Abstract: Service disruption avoidance techniques are provided based on deployment metadata associated with a cluster. The cluster includes one or more nodes. A plurality of applications are installed on the cluster. Prior to a maintenance activity to the one or more nodes of the cluster, a processor receives a request to determine a state of maintenance availability of an application. The processor retrieves deployment metadata for the plurality of applications installed on the cluster, in response to receiving the request. The processor parses the deployment metadata to identify one or more installation rules associated with the plurality of applications. The processor determines a set of conflicts for the first application, and determines the state of maintenance availability of the first application based on the set of conflicts.

Abstract: Qubit allocation for dynamic network topographies is disclosed. In one example, a processor device of a computing system implements a configuration to quantum definition (C2Q) service that performs real time qubit allocation for dynamic network topographies. The C2Q service can ensure synchronization between a configuration file for a network topography and a quantum definition file for qubits allocated to the network topography.

Abstract: A status communication is received that is associated with a mesh network comprising a plurality of interconnected node devices. Responsive to the status communication, it is determined whether a configuration policy of the mesh network has been violated. Responsive to a determination that the configuration policy of the mesh network has been violated, a configuration communication comprising an updated configuration is transmitted by a processing device to a first node device of the plurality of node devices to modify the first node device from performing a first service within the mesh network to performing a second service.

Abstract: Qubit allocation service is disclosed. A qubit allocation service determines that a first quantum service requires a qubit for execution. A qubit registry that maintains information about a plurality of qubits on a quantum computing system is accessed to identify a first qubit of the plurality of qubits that is available for allocation. Information indicating that the first qubit is allocated to the first quantum service is stored. The first quantum service is provided qubit information via which the first quantum service can determine that the first qubit is allocated to the first quantum service.

Abstract: Techniques for generating a user interface are disclosed. An example method includes receiving, from an application programming interface (API), a file containing API data. The method also includes applying, by a processing device, a set of pattern matching rules to a segment of the API data to identify a graphical user interface component to be used to display the segment. The method also includes populating the graphical user interface component with data from the segment. The method also includes generating a user interface comprising the graphical user interface component.

Abstract: A system and method of performing a mutual attestation procedure for a trusted execution environment (TEE) of a cloud service system. The method includes receiving, by the cloud service provider, a request to provide a trusted service to a client device. The method includes performing, by a processing device of the cloud service provider using a first TEE, a mutual attestation procedure with a second TEE to obtain a grant to execute a third TEE that is trusted by the second TEE. The method includes initiating, using the second TEE, an execution of the third TEE responsive to obtaining the grant. The method includes providing, using the third TEE, the trusted service to the client device, where the client device trusts the trusted service.

Abstract: A technique for improving workload distribution by utilizing unused resources in a distributed computing system is described. In one example of the present disclosure, a system can determine that a computing entity of a distributed computing system includes an unused portion of a CPU capacity. The computing entity can have a first defined limit of the CPU capacity. The system can use the unused portion of the CPU capacity to improve a usage of a resource of the computing entity. The computing entity can have a second defined limit of the resource.

Abstract: A method includes deploying a containerized execution environment on a cluster of virtual machines and performing a snapshot on each virtual machine in the cluster of virtual machines to save a first version of the containerized execution environment on the cluster. The method further includes performing a test on the containerized execution environment and reverting each virtual machine of the cluster of virtual machines to the first version of the cluster saved by the snapshot in view of the test.

Abstract: A cross-domain data access service enables data access across two or more computing domains, such as, for example, transient access by a public device to data held in a private cloud. In particular, the cross-domain data access service can identify a data subset from within a secure datastore of a first computing domain. The cross-domain data access service can replicate the data subset within a transient datastore that is segregated from the secured datastore. The cross-domain data access service can implement a data access policy so as to enable a client device from a second domain to access the transient datastore.

Abstract: Systems and methods for cloud-based keyless entry are generally described. In some examples, a first number is received from a vehicle. A first computing device of the vehicle may be configured to control an electronic door lock. A first unlock code may be generated using the first number. In some examples, a notification is sent to a remote entry device associated with the vehicle. A response to the notification may be received from the remote entry device. In some examples, the first number may be retrieved from a messaging service based at least in part on the receiving the response to the notification. A second unlock code may be generated using the first number. A determination may be made that the first unlock code matches the second unlock code. An instruction may be sent to the first computing device, the instruction effective to cause unlock of the electronic door lock.

Abstract: Embodiments of the present disclosure involve determining, for each package required for execution of an application, the lowest version that is compatible with a dependency specification of the package. For each of a set of packages required to execute an application: analyzing a dependency specification corresponding to the package to determine a set of relations, the set of relations defining version numbers of the package that are compatible with the application. The set of relations may be desugared to generate a basic format set of relations, and conflicting relations may be removed from the basic format set of relations. Duplicate relations may also be removed from the basic format set of relations to generate a deduplicated set of relations. A lowest version of the package that is compatible with the dependency specification may be determined based on operators used among the deduplicated set of relations.

Abstract: In one example described herein a system can receive, by a scheduler of a server, a request to execute a quantum algorithm. The system can determine, by the scheduler, a quantum computer system of a plurality of quantum computer systems to execute the quantum algorithm based on a database that stores associations between each quantum computer system of the plurality of quantum computer systems, at least one parameter associated with the quantum algorithm, and error information. The system can transmit, by the scheduler, the request to the quantum computer system for executing the quantum algorithm.

Abstract: A graphical user interface described herein can allow a user to easily explore and interact with a complex software application in a distributed computing environment. In one example, a system can generate a graphical user interface (GUI) for display on a display device. The GUI can depict a topological view of a group of software components of a distributed software application in a distributed computing environment. The topological view can include a group of nodes representing the group of software components. Each node in the group of nodes can represent a software component and have a status indicator for at least one container pod including the software component. The topological view can also include at least one link between the group of nodes, where the at least one link represents at least one relationship among the group of software components.

Abstract: Monitoring activity of an application prior to deployment is disclosed. A plurality of messages destined for a first application are received. Each message of the plurality of messages is duplicated to create a corresponding plurality of duplicate messages. Each message of the plurality of messages is successively sent to the first application and each duplicate message to a second application. Based on behavior information that identifies behaviors of the first application and the second application, it is determined that a behavior of the second application differs from a behavior of the first application beyond an alert criterion. In response to determining that the behavior of the second application differs from the behavior of the first application beyond the alert criterion, a message is sent to a destination indicating that the behavior of the second application differs from the behavior of the first application, the message identifying the behavior that differs.

Abstract: A vulnerability with respect to an image file in a continuous integration (CI) pipeline can be suppressed according to some aspects described herein. For example, a processor can receive an alert for the vulnerability with the CI pipeline being able to block deployment of the image file in response to the alert. Based on the alert, the processor can determine that the vulnerability of the image file is deferrable. After determining that the vulnerability is deferrable, the processor can automatically adjust a status of the vulnerability from an observed state to a deferred state. The CI pipeline can allow the deployment of the image file based on the status of the vulnerability being in the deferred state. The processor can deploy the image file in the CI pipeline after adjusting the status of the vulnerability to the deferred state.

Abstract: Direct access to host memory for guests is disclosed. For example, a system includes a processor, a host memory, a filesystem daemon, a guest including a storage controller, and a filesystem queue accessible to the filesystem daemon and the storage controller. The storage controller receives a file retrieval request associated with a file stored in the host memory and forwards the file retrieval request to the filesystem daemon by adding the file retrieval request to the filesystem queue. The filesystem daemon retrieves the file retrieval request from the filesystem queue, determines a host memory address (HMA) associated with the file, and causes the HMA to be mapped to a guest memory address (GMA). The guest accesses the file in the host memory with the GMA, and later terminates access to the file, where the filesystem daemon is then configured cause the GMA to be unmapped.

Abstract: Embodiments relate to systems and methods for a self-moving operating system installation in cloud-based network. A host cloud in which a guest operating system operates can be identified by a processor. A set of applications in a host cloud can be instantiated, where each of the set of applications is operated using the guest operating system. Information related to an operation of a first application of the set of applications can be received from the host cloud. The processor can update data related to the operation of the guest operating system using the received information.

Abstract: Processing logic may obtain a version of software that is running on a client. Processing logic may obtain a second version of the software which is an update to the version of software that is running on the client. Processing logic may send the second version to the client with one or more conditions that are associated with the second version, for the client to determine whether or not to update to the second version.

Abstract: Space efficient distributed storage systems are disclosed. For example, A system comprising a distributed storage volume (DSV) deployed on a plurality of hosts, the DSV comprising logical volumes, the logical volumes deployed on physical storage devices; and a first host of the plurality of hosts with a local cache, and a storage controller, the storage controller executing on a processor to receive a request relating to a first file; query the DSV to determine whether a second file that is a copy of the first file is stored in the DSV; and based on determining from the querying that the second file resides in a logical volume of the logical volumes in the DSV, store a separate reference to the second file in at least one logical volume of the DSV, wherein the separate reference is a virtual reference or link to the second file.

Abstract: A deployment engine executing on a computing device can receive a command from a user via a command line interface of the deployment engine. The command can include a predesignated flag for replicating a software development environment that is local to the computing device. The deployment engine can obtain configuration data describing characteristics of the software development environment. The deployment engine can, in response to receiving the command, build an image file based on the configuration data. The image file can be configured for deploying the software development environment inside a virtual guest on a remote computing device.