The Six Pillars of DevSecOps: Automation paper published by the Cloud Security Alliance provides a holistic framework for facilitating security automation within DevSecOps as well as best practices. “It’s vital that today’s DevOps teams be agile, able to address user requirements dynamically, release features incrementally, and deliver at a faster pace than their predecessors and … continue reading
Couchbase Autonomous Operator for Kubernetes 2.0 introduces enterprise-grade capabilities including security, resource management, monitoring, high-availability, and cross-cloud compatibility. This enables self-service access to the database while standardizing development, test, pre-production, and production environment. It also reduces operational complexity up to 95% by implementing the operational best practices that most efficiently deploy and manage Couchbase, according … continue reading
The Cloud Foundry Foundation announced the launch of Paketo Buildpacks to make it easier for cloud-native developers to build code into a container by automatically detecting which language, frameworks, and runtimes are needed. Developers can then use buildpacks to then perform code compilation and configure the container for development, according to the foundation. “Paketo Buildpacks … continue reading
The first major update of IntelliJ IDEA is now available. IntelliJ IDEA 2020.1 features Java 14, dataflow analysis assistance in the debugger, LightEdit mode, and more. The new features for Java include full code insight support for Records and Pattern Matching for the instance of the operator, as well as the ability to download and … continue reading
APM, as Gartner defines it in its Magic Quadrant criteria, is based on three broad sets of capabilities, and in order to be considered by Gartner an APM vendor, you have to have all three. Charley Rich, Gartner research director and lead author of its APM Magic Quadrant, explained: The first one is digital experience … continue reading
Software continues to grow as the driver of today’s global economy, and how a company’s applications perform is critical to retaining customer loyalty and business. People now demand instant gratification and will not tolerate latency — not even a little bit. As a result, application performance monitoring is perhaps more important than ever to companies … continue reading
The Kubernetes message queue and message broker solution provider KubeMQ has announced its Kubernetes Operator is now Red Hat OpenShift Operator certified. The OpenShift Operator Certification is meant to give users confidence when building next-generation projects on Red Hat’s Kuberentes and containers app platform OpenShift. With the certification, users will be able to deploy KubeMQ … continue reading
Awareness around and adoption of Kubernetes has been nothing short of phenomenal. When it was new, and the KubeCon conference had just begun, sessions were highly technical, aimed at practitioners looking to build out and manage containerized applications. Most enterprise executives were likely not even aware. I attended last year’s event and spoke with quite … continue reading
Kubernetes security company Octarine has announced two new open-source projects designed to protect against cloud-native security vulnerabilities. The Kubernetes Common Configuration Scoring System (KCCSS) is a framework for rating security risks, and kube-scan is a workload and assessment tool. “Our mission is to make the adoption of DevSecOps best practices simple, understandable, and achievable for … continue reading
The Cloud Native Computing Platform is funding a new Kubernetes bug bounty program to reward the researchers who find security vulnerabilities in Kubernetes’ codebase as well as build and release processes. The program was launched by the Kubernetes Product Security Committee together with bug bounty program vendor HackerOne. “As a CNCF graduated project, it is … continue reading
Attending the Pivotal SpringOne conference last month has hit home how important is the alignment around Kubernetes in the cloud-native technology world. This event is a developer conference for the popular Java web framework Spring — Pivotal was keen to quote from the recent JetBrains survey that the two most popular offerings in this category … continue reading
Red Hat has announced the release of Quarkus 1.0, a Kubernetes-native Java stack built for containers and cloud deployments. According to the company, as application development continues to evolve, Quarkus will work to bring Java into the future and get it ready for serverless, cloud and Kubernetes environments. “Quarkus represents a fundamental shift in modern … continue reading
