Microsoft

Malicious npm packages abuse dependency confusion to profile developer environments

A dependency confusion campaign leveraged 33 malicious npm packages to collect reconnaissance data from developer and build environments. This report details the attack chain, observed tradecraft, and ...
GitHub

Spring Boot Using Java Modules

Java is one of the most mature and persistent development languages that exist. Recently it entered into a 6-month release schedule which enabled to deliver more frequent updates to the language. One ...
Sporting News

Steelers vs. Vikings in Dublin 2025: Tickets, travel packages and game day guide

When the Pittsburgh Steelers and Minnesota Vikings meet in Dublin, Ireland, it won’t just be about touchdowns and tackles, it will be a cultural event that brings two passionate fanbases across the ...
CSOonline

Big hole in big data: Critical deserialization bug in Apache Parquet allows RCE

A flaw in code for handling Parquet, Apache’s open-source columnar data file format, allows attackers to run arbitrary code on vulnerable instances. The vulnerability, tracked as CVE-2025-30065, is a ...
GitHub

Testcontainers Java module for WireMock

NOTE: This project is under development, the GitHub Packages release is coming soon. Not all WireMock features are supported at the moment, and there might be incompatible changes before the 1.0 ...
InfoWorld

Node.js 22 arrives, backs ECMAScript modules

The latest Node release includes require() support for ES modules, improved WebSocket communications, and an update to Google's V8 JavaScript engine 2.4. Node.js 22 ...
InfoQ

Spring Modulith Structures Spring Boot 3 Applications with Modules and Events

A monthly overview of things you need to know as an architect or aspiring architect. Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with ...