As Software-as-a-service (SaaS) and DevOps adoption grew, new teams were formed to address emerging security challenges. Traditional solutions weren’t built to detect the new vulnerabilities in the cloud and created excessive noise for an already stressed pool of resources. The combination of emerging zero-day vulnerabilities and an avalanche of false-positives ends up increasing security […]
0 CommentsContinuous integration and continuous delivery (CI/CD) has become a hallmark of quick software release life cycles. Nowadays, many teams support CI/CD pipelines for their software, offering a repeatable pathway to build, test and deploy code. A CI/CD pipeline is necessary to support an iterative, rapid deployment approach—yet, maintaining one is not an easy task. Enter […]
0 CommentsThis post is part of our Week in Review series. Check back each week for a quick round up of interesting news and announcements from AWS! Welcome to the April 4 edition of the AWS Week in Review. This week, alongside the main launches, I also captured a couple of new capabilities, such as a […]
0 CommentsWhiteSource has launched a free command-line interface (CLI) tool that detects vulnerable open source Spring4Shell vulnerabilities (CVE-2022-22965) that are impacting Java applications built using the Spring development framework. Susan St. Clair, director of product management for WhiteSource, said the WhiteSource Spring4Shell Detect tool is similar to the tool the company made available earlier this year […]
0 CommentsSoftware development is complex. It can take years of practice to become an experienced developer. But the good news is that you can build many applications without ever learning to code. Low-code/no-code development is the practice of using a visual interface and drag-and-drop elements to build applications for business processes without coding. These types of […]
0 CommentsDelivering software quickly, reliably and safely is at the heart of technology transformation and organizational performance regardless of industry. As part of overall technology transformation, many companies are recognizing the benefits of applying DevOps methodologies to areas outside of software development, such as general product development, IT expansion and scaling and new business processes. However, […]
0 CommentsThe post The Curse of Sisyphus appeared first on DevOps.com. Source: DevOps.com
0 CommentsSpring4Shell is the latest call to action for radically improved software supply chain integrity. While Spring4Shell investigations continue, one conclusion is indisputable: We must holistically rethink the way we continuously inventory and manage the complex landscape of interrelated software and its sources. Whether or not Spring4Shell surpasses the breadth of impact of Log4j, there’s still […]
0 CommentsSite reliability engineering (SRE) teams and platform engineering teams share similar goals—like maximizing automation and reducing toil—and similar methodologies. But they have different priorities, and use somewhat different tools to achieve them. What are SREs? What are platform engineers? How is each role similar and different? This article will answer all your questions. Responsibilities of […]
0 CommentsEnterprise business processes are run on evolving applications, and the DevOps team needs to be as efficient as the applications they create. Unfortunately, the COVID-19 pandemic has had a profound impact on DevOps productivity—and that impact hasn’t always been positive. Tracking the performance of the DevOps team has become more challenging in a remote and […]
0 Comments