How a Content Security Policy (CSP) Could Have Protected Newegg
We don’t know how this malicious code was injected on Newegg’s billing page, but we do know how Newegg could have drastically decreased the likelihood of a breach.
We don’t know how this malicious code was injected on Newegg’s billing page, but we do know how Newegg could have drastically decreased the likelihood of a breach.
Since you’re reading this blog, you’re likely aware of the most critical part of using Sentry: our client SDKs. We shared previously that we were updating Sentry’s SDKs, and now we’re on the verge of those updates becoming the default. This affects a few of our most popular platforms: Python and JavaScript, plus we also threw .NET and Rust into the mix for good measure.
Sentry is updating our key integrations for Azure DevOps (formerly VSTS). With these tightly-woven integrations, developers (like you) can unlock enhanced release tracking, informative deploy emails, and assignee suggestions for new errors. Route alerts to the right person based on the Azure DevOps commit that caused the issue, cutting remediation time to five minutes.
Great news: we’ve updated the Sentry’s GitHub and GitHub Enterprise integrations! With the growing relationship between GitHub and Microsoft’s developer stack, Sentry will help users save time, squash bugs, and work more efficiently through the many different parts of the development workflow. The features you already use in our existing integration are still there, including resolve via commit or via pull request, issue tracking, and suggested assignee via commit.
Sentry is rolling out additional support and features for Jira and Bitbucket, including two-way sync and org-level settings. These updated integrations will improve the experience for any developer who has Sentry and Atlassian in their workflow by increasing observability into their applications and decreasing setup time.
Essential to Sentry are the other tools that you use in tandem with us via integrations. Which is precisely why our newest update is entirely focused on new and improved versions of several of these integrations. There are a number of big additions here, relating to two-way sync, expanding our Suspect Commits feature, account login, and organization-wide setup.
There are nearly two billion websites live at this very moment. That’s almost two billion chances for data to be stolen and malware to be distributed. Don’t worry! Or maybe do worry, but just not too much. Protections have been developed to keep data and websites safe.
In A Comedy of Errors, we talk to engineers about the weirdest, worst, and most interesting application and infrastructure issues they’ve encountered (and resolved) over the years. This week, we hear from Jason Dufair, Full Stack Developer on the Studio team at Purdue University.
On this episode of Exception Perceptions, Xamarin + Azure Cloud Developer Advocate Brandon Minnick stopped by to chat with Sentry’s Developer Evangelist(a) Chloe Condon about Visual Studio Tools for Xamarin the mobile development platform that lets developers use their C# and .NET skills to build fully native Android, iOS, and UWP apps.
As a pillar of the .NET ecosystem, NuGet specifies how .NET packages are created, hosted, and consumed, while also providing the necessary tools to achieve these functions. Despite being relatively new (launched in 2010), all project templates from Microsoft’s Visual Studio have included packages that required NuGet.org for several years.