Explore our latest insights on the most interesting technologies.

Diagram As Code

• Valery Brasseur
• 8 Min To Read
• 25 Jul, 2023
• • Development and programming

Diagram as Code (DaC) is a methodology that allows you to create and maintain software architecture diagrams using code. With DaC, you can define the structure of your application in a declarative way, using a domain-specific language (DSL) or a programming language, and generate diagrams from that code automatically. This approach has many benefits over manual diagramming, such as improved consistency, better maintainability, and increased automation.

Invisible code and XSS attacks

• Sylvain Pollet-Villard
• 11 Min To Read
• 19 Jul, 2023
• • Cybersecurity

Trojan: Attacks from the inside

XSS attacks were quite common at the time of the early web. They were used to steal cookies, to redirect users to malicious websites, to inject malicious code in the page, etc. Websites were more vulnerable to XSS at that time because they used a lot server-side templating with technologies like PHP or JSP, with very few built-in protections for injecting JavaScript code into HTML responses. Today, we are much more careful about escaping user inputs and evaluating HTML dynamically. We use frameworks like React or Vue.js to build our web applications, which are based on declarative templating that escape all HTML by default and encourage sending serialized data instead of HTML on the wire. Dynamic code evaluation is considered a bad practice and injection patterns are catched by code analysis tools like ESLint or SonarQube. XSS attacks have therefore to find more creative ways to inject malicious code into the page. If they can’t inject from the outside, they will try to inject from the inside, targeting the code of the application itself. They can do that directly through project dependencies or pull requests to open source projects, or indirectly through StackOverflow answers, blog posts, AI chatbots, etc.

Gitpod: Your mobile dev cloud IDE

• Ibrahim Gharbi
• 7 Min To Read
• 27 Jun, 2023
• • Development and programming

This article presents Gitpod from a mobile developer’s perspective and guides you through the process of creating an Android Studio IDE on the cloud using Gitpod, covering everything from workspace configuration to device connection.

Creating an iCalendar event with HTML content

• Yassine Benabbas
• 5 Min To Read
• 20 Jun, 2023
• • Software engineering

Introduction

One of the most used open standards open for exchanging calendar and scheduling information between users and computers is iCalendar. An iCalendar file is simply a text file with .ics extensions. Since this is open standard, it is supported by many apps, such as Outlook. The icalendar.org website provides a great introduction and some history about the iCalendar standard.

Spring Boot 3 and GraalVM

• Max Beckers
• 7 Min To Read
• 06 Jun, 2023
• • Development and programming

Spring Boot 3 comes with the support for native images. This is the part for GraalVM . GraalVM transitions from a just-in-time (JIT) compiler built into OpenJDK to an ahead-of-time (AOT) compilation. As a result, it speeds up the startup time and reduces the memory usage of (Micro-)Services, improving the efficiency for cloud environments.

Govmomi a VMware toolbox

• Valery Brasseur
• 6 Min To Read
• 18 Apr, 2023
• • Development and programming

What is Govmomi

Govmomi is an open-source library for managing VMware vSphere. It allows developers to create applications to manage VMware vSphere resources, such as virtual machines, networks and storage.