Category: CI/CD
-
DevOps Moves Beyond Automation to Tackle New Challenges
NEW YORK — Speakers and exhibitors at the recent DevOpsCon New York conference here made it clear that DevOps is moving on to new challenges, most of which build on the DevOps foundation. New challenges include DevSecOps, improving resilience and safety procedures, reducing the time to resolve an incident, introducing AI assistants, and realigning organizational…
-
Scaling to 10,000 Kubernetes Clusters Without Missing a Beat
When we talk about scaling in Kubernetes, we naturally think about scaling up or down within a cluster, either manually or using one of the many types of autoscalers (and we have a blog post on that, by the way). But there’s another kind of scaling that’s increasingly common: scaling the number of clusters you…
-
Speed Means Nothing Without Real Feedback
While the heavyweight era of software delivery made the mistake of placing far too much value on activity, the agile era puts too much emphasis on speed. Speed myopia means known good things, like small batches, are framed purely in terms of making teams faster. The other benefits of small batches are ignored and lost…
-
Is AI the Antidote to Software Development Complexity?
Things we expect to simplify life sometimes complicate it. Installing a new app-based home security system may require learning to use different tools or dealing with false alarms. If you get an electric vehicle, you experience lower fuel costs for your commute, but you may need to adjust to new controls and be mindful of…
-
C# Logging Key Considerations with .NET
Logging, an essential part of application development functions like an airplane’s black box. Whenever something goes wrong, logs are a great place to start figuring out what happened and how to fix it. But despite that, many developers treat logging as an afterthought, lacking proper planning or understanding before implementation. Logging, specifically logging in the…
-
The Future of APIs: Lessons in Security, Composability, AI
The API economy has arrived, and so have the challenges that come with it. APIs are now everywhere, embedded in everything, such as mobile apps and IoT devices, and the expectations around what they can do are soaring. Yet, the tools and platforms meant to tame this mess often fall short. I had the pleasure…
-
Building the Future Together With Community-Driven Open Source
It’s safe to say that open source software has had a profound impact on the world. From Linux to GNU to the Apache ecosystem, much of today’s technology landscape is powered in some way by tools that have been collaboratively developed out in public. We are in the process of building an open source community…
-
AI Won’t Fix Your Software Delivery Problems
It’s complicated. While the industry faces crucial debates over intellectual property and the environmental impacts of AI, there is a more fundamental issue: How do we use these tools to deliver high-quality work that benefits our organization and the community it serves? This article doesn’t address ethical or moral concerns but instead focuses on the…
-
5 Tips for Designing Highly Effective Mobile SLOs
Service-level objectives (SLOs) are a familiar concept for DevOps professionals and site reliability engineers (SREs), as they are crucial for monitoring system health and sounding the alarm when something is wrong. While SLOs have traditionally been the domain of backend engineering, their value is obvious when helping mobile teams ensure highly performant apps and make…
-
Architecture Inversion: Scale by Moving Computation, Not Data
Have you ever wondered how the world’s largest internet and social-media companies can deliver algorithmic content to so many users so fast? Consider what the likes of TikTok need to do to provide people with an endless stream of personalized video clips to people’s phones. They have some model representing the user, and they need…
-
How Cloud Foundry Has Evolved With Kubernetes
Cloud Foundry (CF) has evolved significantly, particularly in its relationship with Kubernetes (K8s). Cue proverb about change being the only constant. Initially seen as separate entities, CF and K8s gradually integrated, with projects like KubeCF and Eirini enabling CF to run natively on K8s. This evolution led to the development of cf-for-k8s, a cloud native…
-
Collaborative Intelligence in Multiagent Systems With Python
In recent years, large language models (LLMs) have redefined the capabilities of artificial intelligence by generating human-like text, solving complex problems and performing tasks autonomously. However, as tasks become more intricate and interdisciplinary, a single AI model might not always be sufficient. This is where the concept of multiagent systems (MAS) in LLMs comes into…
-
New GitHub Features for Issues Tracking — and Memories of Its Past
On Oct. 1, GitHub launched a public beta for a “major evolution of issues and projects,” promising highly requested enhancements that “make it easier than ever to break down work, visualize progress, categorize and find just the right issue in GitHub.” As one of the most popular code-hosting sites, any changes at GitHub — now…
-
Boost Your Shipping Velocity With Argo and Buildpacks
A recent Microsoft study looked into what drives developers’ productivity and found that the feedback loop had a strong impact. The findings recommend that feedback loops — the speed and quality of responses to actions performed — should be shortened to the maximum possible extent. One example they mention in their finding is the time…
-
How the Argo Project Is Avoiding WordPress-Type Problems
This has been a challenging year for open source software with Terraform and Redis, which are both updating their licenses away from open source and toward a style of “fair source” that’s meant to protect the business models of their respective creators. Now, the war between Automattic and WP Engine is heating up in a…
-
End of the Road for JavaFX in JDK 8: Keeping Your Apps Alive
JavaFX is a popular set of graphics and media packages that enables developers to design, create, test, debug and deploy rich client applications that operate consistently across diverse platforms. Since JDK 11, JavaFX has no longer been included in most distributions of OpenJDK. Instead, you can download it separately from the OpenJFX website. OpenJDK and OpenJFX evolved as…
-
How Generative AI Is Revolutionizing Debugging
In the rapidly evolving landscape of software development, the integration of generative AI has become a game-changer for organizations striving to deliver high-quality software at scale. Among its many transformative applications, autonomous debugging stands out as a critical advancement, offering the potential to revolutionize the way development teams tackle errors and maintain operational efficiency. As…
-
Stop Blaming Regulation for Poor Software Delivery Performance
When discussing the incredible insights from the DORA research, it’s common to hear that people in regulated industries think they should aim for a different level of software delivery performance than non-regulated industries. But when the research shows high throughput goes hand in hand with solid stability, how can they be right? We can draw…
-
How To Jump-Start Your Stalled Kubernetes Migration
Kubernetes has come a very long way in its first decade, and its broad user base, powerful capabilities and open source codebase have made it a cloud native industry standard. However, it’s still not an “auto-magical” tool with a one-size-fits-all solution. Kubernetes’ deep complexity is almost as well known as its many benefits, and many…
-
Breaking Up With Java: Is the Cost and Complexity Worth It?
In a landscape where Oracle Java’s licensing and pricing challenges are pushing companies to explore alternatives, many are considering migrating to an OpenJDK distribution. However, some companies have even gone as far as to consider refactoring their business applications to another programming language to simply avoid the risk and ongoing uncertainty presented by Oracle. With…
-
For Terraform Deployment, Any CI/CD Can Beat TACOS
In the early times of Infrastructure as Code (IaC) and along with Terraform ubiquity, Terraform Automation and Collaboration Software (TACOS) were introduced as a way to bring IaC under the same governance and collaborative workflows that we use for application code. I still remember building my first Jenkins IaC pipeline and how complex it was,…
-
Understanding Continuous Promotion and Where to Start
Continuous integration and continuous deployment (CI/CD) have long been the bedrock of modern software development, seamlessly integrating code changes and ensuring their swift deployment across various environments. However, as the ecosystem evolved with the advent of Kubernetes and GitOps, the traditional CI/CD mechanisms started showing signs of strain. Continuous promotion offers a transformative approach to…
-
Git Push: How to Use the CLI to Interact with GitHub
So you’ve finally added the git command line interface to your developer workflow but you’re not sure how to make it work with your team’s GitHub repository. By using git with GitHub, you can then collaborate on code with anyone else able to access the repository. This is a crucial feature of GitHub (and why…
-
Dagger for Docker’s CI/CD and Security Gaps
The idea I had was to share my Neo4j knowledge graph project on a Docker container for possible work and revisions by folks who could help with the project. This, again, is not a commercial project but a sandbox project involving oceanographic data analysis. However, I spoke with at least two developers who were adamantly…
-
Master Difficult User Authentication Requirements with OAuth
User authentication has always been a complex topic for organizations building digital services. You need to implement low-level security to manage credentials so that malicious actors cannot perform account takeover attacks and gain access to data that belongs to your customers. Yet many organizations fail to recognize that user authentication for your digital services will…
-
JFrog Launches Code-to-Runtime Security for Supply Chain Protection
Hackers are always searching for any soft spot they can find in a system to compromise it. Those deficiencies can surface at any stage of the software development cycle, from inception to deployment. JFrog, which makes the JFrog Software Supply Chain Platform, on Sept. 10 at the SwampUp2024 conference unveiled new capabilities to insert security…
-
JFrog, GitHub Join Forces for Unified Runtime Security
Finding and using “common denominators” is a term we all learned early in our education. They signify something that provides a basis for comparison or connection, whether in mathematical operations or in understanding the relationships between different individuals or entities. DevSecOps software maker JFrog and GitHub, the world’s busiest code development platform, have determined some…
-
4 Steps to a Good Code Freeze
I remember it as if it happened yesterday: My engineering manager had just crushed my dreams. “We won’t be able to deploy for a week. We’re in a code freeze for quarterly earnings,” she told me again. The A/B test I had planned to beat our OKR (objectives and key results) wouldn’t happen in time….
-
Take Your First Steps with Git
Developers almost always wind up having to use git to manage their code. Of course, before you actually get into using git, you need to first understand what it is and how it works. For that, give “Need To Know Git? Start Here” a read. Once you understand what this revision control system is, your…