Virtualization Based Security (VBS) is the core feature of Windows used to the high value
secrets stored within Windows (e.g., Credential Guard). VBS utilizes the Hyper-V hypervisor
to create an environment that is higher privileged than the rest of the system kernel. Like
VM isolation, the hypervisor sets memory protections in the second level address tables and
IOMMU tables to isolate this environment from the rest of the system kernel.
Apple now joins 15 other major tech companies, including Amazon, Anthropic, Google,
Inflection, Meta, Microsoft and OpenAI, in committing to responsible AI development
and rollout.
No More Blue Fridays: It used to be that reliability
was achieved by moving code out of kernel mode and into user mode. eBPF suggests an alternative: allow code to run in kernel
mode, but in a sandbox.
rr aspires to be your primary C/C++ debugging tool for Linux, replacing — well, enhancing — gdb. You record a failure once, then debug the recording, deterministically, as many times as you want. The same execution is replayed every time.
One of the exciting new features in Bazel 7.2 is support for the Bazel Output Service which allows Bazel to lazily materialize outputs when you access them with normal filesystem operations. This allows you to maintain visibility to the entire output tree while still saving network bandwidth.
Maestro is a general-purpose, horizontally scalable workflow orchestrator designed to manage large-scale workflows such as data pipelines and machine learning model training pipelines. It oversees the entire lifecycle of a workflow, from start to finish, including retries, queuing, task distribution to compute engines, etc.
