InfoQ Homepage Agile Content on InfoQ
-
Architecture Decision Records at Spotify
Several teams at Spotify use architecture decision records (ADR) to capture decisions they make. ADRs have brought a number of benefits to Spotify, including improved onboarding for new developers, improved agility when handing over project ownership due to organization changes, and improved alignment across teams regarding best practices.
-
Vulnerability Scanner Trivy Now Available as Integrated Option within Harbor
Aqua Security has announced that Trivy, their open source vulnerability scanner, is now available as an integrated option within a number of platforms. Trivy is able to scan for vulnerabilities within operating systems and a number of common application dependencies.
-
Go as a Scripting Language
Go's growing adoption as a programming language that can be used to create high-performance networked and concurrent systems has been fueling developer interest in its use as a scripting language. While Go is not currently ready out of the box to be used as a replacement for bash or python, this can be done with a little effort.
-
Maven 3.7 to Include Default Wrapper
Apache 3.7.0 will ship with a new wrapper utility, making it easier to build projects without having a pre-existing Maven installation.
-
Alcide's New sKan Command Line Tool Scans Kubernetes Deployment Files
Alcide, a Kubernetes security platform, has announced the release of sKan, a command line tool that allows developers, DevOps and Kubernetes application builders access to the Alcide Security Platform. sKan enables developers to scan Kubernetes configuration and deployment files as part of their application development lifecycle including CI pipelines.
-
Pandemic Shines Security Spotlight on Zoom Collaboration Risks
COVID-19 self-isolation has resulted in Zoom growing from 10m to 200m daily users. This has highlighted issues with Zoom's data privacy, security practices and meeting configurations. Bruce Schneier and other security commentators have provided insights into these issues. While governments and major companies have banned it, Zoom started a 90-day security hardening stint with former Facebook CSO.
-
How Uber Deals with Unreachable Code Associated to Feature Flags in its Mobile Apps
Piranha is a newly open-sourced tool by Uber that can be used to remove stale code in mobile apps written in Java, Objective-C, or Swift for Android and iOS. The tool was born with the aim to pay technical debt ensuing from the process of implementing and eventually removing feature flags, says Uber.
-
Reimagining CI/CD Pipelines as Composable Blocks with Bryan Liles
Bryan Liles, senior staff engineer at VMWare, talked at the DeliveryConf about ideas of patterns and recommendations when building CI/CD pipelines. Liles recommends thinking about CI/CD as patterns instead of implementations, like merely using Jenkins or Spinnaker. It should be possible to build a platform with composable blocks with replaceable components and agnostic to a technology stack.
-
NGINX Releases Controller 3.0 with Major Redesign Providing Consolidated Application View
NGINX announced the release of NGINX Controller 3.0, their control-plane solution to manage the NGINX data plane. The 3.0 release sees a full redesign of Controller moving it into an "app-centric experience" that allows for interacting with the infrastructure at the application level. This includes a full configuration API, a role based self-service portal, and a built in certificate manager.
-
Platform9 Announce Free SaaS-Managed Kubernetes Solution
Platform9, a SaaS-managed hybrid cloud platform, has announced a free managed Kubernetes service for hybrid environments with automated Day2 operations including one-click upgrades, security patching, and monitoring. The new free tier enables users to take advantage of a SaaS management plane for Kubernetes on hybrid environments.
-
Application Manager Brings GitOps to Google Kubernetes Engine
Google has launched Kubernetes Application Manager, intending to simplify application configuration and lifecycle management. It’s an application delivery solution delivered as an add-on to Google Kubernetes Engine (GKE), which is also part of Anthos. Kubernetes is widely used for managing containerised applications, but end-to-end Kubernetes lifecycle management can be challenging.
-
How Team Interactions Help Kubernetes Adoption with Manuel Pais at QCon London
Manuel Pais talked at QCon London about how team interactions are vital to reduce cognitive load to have a successful adoption of Kubernetes. Pais recommends having a digital platform on top of Kubernetes. And, organizations can get started by assessing the team's cognitive load, defining a digital platform, and setting clear team interactions.
-
Successful Remote Working
For both employees and employers, remote work requires intentional design and implementation to be effective. People find remote work challenging because the established mindset says that being in an office is how work gets done. Despite the challenges, when remote work is done well, the advantages to employees and employer are sufficient to make it worthwhile.
-
How to Debug Your Team: QCon London Q&A
Lisa van Gelder spoke about debugging your team at QCon London 2020, where she presented her toolkit for how to diagnose and address issues with a team’s pace of delivery. “It is all about ensuring they have mastery, autonomy, purpose and psychological safety”, she said. She uses that toolkit to introduce change to teams in a way that gets the buy-in from the team.
-
GitLab 2020 Remote Work Report Highlights Key Motivators for Remote Work
GitLab has just released its 2020 Remote Work Report, which provides a thorough perspective on remote work from the viewpoint of both remote workers and employers. Based on over 3,000 respondents across various industries and roles, the report also aims to give a glimpse of what remote work might look like in the future. InfoQ has taken the chance to speak with GitLab head of remote Darren Murph.