InfoQ

New Rowhammer Attacks on NVIDIA GPUs Enable Full System Takeover

Craig Risi — Tue, 14 Apr 2026 12:00:00 GMT

Security researchers have demonstrated a new class of Rowhammer attacks targeting NVIDIA GPUs that can escalate from memory corruption to full system compromise, marking a significant shift in hardware-level security risks.

By Craig Risi

Anthropic Paper Examines Behavioral Impact of Emotion-Like Mechanisms in LLMs

Robert Krzaczyński — Tue, 14 Apr 2026 11:35:00 GMT

A recent paper from Anthropic examines how large language models internally represent concepts related to emotions and how these representations influence behavior. The work is part of the company’s interpretability research and focuses on analyzing internal activations in Claude Sonnet 4.5 to understand the mechanisms behind model responses better.

By Robert Krzaczyński

Presentation: Platform Engineering: Lessons from the Rise and Fall of eBay Velocity

Randy Shoup — Tue, 14 Apr 2026 11:17:00 GMT

Randy Shoup discusses the "Velocity Initiative," a transformation that doubled engineering productivity and modernized eBay’s DORA metrics. He shares the technical playbook used to scale 4,500 services while explaining why even elite engineering execution can’t save a company hampered by waterfall planning, risk aversion, and a "pathological" culture of fear.

By Randy Shoup

Article: Beyond One-Click: Designing an Enterprise-Grade Observability Extension for Docker

Pragya Keshap — Tue, 14 Apr 2026 09:00:00 GMT

Docker Extensions boost developer speed but create a "visibility gap" by isolating telemetry. To meet enterprise needs, extensions must act as bridges to centralized platforms. This article details how to use OpenTelemetry, policy-as-code, and encryption to build secure pipelines. Learn to balance developer productivity with the governance required for scalable, compliant observability.

By Pragya Keshap

Airbnb Migrates High-Volume Metrics Pipeline to OpenTelemetry

Claudio Masolo — Tue, 14 Apr 2026 08:00:00 GMT

Airbnb's observability engineering team has published details of a large-scale migration away from StatsD and a proprietary Veneur-based aggregation pipeline toward a modern, open-source metrics stack built on OpenTelemetry Protocol (OTLP), the OpenTelemetry Collector, and VictoriaMetrics' vmagent. The resulting system now ingests over 100 million samples per second in production.

By Claudio Masolo

Google Released Gemma 4 with a Focus On Local-First, On-Device AI Inference

Sergio De Simone — Mon, 13 Apr 2026 21:00:00 GMT

With the release of Gemma 4, Google aims to enable local, agentic AI for Android development through a family of models designed to support the entire software lifecycle, from coding to production.

By Sergio De Simone

Lyft Scales Global Localization Using AI and Human-in-the-Loop Review

Leela Kumili — Mon, 13 Apr 2026 13:45:00 GMT

Lyft has implemented an AI-driven localization system to accelerate translations of its app and web content. Using a dual-path pipeline with large language models and human review, the system processes most content in minutes, improves international release speed, ensures brand consistency, and handles complex cases like regional idioms and legal messaging efficiently.

By Leela Kumili

Presentation: Reimagining Platform Engagement with Graph Neural Networks

Mariia Bulycheva — Mon, 13 Apr 2026 13:23:00 GMT

Mariia Bulycheva discusses the transition from classic deep learning to GNNs for Zalando's landing page. She explains the complexities of converting user logs into heterogeneous graphs, the "message passing" training process, and the technical pitfalls of graph data leakage. She shares how a hybrid architecture solved inference latency, delivering contextual embeddings to a downstream model.

By Mariia Bulycheva

Article: The Spring Team on Spring Framework 7 and Spring Boot 4

Mon, 13 Apr 2026 11:00:00 GMT

InfoQ recently spoke with key members of the Spring team about the significant architectural and functional advancements in Spring Framework 7 and Spring Boot 4. This conversation explores the strategic shift toward core resilience by integrating features such as retry and concurrency throttling directly into the framework, alongside the performance benefits of modularizing auto-configurations.

By Karsten Silz, Phil Webb, Sam Brannen, Rossen Stoyanchev, Mark Pollack, Martin Lippert, Michael Minella

Podcast: How SBOMs and Engineering Discipline Can Help You Avoid Trivy’s Compromise

Viktor Peterson — Mon, 13 Apr 2026 11:00:00 GMT

Viktor Peterson, part of the CISA task force working on SBOM blueprints and co-founder of sbomify, explores the shifting landscape of software supply chain security as the EU's Cyber Resilience Act (CRA) comes into force, a "GDPR moment" for the industry.

By Viktor Peterson

AWS Launches Sustainability Console with API Access and Scope 1-3 Emissions Reporting

Steef-Jan Wiggers — Mon, 13 Apr 2026 08:00:00 GMT

AWS launched a standalone Sustainability console with API access, configurable CSV exports, and Scope 1-3 emissions data by service and Region. The console decouples emissions reporting from billing permissions. AWS CTO Werner Vogels framed carbon as an architectural metric belonging alongside latency, cost, and error rates in the observability stack.

By Steef-Jan Wiggers

Anthropic Releases Claude Mythos Preview with Cybersecurity Capabilities but Withholds Public Access

Daniel Curtis — Mon, 13 Apr 2026 06:35:00 GMT

Anthropic has introduced Claude Mythos Preview, its most advanced AI model, improving significantly in reasoning, coding, and cybersecurity. Unlike previous releases, it will not be publicly available. Access is limited to a consortium of tech companies through Project Glasswing. Internal tests revealed the model's ability to discover critical security flaws effectively.

By Daniel Curtis

Java News Roundup: JDK 27 Release Schedule, Hibernate, LangChain4j, Keycloak, Helidon, Junie CLI

Michael Redlich — Mon, 13 Apr 2026 02:30:00 GMT

This week's Java roundup for April 6th, 2026, features news highlighting: the fifth preview of Primitive Types in Patterns, instanceof and switch; the proposed release schedule for JDK 27; point releases of Hibernate, LangChain4j, Keycloak and Google ADK for Java; a maintenance release of Helidon; a CVE in Spring Cloud Gateway; and the Junie CLI integrated in JetBrains IDEs.

By Michael Redlich

GitHub Copilot CLI Reaches General Availability

Mark Silvester — Sun, 12 Apr 2026 09:00:00 GMT

GitHub has launched Copilot CLI into general availability, bringing generative AI directly to the terminal. Integrated with the GitHub CLI, it offers natural language command suggestions and code explanations. Recent updates introduce "agentic" workflows with Autopilot mode and GPT-5.4 support, alongside new enterprise telemetry for tracking usage across development teams.

By Mark Silvester

Etsy Migrates 1000-Shard, 425 TB MySQL Sharding Architecture to Vitess

Renato Losio — Sat, 11 Apr 2026 07:13:00 GMT

The Etsy engineering team recently described how the company migrated its long-running MySQL sharding infrastructure to Vitess. The transition moved shard routing from Etsy’s internal systems to Vitess using vindexes, enabling capabilities such as resharding data and sharding previously unsharded tables.

By Renato Losio