Open-source News

Blend2D, a software-based 2D renderer with JIT pipeline construction with aims to be a high performance vector graphics engine, is now faster thanks to multi-threading...

With no sign of Solaris.Next either as Solaris 11.5 or Solaris 12, nor is it really expected to happen following Oracle's actions in recent years from layoffs to dismissing Solaris 12 when it was on their road-map at one point for 2017, Solaris 11.4 continues just being SRU'ed...

Oracle Punts Its Twentieth Update To Solaris 11.4  Phoronix

Logging Into Linux With A 1930s Teletype  Hackaday

Future AMD CPUs (more than likely, Zen 3) will be bearing larger CPU microcode sizes, resulting in the Linux kernel needing a change to load them...

The Linux Kernel Prepares For Larger AMD CPU Microcode Updates  Phoronix

Lutris 0.5.6 is out today as the popular open-source Linux game manager/launcher...

Ubuntu 4.10 “Warty Warthog” Review: Back To The First Ubuntu Linux Desktop  Fossbytes

As schools and universities are shutting down around the globe due to COVID-19, many of us in academia are wondering how we can get up to speed and establish a stable workflow to get our podcasts, online lectures, and tutorials out there for our students.

Open source software (OSS) has a key role to play in this situation for many reasons, including:

read more

Unlike traditional stock exchanges like the New York Stock Exchange that have fixed trading hours, cryptocurrencies are traded 24/7, which makes it impossible for anyone to monitor the market on their own.

Often in the past, I had to deal with the following questions related to my crypto trading:

read more

jet capsule reveals multifunctional 'linux' vehicle for water,land+sky mobility  Designboom

Tweaking history on Linux  Network World

In the previous articles in this series about cloud-native Java applications, I shared 6 requirements of cloud-native software and 4 things cloud-native Java must provide. But now you might want to implement these advanced Java applications in your local machine without climbing a steep learning curve.

read more

In this article, you will learn how to share a wired (Ethernet) internet connection via a wireless hotspot and also how to share a wireless internet connection via a wired connection on a Linux...

Open source powers more than 80% of the technology we all use every day, yet many open source developers and projects face barriers, from generating funding to attracting contributors,  to finding and fixing vulnerabilities in the code base to drive mainstream adoption.

Touted as an industry first, CommunityBridge is a platform created by Linux Foundation engineers to empower open source projects — and the individuals and organizations who support them — to advance sustainability, security, transparency and diversity in open source technology. Since the launch of the platform in the middle of 2019, we have come a long way, and have started making an impact.

CommunityBridge Funding is a trusted crowdfunding service that lets maintainers raise funds to support project activities like development, documentation, mentorships, marketing, travel, etc.

This service is governed and supported by the Linux Foundation with 100% of the funds going right into the hands of the developers. The Linux foundation is currently matching donations for diversity candidates and also underwriting any platform and payment processor fees. Book-keeping, processing of expense reports, reimbursements  and tax reporting is also provided free of charge.

Since inception, the funding platform has helped projects raise a total of $475K+ from 23 corporate and 355 individual sponsors and disbursed a total of ~$74K to contributors in various categories like projects and mentorships.

Acceptance of projects on this platform is selective and prioritized for high impact (based on downstream dependencies, github stars, forks, contributors) but underfunded projects.

Some of the Projects Actively Raising Funds

To apply your project for consideration or to support projects you use actively as an individual or corporate sponsor, please visit CommunityBridge Funding.

CommunityBridge EasyCLA streamlines the process of getting developers authorized under a project’s CLA for everyone:

• Coders can code more quickly by reducing manual steps to get themselves authorized.
• Corporations and projects can save time by reducing manual steps managing CLAs and their signatures
• Both Individual and Corporate CLA signing can be enforced for developers contributing to a project using GitHub or Gerrit

EasyCLA is the only solution in the community which effectively manages both individual and corporate CLA agreements. Since inception, EasyCLA has made CLA management a breeze for 19 open source projects.

Projects
Using EasyCLA Repositories
Authorized Individual
CLAs  Corporate
CLAs CLA
Managers Companies
Signing CLAs 19 872 9461 4486 1009 746 Projects With the Highest Number of Signed CLAs

Number of ICLAs: 9017
Number of CCLAs: 2488

Number of ICLAs: 89
Number of CCLAs: 54

Number of ICLAs: 60
Number of CCLAs: 707

Number of ICLAs: 51
Number of CCLAs: 448

Number of ICLAs: 68
Number of CCLAs: 28

ORAN Software Community

Number of ICLAs: 44
Number of CCLAs: 88

To learn more about how EasyCLA works or try onboarding your project, please visit CommunityBridge EasyCLA.

CommunityBridge Security enables open source developers to move quickly and securely by automatically finding vulnerabilities in the code and suggesting remediation techniques.

The CommunityBridge team has collaborated with Snyk.io to provide visibility into the security loopholes that get injected over time into the code base. This is how it works:

• Vulnerability scans run daily on project repositories in GitHub or Git
• Manifest files are deconstructed to determine the entire dependency chain of the project including transitive dependencies.
• Issues detected are evaluated against the National Vulnerability Database (NVD) and security experts in the community.
• Known CVEs and CWEs are linked to the issues if present.
• Evidence of how to replicate the issue based on community artifacts like hacker reports, GitHub reports, Whitepapers etc are attached.
• Remediation techniques and potential fixes are also suggested to the users.

We recently started onboarding all Linux Foundation projects on this service and have started publishing vulnerability reports for contributors to analyze and act on.

Some of the Projects With Vulnerabilities

Total Issues: 263
Fixable: 82

Total Issues: 195
Fixable: 140

Total Issues: 153
Fixable: 3

Total Issues: 124
Fixable: 113

Total Issues: 121
Fixable: 114

Total Issues: 117
Fixable: 84

To learn more about how CommunityBridge Security works or try onboarding your project, please visit CommunityBridge Security. Access to detailed vulnerability reports is gated for contributors to the project and you will need to contact admin@communitybridge.org to request access.

CommunityBridge Mentorship helps you increase the number and diversity of developers contributing to your project by providing mentorships and internships.

It is in essence a  matchmaking service which lets you:

• Attract mentees by providing referrals to top companies committed to interviewing your candidates
• Incentivize participation by offering free training, industry event passes and certifications
• Expand your community of talented, diverse, and committed developers by offering paid internships with matching diversity grants
• Attract funding, mentors, and mentees when you are listed on the mentorship leaderboard

Since our launch last summer, the mentorship platform supported 12 projects with mentorships. 27 Mentees were selected from 750 Applicants and used the platform to get stipends. Projects Supported By Mentorship Program Since Summer 2019 Launch 128 potential Mentors applied and 52 Mentors were selected and onboarded onto the platform. Some of the Active Mentors on the Platform

To learn more about mentorships, or to enroll your project, please visit CommunityBridge Mentorship.

The post Update from the CommunityBridge Development Team appeared first on The Linux Foundation.

For years there have been patches floating around for helping the performance of context switching sensitive workloads going back to "Ivy Bridge" CPUs but without ever crossing the finish line to get this "FSGSBASE" support merged. But now in 2020 it's once again being attempted...

Linux Developers Are Once Again Trying To Enable Intel FSGSBASE For Better Performance  Phoronix

IBM extends z15 mainframe family, intensifies Linux security  Network World

Red Hat Linux Hires Former IBM, Oracle Exec as Channel VP  Channel Futures

Microsoft Patch Tuesday, April 2020 Edition  Krebs on Security