The Eclipse Foundation launches a framework for the Open VSX Registry, enhancing security features and transitioning to a hybrid architecture.

DevOps publication provides insights into DevOps practices, tools, and culture, offering articles and tutorials for automating software delivery pipelines and fostering collaboration between development and operations teams. By exploring DevOps's curated content, developers can learn about infrastructure as code (IaC), containerization, and cloud-native technologies for building scalable and resilient applications. DevOps publication offers  guidance and best practices to accelerate your software delivery process and improve team collaboration.

DevOps.com

The Eclipse Foundation has announced a new security framework for the Open VSX Registry, adding malicious pattern scanning, namespace impersonation detection, extension name spoofing detection, exposed credential flagging, and quarantine capabilities. The registry is transitioning to a hybrid multi-region architecture with AWS-managed data centers in Europe and an on-premises deployment in Canada, with financial backing from AI coding tool provider Cursor. With peak daily traffic exceeding 50 million requests and over 10,000 extensions, the Foundation is also implementing rate limiting to manage load. Data will remain encrypted and stored within Europe and Canada to support digital sovereignty compliance. The funding model for the registry remains unresolved, reflecting broader concerns about the sustainability of open source infrastructure.

Eclipse Foundation Extends Scope and Reach of Open VSX Registry