MongoDB hits 8.0; Microsoft's open-source data project
Today on Product Saturday: MongoDB focuses on performance and resilience, Microsoft tackles event handling with a new open-source project, and the quote of the week.
Today: why a proposed cybersecurity law in the U.K. is both ridiculous and terrifying, the campaign to fork HashiCorp's Terraform gets underway, and the quote of the week.
Welcome to Runtime! Today: why a proposed cybersecurity law in the U.K. is both ridiculous and terrifying, the campaign to fork HashiCorp's Terraform gets underway, and the quote of the week.
(Was this email forwarded to you? Sign up here to get Runtime each week.)
Imagine having to fill out Form 493-F in triplicate to issue a security patch for a zero-day exploit.
If a proposed surveillance law under debate in the U.K. comes to pass, software providers could be required to obtain government approval before patching flaws in their software. The law has been up for debate for several months, with companies like Apple slamming it as misguided, but is getting new attention this week as the ramifications become clear.
Software companies would be required to give the government "advance notice" of any proposed changes to their software and "the Secretary of State, upon receiving such an advance notice, could now request operators to, for instance, abstain from patching security gaps to allow the government to maintain access for surveillance purposes," according to Just Security.
The law is part of an attempt to weaken services that provide end-to-end encryption or deter companies from adding such encryption to their products.
Given the precarity of the software supply chain in this day and age, the proposed law could have incredible ramifications for the cybersecurity industry.
Tech companies and their employees almost reflexively disparage even good-faith attempts to regulate their industry as misguided proposals from people who don't understand how software works, but sometimes, as Ben Evans put it this week, they have a point.
A consortium of companies announced Friday that it has forked Terraform, HashiCorp's flagship cloud infrastructure open-source project that it plans to relicense under the Business Source License in order to restrict the rights of others to use it for commercial purposes.
That means that Terraform and OpenTF, the name the group has chosen for its effort, will embark on separate paths. Dozens of companies pledged support for OpenTF but the primary backers – judging by the number of full-time employees they are committing to the project — are Spacelift, env0, and Scalr.
It's a little hard to understand how successful this effort will be, given that the three major backers pledged a total of 13 full-time software developers to work on OpenTF. HashiCorp, worth $5.5 billion as of the close of trading Friday, has thousands of employees, and co-founder and CTO Armon Dadgar told Runtime earlier this month that around 95% of all the code written for its various open-source projects was written by people on HashiCorp's payroll.
"...the H100 is 35,000 parts, 70 pounds, nearly a trillion transistors in combination; takes a robot to build — well, many robots to build because it's 70 pounds to lift." — Nvidia CEO Jensen Huang, describing the product that has made him a very rich man, and which is way heavier than I would have thought.
The ongoing MOVEit hacking disaster has now affected more than 60 million people and 1,000 organizations, according to new figures released this week.
Instacart's S-1 summed up the enterprise tech spending dropoff this year: The company spent $51 million with Snowflake in 2022, and expects to spend just $15 million with the cloud data warehousing company in 2023, as spotted by former ZDNet editor and degenerate Philadelphia Eagles fan (that is perhaps redundant) Larry Dignan.
Thanks for reading — see you Tuesday!