The Cloud Native Computing Foundation (CNCF) announced today that an open source specification for securing software update systems has graduated to becoming a top-level project. The Update Framework (TUF) is made up of a set of libraries, file formats and utilities that can authenticate files and images before they are downloaded from a software repository. […]
0 CommentsTo keep up with the pace of innovation, testing must play a larger role in the software development life cycle The speed of digital transformation is already staggering, and it’s only going to increase. To put this into some very concrete terms, consider that: There are 7.7 billion people in the world. 5 billion have […]
0 CommentsThe integrated development environment (IDE) is an indispensable tool for software developers. Before it came along, coding was a laborious, detail ladened undertaking. We’ve become accustomed to the syntax checking and code completion features than even the most basic IDEs provide. These days we tend to forget how hard it was programming with nothing but […]
0 CommentsIt is interesting to watch the growth of an idea over time. The idea of using flags in code to do different things is as old as programming itself. Old-school configuration files used them, and they worked, so they were adapted. Thing is, given an idea that works, humanity inevitably takes it too far, and […]
0 CommentsAt John Hancock, we use Test-Driven Design (TDD) for all our new initiatives. TDD has three simple steps: Before you write functional code, write a test that proves if the implementation works or fails. Write the code and watch the test pass. Check if the added functionality changes your holistic approach and if you want […]
0 CommentsInstana revealed today it has acquired three technologies that will extend the capabilities of an application performance management (APM) platform optimized for microservices-based applications. Capabilities being added to the Instana platform include StackImpact, a polyglot production application profiler developed by StackImpact GmbH that can be applied to applications built in multiple languages; a high-frequency metrics […]
0 CommentsNew Offering Enables Developers to Secure up to 200,000 Lines of Code and Perform 300 Scans Per Year at No Cost Santa Clara, Calif. – December 17, 2019 – ShiftLeft Inc., an innovator in automated application security, today launched a new version of its Inspect static application security testing (SAST) solution, designed specifically for developers. Available for […]
0 CommentsSometimes the best way to accomplish something is to choose a path requiring the least friction, or amount of change. Qualys customers now have that path available to them in bring vulnerability scanning into Google Cloud Platform. Qualys’ recent announcement means a one-click configuration change enables vulnerability scans in GCP with the results appearing in […]
0 CommentsThe 2020 State of Compliance and Security Testing Report from cybersecurity testing platform vendor Synack claims that some of the world’s largest organizations are encountering a significant cultural shift within their development teams, and that bodes well for those seeking to build DevSecOps teams. For the report, Synack surveyed leaders from more than 300 organizations […]
0 CommentsCompany Acquires BeeInstant, Signify and StackImpact to Augment its Capabilities for Providing Automated Insights for all Application Stakeholders Under Embargo Until: December 17, 2019 at 8:10 am EST Chicago, IL and Solingen, Germany – December 17, 2019 – Instana today announced that the company has acquired three technologies in the advanced application performance management […]
0 Comments