?title=The+Android+Native+Development+Kit
The Android NDK is used to integrate C/C++ code into Android applications and libraries.
Learn how you can use the NDK and NDK-based libraries with Eclipse and Android Studio, and how you can debug and optimize your code.
Discover what changes from the new Android Runtime may break your integration, and how you can target new 64-bit architectures with the upcoming android L-release.
Speaker : Alexander Weggerle, Intel
ShipItCon - Continuous Deployment and Multicloud with Ansible and KubernetesMihai Criveti
Continuous Deployment and Multi-Cloud with Ansible, Packer, OpenSCAP and Kubernetes
Building and automating a multi-cloud pipeline using Ansible, Packer, OpenSCAP and Molecule
Using Kubernetes to orchestrate containers at scale
ShipItCon is a community driven, not-for-profit conference about Software Delivery https://shipitcon.com/
The Basic Over of Swift as a new programming language.
This presentation is general look at Swift, please disregard the fact and references to the Swift scripting language which at the time thought to similar or same.
A strong type system helps you catch compilation errors early on and point you in the right direction, but how far can we push it to express the correctness of our programs?
In this talk, we'll explore what type level programming is and how we can leverage Scala's powerful type system not only to catch compilation errors, but begin supplying proofs of correctness to our programs.
We'll take a stroll from programming at the value level to expressing our intentions at the type level.
Kyua ( https://github.com/jmmv/kyua/ ) is a framework for running tests,
and generating test reports. It was written
by Julio Merino, as follow-on work
to the Automated Testing Framework (ATF) ( https://github.com/jmmv/atf ) which
he developed for the NetBSD project
during the 2007 Google Summer of Code.
Kyua is actively used in NetBSD and FreeBSD
for testing those operating systems. It is also
used actively in several companies who have BSD based products.
This talk will cover:
- how to write test cases in Bourne shell and C
- how to run the tests
- how to generate reports
- how to integrate test reports with Jenkins
Aggregate programming is a novel paradigm that addresses, at the core, many issues commonly found in the development of large-scale, situated, self-adaptive systems. It is a particular macro-programming approach where a developer expresses the behaviour of the system at the aggregate-level, by targeting the distributed computational machine which is given by the entire set of (possibly mobile and heterogeneous) networked devices pervading the environment. It is the model that takes care of turning a system-level behaviour specification into the concrete, device-centric programs executed locally by each component.
Aggregate computing is formally grounded in the field calculus, a minimal functional language that works with computational fields, i.e., distributed data structures mapping devices (digital representatives of space-time portions) to computational objects. Fields are a useful unifying abstraction for drawing a connection between the physical and the computational world, and between the local and global programming viewpoints. This approach is compositional, allowing to define layers of building blocks of increasing abstraction, and is also amenable to formal analyses.
In this talk, I will present scafi (SCAla with computational FIels), an aggregate computing framework for the Scala programming language which provides (i) an internal DSL for expressing aggregate computations as well as (ii) a library support for the configuration and execution of aggregate systems. There is no need to learn ad-hoc external DSLs anymore: with scafi, Scala programmers can instantaneously start playing with this new, intriguing development approach!
This talk was given in the Israeli Scala Meetup, Underscore, on February 13, 2018.
Video (Hebrew): https://youtu.be/57iAD9X_1jI
These days sbt is the de-facto build tool for Scala, but most of us just write the minimum viable build.sbt file, import the libraries we need (and maybe throw in some sbt-assembly) and forget about it.
In this Good Practices session, you will learn about making your build safer and more robust by making the Scala compiler work for you and through using some sbt plugins.
This talk will be quite high-level. There will be no need for prior knowledge of sbt and it should be beneficial for you even if you don’t use sbt.
Using the Android Native Development Kit (NDK)DroidConTLV
Android NDK is used to integrate C/C++ code into Android applications. Learn when and how to use it ; and what it implies to do so from development, integration within Eclipse and Android Studio, to distribution.
http://fr.droidcon.com/2014/agenda/
http://fr.droidcon.com/2014/agenda/detail?title=The+Android+Native+Development+Kit
The Android NDK is used to integrate C/C++ code into Android applications and libraries.
Learn how you can use the NDK and NDK-based libraries with Eclipse and Android Studio, and how you can debug and optimize your code.
Discover what changes from the new Android Runtime may break your integration, and how you can target new 64-bit architectures with the upcoming android L-release.
Speaker : Alexander Weggerle, Intel
ShipItCon - Continuous Deployment and Multicloud with Ansible and KubernetesMihai Criveti
Continuous Deployment and Multi-Cloud with Ansible, Packer, OpenSCAP and Kubernetes
Building and automating a multi-cloud pipeline using Ansible, Packer, OpenSCAP and Molecule
Using Kubernetes to orchestrate containers at scale
ShipItCon is a community driven, not-for-profit conference about Software Delivery https://shipitcon.com/
The Basic Over of Swift as a new programming language.
This presentation is general look at Swift, please disregard the fact and references to the Swift scripting language which at the time thought to similar or same.
In this core java training session, you will learn Elements of Java programming. Topics covered in this session are:
• Quick review of some important concepts from last class
• History of Java
• JDK and JRE
• Byte Code and JVM (Java Virtual Machine)
• Platform Independence
• Principles of Object Oriented Programming
• Writing your first Java Application
• Elements of Java programming language
• Built in Data Types
• Conditional Statements
• Loops
For more information about this course visit on this link: https://www.mindsmapped.com/courses/software-development/learn-java-fundamentals-hands-on-training-on-core-java-concepts/
Programming in Java: Getting Started. Last delivered in 2016. All educational material listed or linked to on these pages in relation to King's College London may be provided for reference only, and therefore does not necessarily reflect the current course content.
GraphRAG is All You need? LLM & Knowledge GraphGuy Korland
Guy Korland, CEO and Co-founder of FalkorDB, will review two articles on the integration of language models with knowledge graphs.
1. Unifying Large Language Models and Knowledge Graphs: A Roadmap.
https://arxiv.org/abs/2306.08302
2. Microsoft Research's GraphRAG paper and a review paper on various uses of knowledge graphs:
https://www.microsoft.com/en-us/research/blog/graphrag-unlocking-llm-discovery-on-narrative-private-data/
Accelerate your Kubernetes clusters with Varnish CachingThijs Feryn
A presentation about the usage and availability of Varnish on Kubernetes. This talk explores the capabilities of Varnish caching and shows how to use the Varnish Helm chart to deploy it to Kubernetes.
This presentation was delivered at K8SUG Singapore. See https://feryn.eu/presentations/accelerate-your-kubernetes-clusters-with-varnish-caching-k8sug-singapore-28-2024 for more details.
Essentials of Automations: Optimizing FME Workflows with ParametersSafe Software
Are you looking to streamline your workflows and boost your projects’ efficiency? Do you find yourself searching for ways to add flexibility and control over your FME workflows? If so, you’re in the right place.
Join us for an insightful dive into the world of FME parameters, a critical element in optimizing workflow efficiency. This webinar marks the beginning of our three-part “Essentials of Automation” series. This first webinar is designed to equip you with the knowledge and skills to utilize parameters effectively: enhancing the flexibility, maintainability, and user control of your FME projects.
Here’s what you’ll gain:
- Essentials of FME Parameters: Understand the pivotal role of parameters, including Reader/Writer, Transformer, User, and FME Flow categories. Discover how they are the key to unlocking automation and optimization within your workflows.
- Practical Applications in FME Form: Delve into key user parameter types including choice, connections, and file URLs. Allow users to control how a workflow runs, making your workflows more reusable. Learn to import values and deliver the best user experience for your workflows while enhancing accuracy.
- Optimization Strategies in FME Flow: Explore the creation and strategic deployment of parameters in FME Flow, including the use of deployment and geometry parameters, to maximize workflow efficiency.
- Pro Tips for Success: Gain insights on parameterizing connections and leveraging new features like Conditional Visibility for clarity and simplicity.
We’ll wrap up with a glimpse into future webinars, followed by a Q&A session to address your specific questions surrounding this topic.
Don’t miss this opportunity to elevate your FME expertise and drive your projects to new heights of efficiency.
GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...James Anderson
Effective Application Security in Software Delivery lifecycle using Deployment Firewall and DBOM
The modern software delivery process (or the CI/CD process) includes many tools, distributed teams, open-source code, and cloud platforms. Constant focus on speed to release software to market, along with the traditional slow and manual security checks has caused gaps in continuous security as an important piece in the software supply chain. Today organizations feel more susceptible to external and internal cyber threats due to the vast attack surface in their applications supply chain and the lack of end-to-end governance and risk management.
The software team must secure its software delivery process to avoid vulnerability and security breaches. This needs to be achieved with existing tool chains and without extensive rework of the delivery processes. This talk will present strategies and techniques for providing visibility into the true risk of the existing vulnerabilities, preventing the introduction of security issues in the software, resolving vulnerabilities in production environments quickly, and capturing the deployment bill of materials (DBOM).
Speakers:
Bob Boule
Robert Boule is a technology enthusiast with PASSION for technology and making things work along with a knack for helping others understand how things work. He comes with around 20 years of solution engineering experience in application security, software continuous delivery, and SaaS platforms. He is known for his dynamic presentations in CI/CD and application security integrated in software delivery lifecycle.
Gopinath Rebala
Gopinath Rebala is the CTO of OpsMx, where he has overall responsibility for the machine learning and data processing architectures for Secure Software Delivery. Gopi also has a strong connection with our customers, leading design and architecture for strategic implementations. Gopi is a frequent speaker and well-known leader in continuous delivery and integrating security into software delivery.
Smart TV Buyer Insights Survey 2024 by 91mobiles.pdf91mobiles
91mobiles recently conducted a Smart TV Buyer Insights Survey in which we asked over 3,000 respondents about the TV they own, aspects they look at on a new TV, and their TV buying preferences.
State of ICS and IoT Cyber Threat Landscape Report 2024 previewPrayukth K V
The IoT and OT threat landscape report has been prepared by the Threat Research Team at Sectrio using data from Sectrio, cyber threat intelligence farming facilities spread across over 85 cities around the world. In addition, Sectrio also runs AI-based advanced threat and payload engagement facilities that serve as sinks to attract and engage sophisticated threat actors, and newer malware including new variants and latent threats that are at an earlier stage of development.
The latest edition of the OT/ICS and IoT security Threat Landscape Report 2024 also covers:
State of global ICS asset and network exposure
Sectoral targets and attacks as well as the cost of ransom
Global APT activity, AI usage, actor and tactic profiles, and implications
Rise in volumes of AI-powered cyberattacks
Major cyber events in 2024
Malware and malicious payload trends
Cyberattack types and targets
Vulnerability exploit attempts on CVEs
Attacks on counties – USA
Expansion of bot farms – how, where, and why
In-depth analysis of the cyber threat landscape across North America, South America, Europe, APAC, and the Middle East
Why are attacks on smart factories rising?
Cyber risk predictions
Axis of attacks – Europe
Systemic attacks in the Middle East
Download the full report from here:
https://sectrio.com/resources/ot-threat-landscape-reports/sectrio-releases-ot-ics-and-iot-security-threat-landscape-report-2024/
Transcript: Selling digital books in 2024: Insights from industry leaders - T...BookNet Canada
The publishing industry has been selling digital audiobooks and ebooks for over a decade and has found its groove. What’s changed? What has stayed the same? Where do we go from here? Join a group of leading sales peers from across the industry for a conversation about the lessons learned since the popularization of digital books, best practices, digital book supply chain management, and more.
Link to video recording: https://bnctechforum.ca/sessions/selling-digital-books-in-2024-insights-from-industry-leaders/
Presented by BookNet Canada on May 28, 2024, with support from the Department of Canadian Heritage.
DevOps and Testing slides at DASA ConnectKari Kakkonen
My and Rik Marselis slides at 30.5.2024 DASA Connect conference. We discuss about what is testing, then what is agile testing and finally what is Testing in DevOps. Finally we had lovely workshop with the participants trying to find out different ways to think about quality and testing in different parts of the DevOps infinity loop.
6. Objective-C’s dynamic nature
6
Objec5ve-‐C:
All available classes are in a set
Classes are dictionaries of methods
As
a
consequence:
Dynamic loading: loading new classes in the application’s “context”
Categories: adding new methods to existing classes
Method swizzling: exchange implementations of a method
Until the last consequences
7. NSBundle you said?
7
From
Apple
docs:
An
NSBundle
object
represents
a
loca%on
in
the
file
system
that
groups
code
and
resources
that
can
be
used
in
a
program.
NSBundle
objects
locate
program
resources,
dynamically
load
and
unload
executable
code,
and
assist
in
localiza;on.
You
build
a
bundle
in
Xcode
using
one
of
these
project
types:
Applica;on,
Framework,
plug-‐ins.
You’re already using NSBundles
9. SIMBL and NSBundle
9
SIMBL:
Runs
as
a
daemon
in
the
system
Watches
for
new
processes
to
be
launched
by
launchd
This is done by observing NSWorkspace
Hooks
in
the
applica5on’s
process
and
loads
your
bundle
Uses the ScriptingBridge interface, SBApplication
SIMBL mixes your NSBundle with the application’s ones
10. The entry point
10
PrincipalClass and +load
NSBundles
have
an
Info.plist
file
Bundle version
Principal class: The principal class typically controls all the other classes
in the bundle; it should mediate between those classes and classes
external to the bundle
SIMBLTargetApplications: custom key to indicate applications where you
want the bundle loaded by SIMBL
+load
method
is
called
whenever
any
class
is
loaded
in
an
applica5on’s
address
space
SIMBL
plugins
use
+load
in
the
Principal
Class
to
ini5alise
11. Your hooking points
11
Singletons
[NSApplication sharedApplication]
[NSNotificationCenter defaultCenter]
[NSHTTPCookieStorage sharedHTTPCookieStorage],…
Well-‐known
classes
(by
method
swizzling)
NSWindow,…
Classes
found
by
introspec5on
Open source code
Debugging the process
14. Running and debugging in Xcode
14
Run
Script
build
phase
to
install
your
project,
run
your
target
applica5on
and
aXach
the
debugger
to
it
https://github.com/iandai/Debug-SIMBL-Plugin
15. List classes in a binary
15
class-dump
Generates
.h
files
for
all
classes
and
methods
found
in
a
file
hXp://stevenygard.com/projects/class-‐dump/
16. List loaded classes at runtime
16
-(void) printClasses
{
int numClasses;
Class * classes = NULL;
classes = NULL;
numClasses = objc_getClassList(NULL, 0);
if (numClasses > 0 )
{
classes = (__unsafe_unretained Class *)malloc(sizeof(Class) *
numClasses);
numClasses = objc_getClassList(classes, numClasses);
for (int i = 0; i < numClasses; i++) {
Class c = classes[i];
NSLog(@"%s", class_getName(c));
}
free(classes);
}
}
18. Objective-C tracing
18
Console and graphical debugger
hXp://www.dribin.org/dave/blog/archives/2006/04/22/
tracing_objc/
command line: NSObjCMessageLoggingEnabled=YES
llvm: call (void)instrumentObjcMessageSends(YES)
dtrace
sudo dtrace -q -n 'objc1234:::entry { printf("%s %sn", probemod,
probefunc); }' // where 1234 is the process ID of the app.
19. F-Script
19
Console and graphical debugger
hXp://www.fscript.org/
hXp://areciv.com/blog/2014/08/f-‐script-‐injec5on-‐in-‐
mavericks/
(also
works
for
Yosemite)
Tip: put the Framework under /System, so that you can also get to it
from a sandboxed application
21. SIMBL future
21
Doesn’t look that good
SIMBL
project
no
longer
maintained,
not
suppor5ng
sandboxed
applica5ons
EasySIMBL
supports
sandboxed
applica5ons
up
to
Yosemite
SwiB
design
is
not
so
dynamic
Still compatible with Objective-C to some extent
One of the main speed gains is because the classes and methods are
statically compiled if possible
Security
concerns
SIMBL allows you to do virtually anything in a process