StarlingX 8.0 Edge Platform Announced

Version 8.0 of the StarlingX (https://www.starlingx.io/software/) open source cloud platform has been released. The platform is designed for edge computing and IoT and is optimized for high-performance applications.

StarlingX is an OpenInfra (https://openinfra.dev/) project that provides "a container-based infrastructure for edge implementations in scalable solutions that is ready for production now," according to the website. It features "a Horizon GUI and a CLI to manage the inventory of CPUs, GPUs, memory, huge pages, crypto/compression hardware, and so forth."

"Beyond integrating well-known open source components, such as OpenStack modules, Kubernetes, Ceph, OVS-DPDK, and so forth, the community is working on new services to fill in the gaps in the open source ecosystem to enhance deployment, maintainability, and operation of the software components," the announcement says.

Synopsys Report Shows "Alarming" Increase in High-Risk Vulnerabilities

High-risk vulnerabilities have increased at an "alarming" rate in the past five years, according to the eighth edition of the Open Source Security and Risk Analysis (OSSRA) report (https://www.synopsys.com/software-integrity/resources/analyst-reports/open-source-security-risk-analysis.html) from Synopsys.

Since 2019, "high-risk vulnerabilities in the Retail and eCommerce sector jumped by 557%," the report states. "Comparatively, the Internet of Things (IoT) sector, with 89% of the total code being open source, saw a 130% increase in high-risk vulnerabilities in the same period. Similarly, the Aerospace, Aviation, Automotive, Transportation and Logistics vertical was found to have a 232% increase in high-risk vulnerabilities."

The report, which includes recommendations to help teams reduce risks associated with both open source and proprietary code, says the first step "involves a comprehensive inventory of all software a business uses, regardless of where it comes from or how it's acquired" – in other words, a Software Bill of Materials (SBOM) (https://www.fosslife.org/how-sboms-strengthen-software-supply-chain).

"This is a foundational strategy towards understanding and reducing business risk by defending against software supply chain attacks," says Jason Schmitt, general manager of the Synopsys Software Integrity Group.

Akamai Connected Cloud Announced

Akamai has announced Akamai Connected Cloud, a "massively distributed edge and cloud platform for cloud computing, security, and content delivery."

The new initiative, which includes development and deployment capabilities stemming from the acquisition of Linode, represents "the culmination of our strategy to build the cloud platform for today and for the future," according to Adam Karon (https://www.akamai.com/blog/cloud/akamai-connected-cloud-most-distributed-cloud-platform), COO and General Manager of Akamai's Cloud Technology Group. Features include:

• Three new core cloud computing sites in the US and Europe
• Fifty planned distributed sites
• New ISO, SOC 2, and HIPAA standards compliance
• Aggressive pricing

"Akamai Connected Cloud is a continuum of compute from core to edge, paired with our security, CDN, and 24/7/365 support. This will enable you to more efficiently build, deploy, and secure performant workloads that require single-digit millisecond latency and global reach," Karon says. See details at the Akamai website (https://www.akamai.com/).