CI CD

The latest News and Information on Continuous Integration and Development, and related technologies.

The Dangers Lurking in Open Source Software

Oct 25, 2023 By Ciara Carey In Cloudsmith

Our 1st blog in our series on securely consuming OSS. Today, I'll give an overview of some of the most common types of attacks from consuming OSS. Open-source software (OSS) fuels innovation. Over 96% of commercial applications rely on at least one OSS component (Synopsys, 2023). At Cloudsmith, we champion OSS and understand its indispensable role in today's software landscape. However, the escalating threat of supply chain attacks targeting OSS demands a robust defence.

Read Post

Cloudsmith

Read more about The Dangers Lurking in Open Source Software

What is Continuous Delivery? The Benefits of a Well-Tuned Continuous Delivery Software Pipeline

Oct 25, 2023 By Margaret Lee In Puppet

What is continuous delivery? And what are the benefits of the continuous delivery pipeline? This strategy has evolved in a world where platform engineering is on the rise and more and more organizations rely on automation through code to achieve their goals. Times have changed. Most organizations now rely on continuous delivery as an essential part of their development pipelines.

Read Post

Puppet

Read more about What is Continuous Delivery? The Benefits of a Well-Tuned Continuous Delivery Software Pipeline

Introducing enhanced webhook security

Oct 24, 2023 By Edmund Munday In Atlassian

We are excited to announce webhook secrets, a powerful new feature that will provide an extra layer of security for your webhook payloads in Bitbucket Cloud. With the ability to add secrets to webhooks, you can now sign webhook payloads to ensure they are coming from Bitbucket Cloud and protect against unauthorized access.

Read Post

Atlassian

Read more about Introducing enhanced webhook security

Top Four JFrog Artifactory Enterprise Use Cases

Oct 23, 2023 By Sean Pratt In JFrog

JFrog Artifactory is a “binary artifact repository with a name that is so well known that it is synonymous with artifact repositories in general.” But why is Artifactory the solution chosen by most Fortune 100 companies and millions of developers for their artifact and binary management?

Read Post

JFrog

Read more about Top Four JFrog Artifactory Enterprise Use Cases

Debugging made easy with Debug-GPT: Your OpenAI-powered debugging assistant for Chrome

Oct 20, 2023 By CircleCI In CircleCI

Introducing Debug-GPT, your new debugging companion for Chrome. In this video, learn how to: DebugGPT is the latest release from Continuous Labs, CircleCI open source team.

View Video

CircleCI

Read more about Debugging made easy with Debug-GPT: Your OpenAI-powered debugging assistant for Chrome

Testing GenAI: How to approach nondeterministic software development

Oct 20, 2023 By CircleCI In CircleCI

Michael Webster, principal engineer at CircleCI, talks to Rob about testing AI-enabled applications. In this episode, learn how to face the unique challenges posed by the probabilistic and non-deterministic nature of AI output, as well as the importance of subjective evaluation criteria. Webster covers how model graded evals can be used to test AI applications, and the importance of caution in using this approach.

View Video

CircleCI

Read more about Testing GenAI: How to approach nondeterministic software development

Don't just build a dashboard! A DORA cautionary tale

Oct 19, 2023 By Sleuth In Sleuth

Don't just build a dashboard! A DORA cautionary tale. Software delivery success isn't just about dashboards and metrics. You also need to think about how to improve as an engineering team. The point of the DevOps Research Assessment (DORA) is improvement. Give Sleuth a try and see how we give teams actionable insights on how to improve, no-code automations to instantly ship improvements, and metrics to measure their impact — all in a way that both managers and developers love.

View Video

Sleuth

Read more about Don't just build a dashboard! A DORA cautionary tale

Simplifying Kubernetes Native Testing with TestKube

Oct 19, 2023 By Shyam Mohan In Razorops

As Kubernetes continues to dominate the container orchestration landscape, ensuring the reliability and stability of applications running on this platform is paramount. Testing in a Kubernetes-native environment demands specialized tools that understand the intricacies of containerized deployments. Enter TestKube, a powerful testing framework designed specifically for Kubernetes.

Read Post

Razorops

Read more about Simplifying Kubernetes Native Testing with TestKube

The Power of Automation in DevOps

Oct 18, 2023 By Shyam Mohan In Razorops

In the ever-evolving world of software development and operations, DevOps has emerged as a game-changer. DevOps, short for Development and Operations, is a set of practices and principles that bridge the gap between these two traditionally siloed domains, fostering collaboration and accelerating the delivery of high-quality software. At the heart of DevOps lies automation, a powerful force that revolutionizes the way software is developed, tested, and deployed.

Read Post

Razorops

Read more about The Power of Automation in DevOps

How to test a MongoDB NoSQL database

Oct 18, 2023 By Fikayo Adepoju In CircleCI

Most development teams know that testing the application layer of a system (a.k.a the codebase) is of vital importance. Testing the data layer (the database) is just as important. To perform database testing, you construct queries to assert and validate the database operations, structures, and attributes required by the application connecting to the database.

Read Post