updates Archives

AppWizard

May 21, 2026

Google expands AI Studio with Android & cloud tools

Google has expanded its AI Studio with new app-building and deployment features, including seamless integration with Google Workspace, allowing developers to create dashboards and applications using data from Google Sheets and Drive. A direct export feature to Google Antigravity has been introduced for local development, enabling teams to export conversation history and project files. New visual design capabilities include automatic image generation through Nano Banana and the ability to edit app previews directly within the platform. A mobile app for AI Studio is available for pre-registration, allowing users to build and preview apps on smartphones. AI Studio now supports direct creation of native Android applications, generating Kotlin code and providing a browser-based emulator. Users can connect to a Google Play Developer account for easy app publishing. New users can deploy their first two apps to Google Cloud for free, while existing users benefit from the Cloud Run Free Tier.

AppWizard

May 21, 2026

Android 17 gets a smarter media switcher, and it already feels better than the old carousel

Google's Android 17 QPR1 Beta 3 introduces a new media app switching interface that replaces the traditional carousel layout with a streamlined card layout. This design features compact cards for minimized media applications on either side of the main media player, allowing users to switch between apps by tapping on these cards. Media apps are organized by importance, showing the currently playing media first, followed by content from remote devices and past sessions. While the new layout has received positive feedback for its clarity, some users have raised concerns about the size of the media controls and requested options for customization to enhance accessibility.

Tech Optimizer

May 21, 2026

Highly Critical Drupal Core Flaw Exposes PostgreSQL Sites to RCE Attacks

Drupal has announced critical security updates for a vulnerability in Drupal Core, identified as CVE-2026-9082, which allows attackers to execute remote code, escalate privileges, or disclose sensitive information. The vulnerability has a CVSS score of 6.5 and affects only sites using PostgreSQL databases. It can be exploited by anonymous users and is rooted in a database abstraction API used for query validation and SQL injection prevention. Updates have been released for the following versions: - Drupal 11.3.10 - Drupal 11.2.12 - Drupal 11.1.10 - Drupal 10.6.9 - Drupal 10.5.10 - Drupal 10.4.10 Drupal 7 is not impacted by this vulnerability. Users on unsupported versions 9 and 8 can access manual patches for: - Drupal 9.5 - Drupal 8.9 Drupal has stated that versions 11.1.x, 11.0.x, and 10.4.x and below are end-of-life and do not receive security coverage, and that both Drupal 8 and 9 have reached end-of-life status. Patches for unsupported versions are provided as a best effort, but users should be aware of potential other vulnerabilities.

Tech Optimizer

May 21, 2026

PostgreSQL Flaws Expose Databases to Remote Code Execution and SQL Injection

PostgreSQL has released versions 18.4, 17.10, 16.14, 15.18, and 14.23 to address 11 security vulnerabilities and over 60 bugs. The vulnerabilities affect PostgreSQL versions 14 through 18 and include issues such as remote code execution, SQL injection, and denial-of-service risks. Specific vulnerabilities include: - CVE-2026-6472: Missing authorization in CREATE TYPE allows query hijacking. - CVE-2026-6473: Integer wraparound leads to out-of-bounds writes and server crashes. - CVE-2026-6474: Format string issue leaks server memory. - CVE-2026-6475: Symlink attack allows overwriting arbitrary files. - CVE-2026-6476: SQL injection allows execution of arbitrary SQL as superuser. - CVE-2026-6477: Memory buffer overwrite via libpq lo_* functions. - CVE-2026-6478: Timing attack exposes MD5-hashed passwords. - CVE-2026-6479: SSL/GSS recursion flaw allows denial-of-service. - CVE-2026-6575: Buffer over-read leaks memory data (PostgreSQL 18 only). - CVE-2026-6637: Refint module enables stack overflow and SQL injection, leading to possible RCE. - CVE-2026-6638: SQL injection in REFRESH PUBLICATION via table names. Organizations are advised to upgrade to the latest versions, avoid MD5 password authentication, restrict privileges, audit extensions, and monitor for abnormal activity. PostgreSQL 14 will reach its end-of-life on November 12, 2026.

Winsage

May 21, 2026

Windows 11’s new SecureBoot folder isn’t malware. Here’s what it does

Users have observed a new folder named “SecureBoot” in the Windows system folder following the installation of Windows 11's May update (KB5089549). This update may cause installation issues for some devices and introduces a directory that contains example scripts for IT professionals to manage Secure Boot certificate updates. Windows Secure Boot certificates are set to expire next month, and outdated certificates will lead to loss of support starting in June, potentially compromising Secure Boot functionality. Microsoft is distributing new certificates through Windows Update. The SecureBoot folder does not require individual users to take action, and deleting it is discouraged as it may cause complications with future Windows updates.

AppWizard

May 20, 2026

PlayStation Will No Longer Bring Narrative Single-Player Games To PC

PlayStation is shifting its strategy regarding PC releases, with CEO Hermen Hulst announcing that single-player narrative experiences will now be exclusive to PlayStation consoles. This means titles like Ghost of Yotei, Saros, and Marvel’s Wolverine are unlikely to be available on PC. The decision appears to be driven by underwhelming sales figures for PlayStation games on PC and a desire to boost console purchases ahead of the potential PS6 launch. However, multiplayer games, such as MARVEL Tōkon: Fighting Souls, will still be released on PC. The gaming community is hopeful that PlayStation may reconsider its approach in the future, potentially releasing titles through its own launcher or storefront.

AppWizard

May 20, 2026

Herman Miller has finally made a gaming desk, and it costs less than its $2,000 chair

Herman Miller has launched the Coyl gaming desk, marking its entry into the gaming desk market. The desk features a distinctive coiled red power cable that powers its electronic sit-stand adjustable-height legs and an integrated multi-socket extension cord. It includes a cable tray with a flip-down fabric cover for easy access, a pegboard/accessory mount section for various holders, and a dedicated headset hook. The height control system uses a large knurled knob instead of conventional buttons. The desk is available in multiple finishes and comes with a 12-year warranty. The starting price is ,475, and it is currently available for purchase in North America.

Winsage

May 20, 2026

Microsoft shares mitigation for YellowKey Windows zero-day

Microsoft has addressed the YellowKey vulnerability, a zero-day flaw in Windows BitLocker identified as CVE-2026-45585. This vulnerability allows unauthorized access to BitLocker-protected drives through a specific exploitation process involving 'FsTx' files. The flaw was disclosed by an anonymous researcher known as 'Nightmare Eclipse.' Microsoft has released mitigation strategies, including removing the autofstx.exe entry from the Session Manager's BootExecute REGMULTISZ value and reestablishing BitLocker trust for WinRE. Additionally, users are advised to change BitLocker settings from "TPM-only" to "TPM+PIN" mode, requiring a pre-boot PIN for drive decryption, and to enable "Require additional authentication at startup" for unencrypted devices.

AppWizard

May 20, 2026

Google adds Android app generation and Managed Agents to Gemini developer tools

Google unveiled enhancements to its Gemini technology at the I/O 2026 event, introducing new developer tools in AI Studio and the Gemini API. Key features include the ability to generate native Android applications directly from AI Studio, which produces Kotlin code using Jetpack Compose patterns and supports hardware features like camera and GPS. The platform includes an embedded Android Emulator and allows direct publishing to the Google Play Console while adhering to Google Play's quality standards. Additionally, Google introduced Antigravity 2.0, an agent-first development platform with a revamped desktop application and SDK for custom workflows. Projects from AI Studio can be exported to Antigravity for local development. The Managed Agents feature in the Gemini API enables developers to create agents with a single API call, allowing them to reason and execute code in a secure Linux environment. This feature is available in Public Preview and simplifies infrastructure tasks for production-grade agents. Custom agents can be defined and registered, with Google encouraging developers to create their own managed agents.

AppWizard

May 20, 2026

Big changes are coming to Android Auto — these are the music apps in line for a major redesign

Google has announced design enhancements for music applications in Android Auto as part of the Android Auto 17.0 beta, revealed at the I/O 2026 developer event. The update will benefit apps like Spotify, YouTube Music, Amazon Music, Gaana, PocketFM, and TuneIn. The Car App Library updates provide developers with more flexibility in app interface design, allowing for user-friendly experiences that reduce distractions. New features include an adaptive mini-player for media apps and additional component types like Chip and CondensedItem. Developers are encouraged to join the early-access beta program to utilize the new Car Library App templates.