Building a Node.js REST Microservice: Part One
portrait of a red panda

Introduction This is the first in a planned series of tutorials walking through the process of creating, deploying, and consuming a Node.js REST microservice. In this post, I will demonstrate the initial setup and creation of the microservice and its routes. By leveraging just a few Node.js modules, you will quickly have a functional REST […]

Read more
6 Signs Your Agile Project Isn’t Really Agile

More and more organizations are adopting agile software development processes and practices. But in many cases, these organizations have declared they are agile without actually changing how they develop software. Declaring that an apple is an orange doesn’t make it so. These six key indicators can help you determine whether your agile project isn’t really […]

Read more
Is Behavior-Driven Development Right for Your Team?
behavior driven development

If you are currently applying agile principles and run into situations where the team’s outcome occasionally deviates from the business needs, you might consider applying Behavior-Driven-Development (BDD). BDD is a mechanism for fostering collaboration and discovery through examples. – Dan North BDD is a way to “shift left” the validation of the work, ensuring it […]

Read more
Picking the Right Branch-Merge Strategy

To succeed with distributed rapid development, a branch-merge strategy is key. A good strategy facilitates processes among multiple developers or teams and is the basis for any well-functioning DevOps pipeline that uses continuous integration (CI). While there are many ways to implement CI and DevOps without a branch-merge strategy, most mature organizations use them to […]

Read more
The Curious Case of Incomplete Work at the End of a Sprint

Scrum and other agile processes advocate using time-boxed periods called a sprint or iteration in order to focus a team on getting work done. The idea is that the team will select an amount of work about this size of their capacity and commit to completing that work during the sprint. How the team decides […]

Read more
Don’t Let Too Little Planning Tank Your Agile Adoption

One of the most prevalent misconceptions I hear from organizations struggling with agile adoption is about planning. Many organizations turning to agile believe it means avoiding planning — it’s a common stance for those who have never truly experienced being on a highly functioning agile team. This couldn’t be further from the truth. A healthy […]

Read more
Mobile App Security Testing — Remote Authentication Exploit with iGoat

The video below demonstrates how to test a mobile application for remote authentication vulnerabilities. For this demonstration, I used a mobile application called iGoat. iGoat is designed for the iOS platform and functions as a learning tool for iOS developers. iGoat is a safe environment in which iOS developers can gain knowledge about the major […]

Read more
Sonatype’s New Nexus Lifecycle Helps Teams Migrate Open Source Libraries
Sonatype Lifecycle

For a variety of reasons, a lot of companies are moving to an Agile, DevOps Culture, Continuous Integration and Delivery/Deployment (CI/CD) model. These transformations rely on a variety of tools, including open source. A lot of organizations also use open source tools and libraries to develop their applications and in order to ensure security, these […]

Read more
Hippocratic Oath of Software: Don’t Make It Worse!

Some of you may be familiar with the Hippocratic Oath common in the medical field, often paraphrased as “Do no harm.” In a light-hearted casual conversation with a colleague the other day, I realized that we need a similar oath in the field of software development: “Don’t make it worse.”

Read more
X