NIST’s DevSecOps guidance: This is what you should know

The NIST DevSecOps guide publication critically highlights technical security rudiments for industry-level DevSecOps integrating with cloud-native applications based on microservices. Cloud adoption has crept into the deeper interests of decision-makers at the US government. Cloud adoption is moving rapidly, and although government bodies had a reasonably good grasp of it before, they are now moving …

Continue reading

10 Kubernetes Security Best Practices

Kubernetes security is critical throughout the life of the container due to the dynamic and distributed nature of a cluster. For a cluster to be considered effective and stable, it needs to be secure from unauthorized changes. Use Kubernetes Role-Based Access Control (RBAC) This feature has been available since Kubernetes 1.6. The RBAC plays an …

Continue reading

Top 15 Open Source GitOps Tools

GitOps is a collaborative practice. In addition to the human factor in its adoption, you need to consider a GitOps operator that will help enable the principle in your CI/CD pipelines. By leveraging tools that are customary to a developer’s workflow, GitOps makes infrastructure definition and management inclusive for developers. It allows developers and operations …

Continue reading

DevOps in 2022: These are our predictions

Since its adoption in the software production community, DevOps has helped organizations roll out products faster by ensuring better collaboration among the various teams in the organization. Over the years, we have witnessed new trends adopted by organizations practicing DevOps in their bid to accelerate further the adoption of the concept and speed up the …

Continue reading

The DevOps deployment checklist

Main: DevOps practices are employed in organizations to break down existing silos and create a better environment for collaborations between teams to happen. DevOps isn’t a technology but rather a cultural practice that relies on technology to optimize operations. As opposed to the waterfall or agile method of production with DevOps, engineers can run multiple …

Continue reading

A Beginner’s Guide to OWASP

What is OWASP? Open Web Application Security Project (OWASP) is a nonprofit foundation that is dedicated to improving web applications security. The vibrant OWASP community has projects, forums, and events aimed at increasing the members’ security preparedness. These efforts are further supported by making all the materials free and easily accessible from their website. It …

Continue reading

6 testing types, every developer should understand

If you Google testing types in software engineering, you’ll certainly end with a list of hundreds of tests. We are sure not all of them will be useful for you. There are also some testing types that have two or three names and some others are very similar even if they have different names. So …

Continue reading

Is The Future NoOps or MoreOps?

In 2011, Mike Gualtieri, VP, and Principal Analyst at Forester Research, neologized the term NoOps, “I don’t want DevOps. I want NoOps”. The term NoOps became popular a few months after that. But what is NoOps, is it a replacement for DevOps? This article discusses the need for NoOps and the shortcomings of DevOps that …

Continue reading

Canary Release vs Blue-Green Deployments

Choosing the right deployment strategy is crucial to the availability and quality of your services. Two of the most known deployment strategies are blue/green deployment and canary release.This article discusses both deployment strategies. It explores the differences between the two, the pros and cons of each one, and finally the best use case for each …

Continue reading