GitLab announced that 18 of its features are moving to open source including related issues, export issues, issue board focus mode, and service desk. “This marks a major milestone in our efforts to empower the community to collaborate more robustly and to take our single tool for the DevOps lifecycle to the next level,” Sid … continue reading
ConnectALL has announced its Universal Adapter has reached patent pending status, and is currently under review by the U.S. Patent Office. The Universal Adapter designed to interconnect software tools and manage flow across the software development ecosystem. “With the Universal Adapter, ConnectALL has the ability to connect to any tool, any solution…anything you use. That … continue reading
While companies are starting down the value stream, assessing and mapping their operations and product delivery to find areas of bottleneck and waste, another critical aspect of value stream management is feedback loops. People discuss applying manufacturing techniques to software creation and delivery, and breaking down their product portfolios into work for the development or … continue reading
HCL has announced a major update to its automated application security testing and management tool. AppScan 10 is designed to provide faster and more accurate security scans, secure DevOps and help enterprises manage application security problems. “AppScan V10 is another example of HCL Software’s commitment to unlocking new value in a battle-tested product that thousands … continue reading
I’ve previously written about the “Three T’s” of shifting security left: training, tools, and teamwork. In this blog, we’re going to delve down a level and look at some of the tools needed to shift left, what they do, and where in the software lifecycle they belong. The lifecycle question is important to think about … continue reading
The uptake in Agile and DevOps processes has led to changes in how software is written, tested, secured and deployed. Among the key changes organizations are making is to decentralize their test and QA teams. This is being done in response to organizations first looking to modernize testing practices by shifting testing to the left … continue reading
In today’s era of digital transformation, every organization must focus on application security. However, focusing on security vulnerabilities alone is unwise because it’s nearly impossible to prioritize what needs to be done. “DevOps teams are sitting in front of a table with the keys to the kingdom on their computers,” said Jake King, co-founder and … continue reading
DevSecOps isn’t just a practice, it’s a continuous learning experience. If you want to be successful faster, avoid these common misconceptions. #1: Business as usual is good enough Cybercriminals are constantly changing their tactics. If your organization’s application security practices are static, they aren’t as robust as they should be. RELATED CONTENT: How to get … continue reading
DevOps and security teams are learning how to work together, albeit somewhat awkwardly in these early days of DevSecOps. One reason why it can be difficult to get the partnership “right” is that people define DevSecOps in different ways. “If you asked a room of 10 people to define DevSecOps, you’d get 15 definitions. I … continue reading
Apache CouchDB 3.0 has been released. Apache CouchDB is a document-oriented NoSQL database. Highlights of the release include: default installations are now secure and locked down, user-defined partitioned databases improved for faster querying, and Live Shard Splitting added for incremental scale-out. Apache CouchDB 3.0 also lets users store their data safely, on their own servers, … continue reading
Application performance provider Instana has announced a new way for DevOps and IT Ops teams to manage and execute alerts. Instana SmartAlerts is an automated IT alert management system based on environmental and situational use cases. According to the company, performance monitoring can become confusing when trying to figure out what you want to get … continue reading
JFrog has announced the “JFrog Platform,” a new hybrid and multi-cloud universal DevOps Platform designed to deliver DevSecOps, CI/CD and software distribution solutions in an all-in-one experience. “Developers consistently tell us that for DevOps to be successful, they require several key elements: best-of-breed package management, advanced CI/CD solutions that span and control the pipeline all … continue reading