Low-code provider Mendix has announced a number of new initiatives at its Mendix World conference this week. According to the company, these initiatives are designed to “support and accelerate the creation, sharing, and monetization of low-code functionality, service components, and prepackaged digital solutions needed to empower organizations facing a massive capacity gap and concurrent demands … continue reading
Testing practices are shifting left and right, shaping the way software engineering is done. In addition to the many types of tests described in this Deeper Look, test-driven development (TDD), progressive engineering and chaos engineering are also considered testing today. TDD TDD has become popular with Agile and DevOps teams because it saves time. Tests … continue reading
GitHub has introduced a new container registry to improve how it handles containers within packages. The registry is available as a public beta, and will enable users to enforce better access policies, encourage the usage of standard base images, and promote innersourcing. “While GitHub Packages already gives teams greater traceability of their software supply chain, … continue reading
Rapid innovation and the digitalization of everything is increasing application complexity and the complexity of environments in which applications run. While there’s an increasing emphasis on continuous testing as more DevOps teams embrace CI/CD, some organizations are still disproportionately focused on functional testing. “Just because it works doesn’t mean it’s a good experience,” said Thomas … continue reading
Google has announced a new set of services aimed at simplifying Machine Learning Operations (MLOps) for data scientists and machine learning (ML) engineers. According to Google, companies are using machine learning to solve challenging problems, but machine learning systems can create unwanted technical debt if it is not managed well. Google noted that machine learning … continue reading
Sonatype: The company’s Nexus Platform automatically enforces open-source governance and controls risk across every phase of the SDLC. Fueled by Nexus Intelligence which includes in-depth security, license, and quality information on millions of open-source components across dozens of ecosystems, the platform precisely identifies open-source risk and provides expert remediation guidance, empowering developers to innovate faster. … continue reading
The latest integration of traces allows Instana users to drill down into profiles related to individual requests and user traces which require investigation. “Instana’s single-click direct path from individual traces directly to applicable process profiles makes it both easy and quick for users to get the information they need to identify CPU, Memory and Concurrency … continue reading
Brian Fox, CTO of Sonatype: Today, more than 1,200 companies rely on the Nexus platform to unite software developers, security professionals, and IT operations on the same team so they can continuously identify and remediate open-source risk, without slowing down innovation. When speed is critical, Nexus ensures that controls keep pace and that innovation prospers. … continue reading
Security has become ever more important in the development process, as vulnerabilities last year caused the 2nd, 3rd and 7th biggest breaches of all time measured by the number of people that were affected. This has exposed the industry’s need for more effective use of security tooling within software development as well as the need … continue reading
The latest issue of SD Times is now available. The September issue features an in-depth look at data privacy laws, mainframe for DevOps, and how to prevent supply chain attacks. … continue reading
Security Compass introduced the new DevOps tool category Balanced Development Automation (BDA) in order to empower organizations to build secure digital products without compromising time to market. According to the company, development teams usually have to choose between “fast and risk” or “slow and safe.” BDA aims to improve processes that are manual, inconsistent, silo … continue reading
In the wake of the coronavirus pandemic, hearing people talk about the “new normal” has become, well, the new normal. Much has been upended to say the least—and some shifts are extremely relevant to the product development realm. For instance, I predict it will become the “new normal” for restaurants to have their own products … continue reading
WhiteSource has announced it will now integrate with Microsoft Visual Studio Code Editor. According to the company, the integration gives Visual Studio Code developers visibility and security alerts on problematic open-source components while continuing to develop within their preferred development environment. “Integrating security testing pre-build allows issues to be detected earlier when they are easier … continue reading
LinkedIn wants to address bias in large-scale AI apps. The company introduced the LinkedIn Fairness Toolkit (LiFT) and shared the methodology it developed to detect and monitor bias in AI-driven products. LiFT is a Scala/Spark library that enables the measurement of fairness, according to a multitude of fairness definitions, in large-scale machine learning workflows. It … continue reading
