The security of open source code is one many organizations are grappling with. Add to that the number of times that applications using open source code are updated and the integration issues that come with those updates, and it’s no wonder open source security comes into question. WhiteSource thinks it has a solution to the […]
Dependency Based Build Promotes the Freedom to Program
Whenever I want to be amazed, all I need to do is reflect on the fact that the continuing development of the Linux operating system is done essentially by a community of volunteers. That’s right! One of the most popular and important operating systems is updated and maintained through donated labor. Any programmer anywhere in […]
WhiteHat Security Looks to AI to Advance DevSecOps
WhiteHat Security is now embedding artificial intelligence (AI) into the application security review services it provides, as part of an effort to advance adoption of DevSecOps processes. Joseph Feiman, chief strategy officer for WhiteHat Security, said the biggest resistance factor to DevSecOps has been the amount of time it takes to test applications for vulnerabilities. […]
How to Use the Jenkins Pipelines
With the introduction of the Pipeline, Jenkins added an embedded Groovy engine, making Groovy the scripting language in the Pipeline’s DSL. Here are the steps you need to take to set up a Jenkins Pipeline. First, log on to your Jenkins server and select “New Item” from the left panel: Next, enter a name for […]
Hunting Down the Mythical High-Quality Code
The definition of high-quality code is hard to pin down. Depending on who you talk to, there are a lot of different theories on what makes code good or bad. Sometimes, this line is blurry, and that’s why hunting down the mythical high-quality code is a complicated process. Most importantly, how can you define high-quality […]
Microsoft Snaps Up GitHub for $7.5 Billion
Recognizing the role GitHub plays in the larger developer and DevOps ecosystems, Microsoft is acquiring the software development platform for a cool $7.5 billion, the two companies have announced. GitHub, the world’s leading software development platform, has more than 28 million users who “learn, share and collaborate to create the future,” according to the press […]
Securing Third-Party and Open Source Code Components: A Primer
The increasing popularity of open source code continues to be a boon for developers across the industry, allowing them to increase efficiency and streamline delivery. But there are security risks to be considered when leveraging open source and commercial code components, as each carries with it a significant risk of becoming the enemy within, creating […]
Open Source: Is Your DevOps Org Vulnerable to an Equifax-Style Hack?
More than half of the Fortune 100 could be at risk of falling prey to the same kind of hack that caused devastation at Equifax last year, and it all comes down to poor open source component governance. A new report out from Fortune reports that in the year after Apache Software Foundation issued an […]
Scrutiny of the Bug Bounty
Tips on building an internal bug bounty program As a programmer, have you ever felt pressured to ship a release with lots of new features, while you knew that there was still a technical debt stability improvements and bug fixes that you wanted to address but didn’t have the time or scope to address? This […]
Why NoSQL is the New Database Darling of DevOps
If developers are from Mars and testers are from Venus, your database administrator is stuck in Saturn. By nature, the database—and specifically the data it carries—has to remain stable even as the application code on top of it is changing faster than Donald Trump’s staff. When it comes to the speed of your release cycle, […]
- « Previous Page
- 1
- …
- 7
- 8
- 9
- 10
- 11
- …
- 14
- Next Page »