What is SCA?
SCA

SCA stands for Software Composition Analysis. It’s a technique where you try to analyze the dependencies that your application includes to make sure that they don’t have any known vulnerabilities. In fact, up to 80% of the components that we include in our applications have some known vulnerability in them which can expose our applications […]

Read more
STARCANADA 2019 Preview: Document Generation for Regulated Industries

Are you someone working within a regulated industry that has extensive documentation requirements? Or does your company or client insist that you adhere to a documentation-heavy process? Although you may be thinking that the agile ideal that you have been striving for is now just a pipe dream, fear not! If you’ll be at STARCANADA […]

Read more
The Agile Manifesto Principles: Welcome Changing Requirements

Welcome changing requirements, even late in development. Agile processes harness change for the customer’s competitive advantage. In traditional development methodologies, like waterfall, a customer might try to specify how a system should look and behave completely upfront before they even start development. The problem with this is it assumes that it is possible to completely […]

Read more
Using JRebel to Improve Developer Productivity

On our current project, we are using a JBoss application server to host the services that the application needs to function.  This application server takes about 1.5 minutes to start.  This means that after a developer makes a change to the code, they must wait at least this long (in addition to the amount of […]

Read more
Creating a Trace Matrix in Confluence

I am currently working on a project in which we are helping a company transition to using the agile software development methodology.  As part of this transition to agile we set up Jira, Confluence, and Zephyr — Jira is used for managing work (epics, user stories, requirements, and test cases), Confluence is a wiki used for managing […]

Read more
Using Virtual Machines for Software Development

On my current project I am using a virtual machine (VM) that was provided by the architecture team for software development.  While I have found using this VM to be extremely useful, some developers on the project continue to build and deploy the application directly on their host machines, perhaps out of habit or an unwillingness […]

Read more
The Production Issue

If you’ve been working in software development then you’re probably very familiar with the term “production issue”.  This is a problem that is discovered in the production environment that causes the application to become unavailable or to exhibit incorrect behavior.  For example, a production issue in an online banking system might be that customers’ account […]

Read more
Pitfalls of Overlapping Releases

On my current project, new functionality is often released in increments over a period of several months, as opposed to developing the functionality and deploying it in one release. This is a good approach to release management because it reduces risk, since relatively small changes will be made to the production environment. It also allows […]

Read more
X