DevOps and Agile transformations, or any cultural shift for that matter, almost certainly needs a champion to help evangelize for change and to clear the inevitable road blocks. You can’t do it that way because we’ve always done it another way? Call the Champion to get us permission to try something different this time. There’s […]
Gene Gotimer just published an article at Techwell Insights discussing how to choose what testing to do in your pipeline and when. Adapting the agile principle of small incremental changes and applying it to rounds of testing, the goal is to do just enough testing at each stage to give you confidence that the next […]
Bringing in DevOps to an organization means making some changes to the culture and structure of teams and the organization. These changes are often disruptive and frequently meet with some resistance from leadership, teams, and individuals. A successful DevOps team is cross-functional, with members that represent the business, development, quality assurance, operations, and anyone else […]
Last week I was able to talk about some of my DevOps experiences at the March 2015 DevOpsDC Meetup. I told the story about how we took a project that was just starting Agile and was deploying a risky release to production every 6 months or so, and over 4+ years brought it to deploying […]
This past week I had the privilege of being a panelist in a #c9d9 webinar about “The Journey to Continuous Delivery”. Continuous Discussions (#c9d9): Episode 10 Recap – Continuous Delivery I joined several other panelists as we discussed several questions: How Agile are you? Do you have a CD champion? What does your tool chain […]
Kali Linux (http://www.kali.org) is a collection of free penetration testing and security auditing tools, all packaged into a single Linux distribution.
I am a big fan of static analysis and formatting tools. I just like my code to be as clean as possible. At the very least, being clean makes the code easier to read and maintain. If I can find a tool that will make it easy for me to keep my code clean, I’ll […]
One of the items on the 2013 OWASP Top Ten is “Using Components with Known Vulnerabilities.” It is new on this year’s list, debuting at number 9. OWASP lists at as being widespread and difficult to detect. The issue is that modern software is made up of dozens, if not hundreds, of third-party components. Even […]
Testing applications and web sites that send email can be difficult. During testing you might generate many email notifications and you don’t want to flood a real mailbox. Or you might not want email from a development system being confused for production email. And especially when using production data during development, you might want to […]
Most of us like things done the right way and (more often than not) our way. Nothing can be more infuriating than looking through poorly documented logs or code, and trying to understand poor documentation and what it was meant to get across. During development we often look to setting up good coding practices that […]
