Get those Maven Warnings out of here

  [WARNING] Some problems were encountered while building the effective model for GoodPom:GoodPom:jar:1.0-SNAPSHOT [WARNING] ‘build.plugins.plugin.version’ for org.codehaus.mojo:build-helper-maven-plugin is missing. @ line 19, column 15 [WARNING] [WARNING] It is highly recommended to fix these problems because they threaten the stability of your build. I have been working with a client that has a complex maven project. […]

Read more
The Most Important Metric for your DevOps Pipeline
http://www.kaushik.net/avinash/wp-content/uploads/2012/09/correlation_xkcd.png

Quality feedback is essential to any software delivery project and the best way to improve feedback is to reduce the developer feedback cycle and make any (and every) result transparent to the project, its members and its stakeholders.  You should continue to mesure and broadcast results through communication mechanisms commonly referred to as “information radiators.” […]

Read more
How to build SonarQube into PhpStorm for source code analysis

The software development IDE, JetBrains PhpStorm, is a versatile tool to incorporate into a DevOps pipeline. One useful method of expanding upon its native features is to add the SonarQube plugin to provide source code analysis. Step-by-step documentation is scattered or insufficient, so I have compiled an explanation of the process, with accompanying screenshots. This does […]

Read more
New SecureCI Release

As I’m certain everyone is aware, a new version of SecureCI™ has been released! Many more tools have been included, and while the basic setup is the same, there is a bit more configuration that you’ll need to setup. My previous post of how to startup a new instance of SecureCI™ is still accurate, however […]

Read more
Automating Security with DevOps: It can work

DevOps and Security have often been considered mutually exclusive. Both are imperative to developing high-quality applications, but continue to be seen as entirely separate processes. Tools that combine DevOps and Security tend to only integrate static security code analysis, and do so within the early stages of Continuous Integration. These scans are performed simultaneously, running […]

Read more
Why DevOps Engineering Is Important

The following is an edited excerpt from our webinar that took place March 10, 2015. The entire recording may be viewed here: https://attendee.gotowebinar.com/recording/737060184353086210.  This is the first in a series of webinars on DevOps Engineering and discussed why DevOps Engineering is important.  The webinar was given by Mr. Jeffery Payne and Mr. Richard Mills of […]

Read more
DevOpsDC: Developing a Continuous Delivery Tool Chain from the Bottom Up

Last week I was able to talk about some of my DevOps experiences at the March 2015 DevOpsDC Meetup. I told the story about how we took a project that was just starting Agile and was deploying a risky release to production every 6 months or so, and over 4+ years brought it to deploying […]

Read more
X