A few years ago, Heartbleed epitomized a massive open source sustainability problem for critical parts of the internet infrastructure. The bug, which affected the popular OpenSSL cryptographic software library, notably compromised the confidentiality of 4.5 million US patient records and cost the industry an estimated $500M.
It was soon revealed that the root-cause of the issue was that OpenSSL was precariously understaffed. Open source sustainability became a major theme overnight. Stories of maintainer burn-out made the headlines. And tentative solutions started to emerge, most of them donation-based.
In this talk we'll explore a number of existing strategies to fund open source and make it more sustainable, from patronage to dedicated ad networks. And we'll defend the idea that the best path to open source sustainability is to help companies understand the tangible business value they can get from contributing to open source.
Intervento di Pietro Leo - Executive Architect, IBM a
OPEN DAY - COMPETENZE DIGITALI
Sala Convegni Pad. 152 Regione Puglia Fiera del levante Bari
15 maggio 2015 ore 9.30
Emerging trends in software development: The next generation of storageDonnie Berkholz
Donnie Berkholz leads the development, DevOps and IT ops team at 451 Research. In this talk, he will draw on his experience and research to discuss emerging trends in how software across the stack is created and deployed, with a particular focus on relevance to storage development and usage. Donnie will discuss the potential impacts of these trends to how storage software is built as well as what kinds of new use cases it needs to support.
Towards a sustainable solution to open source sustainability, OW2online20, Ju...OW2
A few years ago, Heartbleed epitomized a massive open source sustainability problem for critical parts of the internet infrastructure. The bug, which affected the popular OpenSSL cryptographic software library, notably compromised the confidentiality of 4.5 million US patient records and cost the industry an estimated $500M. It was soon revealed that the root cause of the issue was that OpenSSL was precariously understaffed. Open source sustainability became a major theme overnight. Stories of maintainer burn-out made the headlines. And tentative solutions started to emerge, most of them donation-based. In this talk we’ll explore a number of existing strategies to fund open source and make it more sustainable, from patronage to dedicated ad networks. And we’ll defend the idea that the best path to open source sustainability is to help companies understand the tangible business value they can get from contributing to open source.
Containers, Serverless, Polyglot Development World, And Others…10 trends resh...PROIDEA
During this presentation, you will learn about the 10 changes that might reshape the developer tools market in the next 10 years. Jarek will discuss containers, serverless functions, and how it all supports an agile and CI/CD experience. The move to a polyglot development world means most applications will be written in a mix of languages, with developers favoring tools that help them navigate easily between languages. Jarek will also walk us through the evolution away from stand-alone developer workstations toward cloud-and-container based development environments offered as a service.
Intervento di Pietro Leo - Executive Architect, IBM a
OPEN DAY - COMPETENZE DIGITALI
Sala Convegni Pad. 152 Regione Puglia Fiera del levante Bari
15 maggio 2015 ore 9.30
Emerging trends in software development: The next generation of storageDonnie Berkholz
Donnie Berkholz leads the development, DevOps and IT ops team at 451 Research. In this talk, he will draw on his experience and research to discuss emerging trends in how software across the stack is created and deployed, with a particular focus on relevance to storage development and usage. Donnie will discuss the potential impacts of these trends to how storage software is built as well as what kinds of new use cases it needs to support.
Towards a sustainable solution to open source sustainability, OW2online20, Ju...OW2
A few years ago, Heartbleed epitomized a massive open source sustainability problem for critical parts of the internet infrastructure. The bug, which affected the popular OpenSSL cryptographic software library, notably compromised the confidentiality of 4.5 million US patient records and cost the industry an estimated $500M. It was soon revealed that the root cause of the issue was that OpenSSL was precariously understaffed. Open source sustainability became a major theme overnight. Stories of maintainer burn-out made the headlines. And tentative solutions started to emerge, most of them donation-based. In this talk we’ll explore a number of existing strategies to fund open source and make it more sustainable, from patronage to dedicated ad networks. And we’ll defend the idea that the best path to open source sustainability is to help companies understand the tangible business value they can get from contributing to open source.
Containers, Serverless, Polyglot Development World, And Others…10 trends resh...PROIDEA
During this presentation, you will learn about the 10 changes that might reshape the developer tools market in the next 10 years. Jarek will discuss containers, serverless functions, and how it all supports an agile and CI/CD experience. The move to a polyglot development world means most applications will be written in a mix of languages, with developers favoring tools that help them navigate easily between languages. Jarek will also walk us through the evolution away from stand-alone developer workstations toward cloud-and-container based development environments offered as a service.
Open Source Software Development by TLV PartnersRoy Leiser
Our insights about Open Source software development. Trends, leading brands and practices, success stories, important Exists, Pros and Cons and much more.
The .NET ecosystem has radically transformed over the past 10 years; in the distant past, Microsoft actively discouraged and dismissed the possibility and viability of OSS categorically. Now, everything is open source and Microsoft is one of the single biggest contributors of open source globally. That same trend is strongly reflected in the .NET community - large companies include banks, insurers, airlines, manufacturers, and health care giants all feel increasingly comfortable using OSS products in the core of applications that generate billions of dollars a year in capital.
In this talk, we're going to cover the scope of the sustainability crisis, how it may affect you, and how to help prevent it both as an OSS user or as a contributor.
What's new in the latest source{d} releases!source{d}
We recently announce source{d} 0.11, 0.12 and 0.13, two releases with lots of new features and performance improvements. From windows support, to port management, C# language support and new SQL querying, there is a lot for you to get excited about. We also discussed why you should care about Engineering Observability and what are some of the top use cases for source{d} in enterprises.
A talk at the Sloan School of Management, MIT on RepRap and the democratization of Fabrication Technology and emergence of open hardware communities.
Innovation Lab meeting organized by Professor von Hippel.
Philly ETE 2016: Securing Software by Constructionjxyz
The high-profile attacks and data-breaches of the last few years have shown us the importance of securing our software. While it is good that we are seeing more tools that can analyze systems for vulnerabilities, this does not help the programmer write secure code in the first place. To prevent security from becoming a bottleneck–and expensive security mistakes from becoming increasingly probable–we need to look to techniques that allow us to secure software by construction.
This talk has two parts. First, I will present technical ideas from research, including my own, that help secure software by construction. Even though these are reasonable ideas, however, the gap between academia and industry often prevents these ideas from becoming realized in practice. Second, I will discuss what prevents longer-term security solutions from being commercialized, how we started the Cybersecurity Factory accelerator bridge the research/industry gap, and how we can work together to address the issues that remain.
http://2016.phillyemergingtech.com/session/securing-software-by-construction/
Learn how to get small teams to embrace both using and contributing to open source in a healthy way. See case studies of open source projects and how they have contributed to the growth of a small team.
As part of Global Entrepreneurship Week (GEW) 2017, the EdTech Network hosted Dr. Ben Amaba, IBM Worldwide Leader for Hybrid Cloud Software, for a presentation on how today’s global innovators, entrepreneurs, and leaders are changing industries, cultures, and practices through digitization. Dr. Amaba explored how IBM is tapping the cloud, mobile, and analytics technology to compete and to harness innovation and knowledge to drive the “art of the possible” in order to achieve results and target new markets in a manner never imagined.
Secure Your DevOps Pipeline Best Practices Meetup 08022024.pptxlior mazor
Our technology, work processes, and activities all depend on if we trust our software to be developed in a safe and secure manner. Join us virtually for our upcoming "Secure Your DevOps Pipeline: Best Practices" Meetup to learn how to integrate security in the development process, DevSecOps advance methods, manage the implement secure coding analysis and how to manage software security risks.
This lecture was given by Mary Poppendieck, Lean software development expert, in the recent AgileTour 2010 (Haifa Israel) which was organized by Ignite and was held on Nov 11 2010 in the Technion, the leading academic institute for technological studies in Israel
Open Source Software Development by TLV PartnersRoy Leiser
Our insights about Open Source software development. Trends, leading brands and practices, success stories, important Exists, Pros and Cons and much more.
The .NET ecosystem has radically transformed over the past 10 years; in the distant past, Microsoft actively discouraged and dismissed the possibility and viability of OSS categorically. Now, everything is open source and Microsoft is one of the single biggest contributors of open source globally. That same trend is strongly reflected in the .NET community - large companies include banks, insurers, airlines, manufacturers, and health care giants all feel increasingly comfortable using OSS products in the core of applications that generate billions of dollars a year in capital.
In this talk, we're going to cover the scope of the sustainability crisis, how it may affect you, and how to help prevent it both as an OSS user or as a contributor.
What's new in the latest source{d} releases!source{d}
We recently announce source{d} 0.11, 0.12 and 0.13, two releases with lots of new features and performance improvements. From windows support, to port management, C# language support and new SQL querying, there is a lot for you to get excited about. We also discussed why you should care about Engineering Observability and what are some of the top use cases for source{d} in enterprises.
A talk at the Sloan School of Management, MIT on RepRap and the democratization of Fabrication Technology and emergence of open hardware communities.
Innovation Lab meeting organized by Professor von Hippel.
Philly ETE 2016: Securing Software by Constructionjxyz
The high-profile attacks and data-breaches of the last few years have shown us the importance of securing our software. While it is good that we are seeing more tools that can analyze systems for vulnerabilities, this does not help the programmer write secure code in the first place. To prevent security from becoming a bottleneck–and expensive security mistakes from becoming increasingly probable–we need to look to techniques that allow us to secure software by construction.
This talk has two parts. First, I will present technical ideas from research, including my own, that help secure software by construction. Even though these are reasonable ideas, however, the gap between academia and industry often prevents these ideas from becoming realized in practice. Second, I will discuss what prevents longer-term security solutions from being commercialized, how we started the Cybersecurity Factory accelerator bridge the research/industry gap, and how we can work together to address the issues that remain.
http://2016.phillyemergingtech.com/session/securing-software-by-construction/
Learn how to get small teams to embrace both using and contributing to open source in a healthy way. See case studies of open source projects and how they have contributed to the growth of a small team.
As part of Global Entrepreneurship Week (GEW) 2017, the EdTech Network hosted Dr. Ben Amaba, IBM Worldwide Leader for Hybrid Cloud Software, for a presentation on how today’s global innovators, entrepreneurs, and leaders are changing industries, cultures, and practices through digitization. Dr. Amaba explored how IBM is tapping the cloud, mobile, and analytics technology to compete and to harness innovation and knowledge to drive the “art of the possible” in order to achieve results and target new markets in a manner never imagined.
Secure Your DevOps Pipeline Best Practices Meetup 08022024.pptxlior mazor
Our technology, work processes, and activities all depend on if we trust our software to be developed in a safe and secure manner. Join us virtually for our upcoming "Secure Your DevOps Pipeline: Best Practices" Meetup to learn how to integrate security in the development process, DevSecOps advance methods, manage the implement secure coding analysis and how to manage software security risks.
This lecture was given by Mary Poppendieck, Lean software development expert, in the recent AgileTour 2010 (Haifa Israel) which was organized by Ignite and was held on Nov 11 2010 in the Technion, the leading academic institute for technological studies in Israel
Software Delivery At the Speed of AI: Inflectra Invests In AI-Powered QualityInflectra
In this insightful webinar, Inflectra explores how artificial intelligence (AI) is transforming software development and testing. Discover how AI-powered tools are revolutionizing every stage of the software development lifecycle (SDLC), from design and prototyping to testing, deployment, and monitoring.
Learn about:
• The Future of Testing: How AI is shifting testing towards verification, analysis, and higher-level skills, while reducing repetitive tasks.
• Test Automation: How AI-powered test case generation, optimization, and self-healing tests are making testing more efficient and effective.
• Visual Testing: Explore the emerging capabilities of AI in visual testing and how it's set to revolutionize UI verification.
• Inflectra's AI Solutions: See demonstrations of Inflectra's cutting-edge AI tools like the ChatGPT plugin and Azure Open AI platform, designed to streamline your testing process.
Whether you're a developer, tester, or QA professional, this webinar will give you valuable insights into how AI is shaping the future of software delivery.
State of ICS and IoT Cyber Threat Landscape Report 2024 previewPrayukth K V
The IoT and OT threat landscape report has been prepared by the Threat Research Team at Sectrio using data from Sectrio, cyber threat intelligence farming facilities spread across over 85 cities around the world. In addition, Sectrio also runs AI-based advanced threat and payload engagement facilities that serve as sinks to attract and engage sophisticated threat actors, and newer malware including new variants and latent threats that are at an earlier stage of development.
The latest edition of the OT/ICS and IoT security Threat Landscape Report 2024 also covers:
State of global ICS asset and network exposure
Sectoral targets and attacks as well as the cost of ransom
Global APT activity, AI usage, actor and tactic profiles, and implications
Rise in volumes of AI-powered cyberattacks
Major cyber events in 2024
Malware and malicious payload trends
Cyberattack types and targets
Vulnerability exploit attempts on CVEs
Attacks on counties – USA
Expansion of bot farms – how, where, and why
In-depth analysis of the cyber threat landscape across North America, South America, Europe, APAC, and the Middle East
Why are attacks on smart factories rising?
Cyber risk predictions
Axis of attacks – Europe
Systemic attacks in the Middle East
Download the full report from here:
https://sectrio.com/resources/ot-threat-landscape-reports/sectrio-releases-ot-ics-and-iot-security-threat-landscape-report-2024/
Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...Ramesh Iyer
In today's fast-changing business world, Companies that adapt and embrace new ideas often need help to keep up with the competition. However, fostering a culture of innovation takes much work. It takes vision, leadership and willingness to take risks in the right proportion. Sachin Dev Duggal, co-founder of Builder.ai, has perfected the art of this balance, creating a company culture where creativity and growth are nurtured at each stage.
Securing your Kubernetes cluster_ a step-by-step guide to success !KatiaHIMEUR1
Today, after several years of existence, an extremely active community and an ultra-dynamic ecosystem, Kubernetes has established itself as the de facto standard in container orchestration. Thanks to a wide range of managed services, it has never been so easy to set up a ready-to-use Kubernetes cluster.
However, this ease of use means that the subject of security in Kubernetes is often left for later, or even neglected. This exposes companies to significant risks.
In this talk, I'll show you step-by-step how to secure your Kubernetes cluster for greater peace of mind and reliability.
Neuro-symbolic is not enough, we need neuro-*semantic*Frank van Harmelen
Neuro-symbolic (NeSy) AI is on the rise. However, simply machine learning on just any symbolic structure is not sufficient to really harvest the gains of NeSy. These will only be gained when the symbolic structures have an actual semantics. I give an operational definition of semantics as “predictable inference”.
All of this illustrated with link prediction over knowledge graphs, but the argument is general.
Connector Corner: Automate dynamic content and events by pushing a buttonDianaGray10
Here is something new! In our next Connector Corner webinar, we will demonstrate how you can use a single workflow to:
Create a campaign using Mailchimp with merge tags/fields
Send an interactive Slack channel message (using buttons)
Have the message received by managers and peers along with a test email for review
But there’s more:
In a second workflow supporting the same use case, you’ll see:
Your campaign sent to target colleagues for approval
If the “Approve” button is clicked, a Jira/Zendesk ticket is created for the marketing design team
But—if the “Reject” button is pushed, colleagues will be alerted via Slack message
Join us to learn more about this new, human-in-the-loop capability, brought to you by Integration Service connectors.
And...
Speakers:
Akshay Agnihotri, Product Manager
Charlie Greenberg, Host
UiPath Test Automation using UiPath Test Suite series, part 3DianaGray10
Welcome to UiPath Test Automation using UiPath Test Suite series part 3. In this session, we will cover desktop automation along with UI automation.
Topics covered:
UI automation Introduction,
UI automation Sample
Desktop automation flow
Pradeep Chinnala, Senior Consultant Automation Developer @WonderBotz and UiPath MVP
Deepak Rai, Automation Practice Lead, Boundaryless Group and UiPath MVP
Smart TV Buyer Insights Survey 2024 by 91mobiles.pdf91mobiles
91mobiles recently conducted a Smart TV Buyer Insights Survey in which we asked over 3,000 respondents about the TV they own, aspects they look at on a new TV, and their TV buying preferences.
3. ! 4.5 MILLION
The number of US patient records whose confidentiality was
compromised.
" $500 MILLION
Estimated cost to the industry.
Heartbleed bug impact
4. # UBIQUITOUS
2/3 of active sites on the Internet rely on the OpenSSL library.
⚠ CRITICAL
OpenSSL encrypts private communications, bank transactions, medical
records, etc.
% UNDERFUNDED
Only 1 full-time maintainer, shoestring budget ($2k/year).
Pivotal moment where tech industry
realizes open source is:
5.
6.
7. & FOCUS
Originally aimed at artists, musicians & writers.
' GOAL
Create a “meaningful revenue stream.”
( SUCCESS STORY
Evan You (pictured), creator of Vue.js. Nets over
$17K per month.
❌ REPRODUCIBLE?
Not really. Very few devs have a large enough
revenue stream to work on OSS full-time.
8.
9. * GITHUB ISSUE MARKET
Allows project owners to add bounties to GitHub issues.
Devs submit their work as a pull request.
" $500,000
Amount of bounties paid on the platform in 2018.
⛓ BLOCKCHAIN-BASED
Developers received bounties in Ether.
, WHOLE ECOSYSTEM
GitCoin also provides an ad network (CodeFund), and a
Patreon-like solution (Grants).
10. - CONTEXTUAL ADS
Advertise on the websites of open source
projects.
. HIRING FOCUS
Dedicated solution for hiring developers.
/ $6K PER MONTH
Redistributed to project maintainers out of
$10K monthly revenue.
11.
12. 0 WHAT DOES IT DO?
Provides non profit status (501c6) to open source
projects & transparency as to how funds are used.
( SUCCESS STORY
WebPack reached $400K+ yearly funding in 2018.
Win-win situation for key sponsor (trivago).
1 LONG TAIL PROBLEM
A few projects are getting most of the funding
(>25% of total funds for WebPack in 2017).
15. 2 WHAT IS IT?
Red Hat business model for the long tail.
3 SERVICES
Provides security updates, maintenance, and
legal assurances for all open source projects
in an organization’s stack.
4 HOW?
By paying the actual maintainers to do the
work.
( SUCCESS STORY
None yet. It’s too early.
27. “[P]art of the reason much of open source is so good, and
often so superior to closed-source commercial projects, is the
natural boundary of constraints. If you are not being paid or
otherwise compensated directly for your work, you're less
likely to needlessly embellish it. You're solving the problems
for you and your mates, likely in the simplest way you could,
so you can get back to whatever you originally intended to do
before starting to shave the yak.”
—DHH, The Perils of mixing open source and money, Nov 12, 2013.
28. Developers working on the Linux kernel
Source: Linux Kernel Development report 2016.
Non employed
7.7%
Employed
92.3%
34. Software
Engineer
Sarcasm (by-product)
Problem
Co!ee OPEN SOURCE CODE
Commons
Software
Engineer
Sarcasm (by-product)
Problem
Co!ee
BY-PRODUCTS
Conversations
Code reviews
Mentoring
Networking
Etc.
Increase code quality
Improve documentationLower technical debt
Influence project direction
Perceived as industry leaderAccess to talent pool
Remote friendlyReduced churn
Improved culture & morale
Increase e"ciencies
“Knowledge spillover” Serendipity
Innovation
Level-up engineers
Improve soft-skills
Adopt best-practices
Access to expert networkBetter career opportunities
35. BY-PRODUCTS
Increase code quality
Improve documentation
Lower technical debt
Influence project direction
Perceived as industry leader
Access to talent pool
Remote friendly
Reduced churn
Improved culture & moraleIncrease e"ciencies
“Knowledge spillover”
Serendipity
Innovation
Level-up engineers
Improve soft-skills
Adopt best-practices
Access to expert network
Better career opportunities
PROJECT ORGANIZATIONTEAMINDIVIDUAL
36. 2×
TWICE AS EFFICIENT
Contributing firms capture up to 100% more
productive value from usage of open source than
their free-riding peers.
Source: Franck Nagle, Learning by Contributing, 2017.
37. 75%of Facebook’s new engineering recruits
mention Facebook’s open source Program
as a key reason they accepted their o!er
38. The key to open source sustainability is to make organizations
understand the ROI of contributing to open source:
What’s in it for them.