InfoQ

Bazel 7 Released with New Dependency Management System and More

A monthly overview of things you need to know as an architect or aspiring architect. Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with ...
TechCrunch

With $18M in new funding, EngFlow wants to speed up your builds

Back in 2015, Google launched an open source port of its internal automation tool for building and testing code. Dubbed Bazel (because the internal tool was called Blaze), the service uses a Python ...
TechCrunch

Aspect Build gets $3.85M to help developers create software with Bazel

Monorepos are becoming an increasingly popular way to manage source code, but they require a slightly different toolset. Google developed its own internal build and test tool on top of its monorepo ...
InfoQ

Bazel Will Be the New Build System for the Android Open Source Project

Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with content, and download exclusive resources. Birgitta Böckeler, Distinguished Engineer at ...
CSOonline

Bazel PoC attack highlights transitive vulnerability risk in custom GitHub Actions

A dependent action in Bazel could permit malicious code injection into a GitHub Actions workflow, highlighting risk from third-party dependencies. Security researchers demonstrated a software ...
Infosecurity-magazine.com

Google’s Bazel Exposed to Command Injection Threat

Security researchers have recently unearthed a supply-chain vulnerability within Bazel, one of Google’s flagship open-source products. The flaw centered around a command injection vulnerability in a ...