webOS 1.0.4 Released to Address Security Vulnerability

5 BY devrel

If you’ve been following some of the work on the predevwiki site, you may have noticed a recent post (http://predev.wikidot.com/installing-apps-without-rooting) about how email links can be used to install arbitrary packages to Pre. The issue has been corrected and an update is available, and we encourage all customers to apply the update at their earliest convenience.

This is a good opportunity to point people to http://www.palm.com/us/company/security/index.html on our web site. We have contact information there for reporting security-related issues and appreciate it when people reach out to us. We try to stay on top of the forums and sites, but proactive notification helps make webOS a better and safer platform. We always appreciate the work the developer community does and the efforts made by folks to report such issues.

Brian Hernacki
Chief Security Architect, Palm Inc.
brian.hernacki@palm.com

Hello to our new Developer Network members!

20 BY devrel

A couple of days ago we announced we were accelerating bringing people into the early access program. I’m happy to say that the first batch of invites went out today and the webOS developer community is now almost double the size it was yesterday.

This is just the first set of new members — our plan is to double the size of the program again in the next week, and then continue the growth as fast as we can until everyone who wants the SDK has access to it.  If you didn’t get an invite today, please be patient — we’re working on it and will continue to work to get as many of you into the program as fast as we can.

An update on the early access program and the SDK.

84 BY devrel

With the Pre now in customers’ hands and reports of webOS hacks in the news, we know that you are more anxious than ever to get access to the SDK and start developing for webOS.

We’ve been working very hard on the SDK and are eager to open access on a wider scale, but the software and the developer services to support it just aren’t ready yet.

Our goal is to make the SDK available to everyone by the end of this summer, and to get there in stages:

  • Beginning immediately, we’ll accelerate the growth of the early access program, expanding as quickly as resources allow. Over the next few weeks, the program will grow from hundreds to thousands of developers.
  • Simultaneously, we’ll begin publishing more content outside the early access program, and we’ll launch new confidentiality rules that will allow early Mojo developers to communicate more freely with the rest of the world.
  • As soon as we can, we’ll open the SDK to all legitimate requests.

Until you have the SDK, we encourage you to explore other public webOS resources, including the Rough Cuts edition of Mitch Allen’s upcoming book and the sites run by our great community of enthusiasts.

We’ve also begun getting questions about Palm’s stance toward the webOS development “experiments” that have emerged outside the early access program over the last week. We’re focused on building a robust and easy-to-use Mojo SDK, and an ecosystem that benefits developers, end users, carriers and Palm alike. As on any popular platform, we recognize that some developers will experiment in ways that cross official boundaries, but we believe that our formal offerings – and community efforts built around those offerings – will provide the best experience for the vast majority of webOS developers and users.

Thanks again for your enthusiasm and support as we roll webOS out to the world!

Palm’s Open Source Portal is now available

10 BY devrel

We are excited to announce the availability of Palm’s open source portal at http://opensource.palm.com. We’re using Linux and various other open source software in webOS to allow us to accelerate innovation through collaboration with the global community of open source developers.

The benefits of teaming with the open source community come with the important responsibility of ensuring compliance with applicable open source license obligations. For that, we have established a compliance program including:

  • Enforcing open source compliance policy, processes and license obligations;
  • Establishing an internal team to oversee open source compliance;
  • Using a range of commercial and Palm-developed tools to help with the compliance activities including a compliance project management tool, an open source software inventory tool, a code scanning tool, a linkage analysis tool; and
  • Establishing open source internal training to continue to raise awareness and reinforce open source compliance within Palm.

For details about the compliance practices, we will be publishing an article to cover this topic in detail. We will announce when the article is available in this blog and make a copy available for download as well.

From http://opensource.palm.com, you can:

  • Learn how to contact the open source team
  • Download the various open source components we are making available along with our modifications
  • Download a copy of the latest open source license file that includes a listing of open source software used, along with their respective licenses and notices.

Stay tuned as we add functionalities to our open source web site to reflect the progress in our open source activities.

Palm Open Source Team

Going to WWDC? Come by and say hi!

18 BY devrel

For anyone who will be near Moscone in the evening, Palm will be hosting a casual reception at Thirsty Bear (http://thirstybear.com/) in San Francisco on June 11th from 6:00 to 8:00 pm. Stop by, meet Chuq and other members of the webOS development and developer relations team.