Evolving the ASF Brand - The Apache Software Foundation Blog

By: Shane Curcuru, Board Chair In the spirit of open communications that is core to our ethos, The Apache Software Foundation (ASF) is announcing we are…

July 18, 2024 at 12:01PM

via Instapaper

SCALE documentation

What is SCALE?# SCALE is a GPGPU programming toolkit that allows CUDA applications to be natively compiled for AMD GPUs. SCALE does not require the CUDA program or its build system to be modified. Support for more GPU vendors and CUDA APIs is in development.

Tags:

via Pocket https://docs.scale-lang.com/

July 18, 2024 at 11:15AM

exo-explore/exo at console.dev

exo: Run your own AI cluster at home with everyday devices. Maintained by exo labs. Forget expensive NVIDIA GPUs, unify your existing devices into one powerful…

July 18, 2024 at 10:49AM

via Instapaper

darrenburns/posting at console.dev

Posting. A powerful HTTP client that lives in your terminal. Posting is an HTTP client, not unlike Postman and Insomnia. As a TUI application, it can be used…

July 18, 2024 at 10:49AM

via Instapaper

DTW rebuilding 67 bathrooms in McNamara Terminal -- occupied lights, shelves, stools, more

ROMULUS, Mich. – Detroit Metro Airport is completely stripping down and rebuilding 67 bathrooms in the McNamara Terminal.

Tags:

via Pocket https://www.clickondetroit.com/news/local/2024/07/17/dtw-rebuilding-67-bathrooms-in-mcnamara-terminal-occupied-lights-shelves-stools-more/

July 18, 2024 at 10:45AM

Leaked Docs Show What Phones Cellebrite Can (and Can’t) Unlock

Cellebrite, the well-known mobile forensics company, was unable to unlock a sizable chunk of modern iPhones available on the market as of April 2024, according…

July 18, 2024 at 10:26AM

via Instapaper

CVE-2024-5321

https://github.com/kubernetes/kubernetes/issues/126161

Incorrect permissions on Windows containers logs

via Kubernetes Vulnerability Announcements - CVE Feed https://kubernetes.io/docs/reference/issues-security/official-cve-feed/

July 17, 2024 at 09:06AM

Week Ending July 14, 2024

https://lwkd.info/2024/20240717

Developer News

Maintainer session proposals for Kubecon are due this Sunday. Write one for your SIG now. Don’t miss the deadline!

The Contributor Summit is looking for contributors to design the swag and the award. Also, proposals for the Summit are still open.

Subprojects kpng and etcdadm are being archived. If you still use etcd-manager, it’s in a new repo owned by SIG-Etcd.

CVE-2024-5321 has been reported against Kubernetes clusters running Windows. This vulnerability lets users with incorrect permissions read and modify container logs.

Release Schedule

Next Deadline: Code Freeze, July 24th

Code freeze is happening in a week! If your KEP is opted in for the v1.31 release, make sure to get your PRs merged in time before the deadline.

Kubernetes v1.27.16, v1.28.12, v1.29.7 and v1.30.3 patch releases are now live!

Featured PR

125868: Add –for=create option to kubectl wait

After a few false starts, we are trying again to support a “wait for create” mechanism for kubectl wait. The new --for option will allow pluggable wait conditions beyond the original “wait for delete” and new “wait for create” (or really “wait for exists”). This can already help streamline shell scripts, and talk to SIG-CLI if you’re interested in proposing additional modes!

KEP of the Week

4633: Only allow Anonymous Auth for configured endpoints

Allowing anonymous authentication against all or most Kubernetes endpoints can be a huge security hole if you make simple mistakes with RBAC. This KEP implements a way to disable anonymous auth for all endpoints except a specificed list (usually healthz, readyz, and livez). This will close a lot of runtime security holes.

4633 was introduced by Vinayak Goyal in May, and is expected to be Alpha in 1.31.

Other Merges

You can delay terminal Job conditions until all pods are terminal

Node.Status.Features.SupplementalGroupsPolicy helps implement fine-grained SupplementalGroups control

e2e tests added for kubelet support for split image filesystem

Bug fix for when PodIP field is temporarily removed for a terminal pod

Dynamic client’s List method now supports API streaming

kube-scheduler implements scheduling hints for the VolumeRestriction plugin

Bug fix in the API server where empty collections of ValidatingAdmissionPolicies did not have an items field

TopologyManager policy option ‘max-allowable-numa-nodes’ added to configures maxAllowableNUMANodes for kubelet

New static policy option SpreadPhysicalCPUsPreferredOption to spread cpus across physical cpus

kube-proxy: Linux and Windows sections adhering to the v1alpha2 specifications added

PodIP.IP and HostIP.IP are required fields, fixing a regression

omitempty for optional Job Pod Failure Policy fields

UserNamespaces field added to NodeRuntimeHandlerFeatures to support the ProcMountType option.

Kubelet on Windows to stop using wmic to query for UUIDs

Improvements to lock utilization in scheduling queue to increase scheduling throughput when there are many gated pods

Promotions

JobPodFailurePolicy to GA

PersistentVolumeLastPhaseTransitionTime to GA

KubeletCgroupDriverFromCRI to beta

ElasticIndexedJob to GA

Subprojects and Dependency Updates

Prometheus v2.53.1: Bug-fix for remote write dropping samples when the sending flow stalled for longer than it takes to write one WAL segment

kubernetes/cloud-provider-openstack v2.30.2: Openstack Cloud Controller Manager Helm Chart

via Last Week in Kubernetes Development https://lwkd.info/

July 17, 2024 at 06:00PM

Import and export Markdown in Google Docs

What’s changing In 2022, we introduced expanded support for composing with Markdown in Google Docs on web. Today, we’re introducing highly-requested features…

July 17, 2024 at 11:51AM

via Instapaper

The Post-Valkey World

Six years ago in August, Redis – then known as Redis Labs – applied a new license called the Commons Clause to a set of modules, or extensions to the core Redis…

July 16, 2024 at 12:10PM

via Instapaper

1Password product enhancements codes, auto-save, and more | 1Password

Since the beginning of the year, we’ve committed to enhancing your experience in ways that will help you easily accomplish whatever you set out to do when you…

July 16, 2024 at 12:05PM

via Instapaper

TLA+ Foundation Grant Program Call for Proposals

The 2024 TLA+ Foundation Grant Program is aimed at advancing the state of the art in the TLA+ specification and fostering the experience of using TLA+ in…

July 16, 2024 at 11:50AM

via Instapaper

Your project is political, people's identities aren't - Duck Alignment Academy

July 16, 2024 at 06:59AM

via Instapaper

taubyte/tau: Open source distributed Platform as a Service (PaaS). A self-hosted Vercel / Netlify / Cloudflare alternative.

Open Source Git-Native CDN PaaS An alternative to: Vercel, Netlify, Cloudflare, Amazon Lambda with CloudFront, S3, ElastiCache & SQS, Etc... Tau is a framework…

July 16, 2024 at 06:56AM

via Instapaper

AMD to buy Finnish start-up Silo AI for $665mn in drive to compete wi…

An employee inspects AMD graphics processing units at a crypto farm in Romania © Akos Stiller/Bloomberg current progress 63% Michael Acton(opens a new window)…

July 16, 2024 at 06:54AM

via Instapaper