In May 2023, we announced our limited release of two new Heroku Private Spaces regions: India (Mumbai) and Canada (Montreal). This month, we’re announcing the full general availability of those two regions, along with new Heroku Private Spaces regions for the United Kingdom (London) and Singapore. This expansion enables customers to maintain greater control over where their data is stored and processed. These four new regions fully support Heroku Private Spaces, Heroku Shield Private Spaces, Heroku Postgres, Apache Kafka on Heroku, Heroku Data for Redis, Heroku Connect, and most Heroku Add-ons.

Private Spaces provide a dedicated virtual network environment for running Heroku...

While it's not our usual approach to announce hiring updates on our product blog, we're pleased to share our ongoing dedication to improving the Heroku experience.

Focused Growth and Progress

Heroku is entering a new phase of investment, and as a part of this initiative, we are opening up new positions for individuals who would like to join us in driving this effort. Our goal is to expand our offerings across the platform, catering to both our customers and ecosystem partners.

Our mission remains clear: we aim to assist developers in creating their best code yet, enabling them to build more substantial and AI-enabled applications. Similarly, for our partners, we're dedicated...

We've just introduced three new changes to our pricing at Heroku, all designed to provide extra value to our customers and make cost estimation easier. These changes will kick in from September 1, 2023 onward:

1. Your account will no longer be charged the $10 monthly fee for Heroku CI.
2. Your account will no longer be charged the $10 monthly fee for Heroku Teams with over five members.
3. We've improved our pricing page to include hourly expenses alongside the maximum monthly costs.

Why is the Heroku pricing page changing? The Heroku team is simplifying pricing for clarity and a better customer experience.

What about Heroku Enterprise customers? Heroku CI has always been included, and...

We re-enabled payments to Heroku in India! At the start of August, we resumed accepting credit and debit cards issued by Indian financial institutions.

From the engagement on our public roadmap, we know that there are many developers in India eager to get back on the platform. We want to address the work done to re-enable this functionality, and why Heroku stopped accepting payments from India in the first place.

We started by enabling 3D Secure (3DS) on our platform. 3D Secure is a protocol that prompts a user to use a dynamic authentication methods such as biometrics or token-based authentication to confirm their purchases.

Summary

Subdomain reuse, also known as subdomain takeover, is a security vulnerability that occurs when an attacker claims and takes control of a target domain. Typically, this happens when an application is deprecated and an attacker directs residual traffic to a host that they control.

As of 14 June 2023, we changed the format of the built-in herokuapp.com domain for Heroku apps. This change improves the security of the platform by preventing subdomain reuse. The new format is <app-name>-<random-identifier>.herokuapp.com. Previously, the format was <app-name>.herokuapp.com. The new format for built-in herokuapp.com domains is on by default for all users.

Why...