%term

The latest News and Information on DevOps, CI/CD, Automation and related technologies.

Log4j Vulnerability Alert: 100s of Exposed Packages Uncovered in Maven Central

Dec 30, 2021 By Ilya Khivrich In JFrog

The high risk associated with newly discovered vulnerabilities in the highly popular Apache Log4j library – CVE-2021-44228 (also known as Log4Shell) and CVE-2021-45046 – has led to a security frenzy of unusual scale and urgency. Developers and security teams are pressed to investigate the impact of Log4j vulnerabilities on their software, revealing multiple technical challenges in the process.

Read Post

JFrog

Read more about Log4j Vulnerability Alert: 100s of Exposed Packages Uncovered in Maven Central

Chaos & Order: Breaking and Fixing Things in K8s Environments With Komodor & Gremlin

Dec 29, 2021 By Komodor In Komodor

You can’t build a CI/CD pipeline and support fast-paced development cycles without considering continuous reliability. On the one hand, this means being rehearsed and prepared for every scenario. On the other, this calls for a contingency plan for when (inevitably) something will go wrong. Join this live event and see how DevOps tools can help you plan for the best and prepare for the worst, as Julie from Gremlin injects chaos into the Bank of Anthos’ system and Rona from Komodor troubleshoots things back into order.

View Video

Komodor

Read more about Chaos & Order: Breaking and Fixing Things in K8s Environments With Komodor & Gremlin

21 Financial KPIs Every SaaS Company Should Be Monitoring

Dec 29, 2021 By CloudZero In CloudZero

Since the first software-as-a-service (SaaS) company entered the market in 1999, Salesforce, the industry has exploded. Experts are predicting that the industry will exceed $600 billion by 2023 at an 18% compound annual growth rate. In order to play in this highly competitive space, SaaS companies need to have a deep understanding of their financial key performance indicators (KPIs).

Read Post

CloudZero

Read more about 21 Financial KPIs Every SaaS Company Should Be Monitoring

StackStorm 2021 - A year in review

Dec 29, 2021 By Eugen Cusmaunsa In StackStorm

2021 is coming to its end. It’s a nice tradition to remember and recap how the year was for StackStorm. Let’s celebrate some great things that happened around the project.

Read Post

StackStorm

Read more about StackStorm 2021 - A year in review

Open Source Projects Contribute to in 2022

Dec 28, 2021 By Ben Lloyd Pearson In Mattermost

With a nearly endless array of open source projects available to contribute to these days, knowing where to start contributing can feel easier said than done. Need some inspiration? Whether you’re new to the world of open source, are gearing up for Open Source Fridays in the new year, or just want to see what other folks are excited about, check out a few of our favorite open source projects to contribute to in 2022.

Read Post

Mattermost

Read more about Open Source Projects Contribute to in 2022

Helm - Package Manager for Kubernetes

Dec 28, 2021 By Squadcast Community In Squadcast

Deploying applications to Kubernetes can be complex as you may be required to create multiple interdependent resources. This blog explains how Helm can help software professionals to package, configure and deploy applications onto Kubernetes.

Read Post

Squadcast

Read more about Helm - Package Manager for Kubernetes

Heroku vs AWS : what to choose in 2022? - Detailed comparison

Dec 28, 2021 By Morgan Perry In Qovery

As a developer, using Heroku (a Platform as a service (PaaS)) helps get our applications up and running quickly. Without worrying about servers, scaling, backup, network, and so many underground details. Heroku is the perfect solution to start a project. But as the project grows, the needs become more complex, and moving from Heroku to Amazon Web Services (AWS) becomes more and more a no-brainer choice (discover why so many CTOs decide to move from Heroku to AWS).

Read Post

Qovery

Read more about Heroku vs AWS : what to choose in 2022? - Detailed comparison

How to achieve CIS Compliance with Puppet

Dec 28, 2021 By John Laffey In Puppet

Security compliance is the new black. Everyone is talking about it. Everyone is writing about it. Hopefully everyone is doing something about it, but it's a big lift for organizations. Compliance can mean adhering to departmental and company standards; it can mean well-defined regulatory standards like HIPAA, GDPR, and others. Compliance can mean adopting a standardized set of recommended protocols for cyber security. If compliance isn't on your radar right now, it should be.

Read Post

Puppet

Read more about How to achieve CIS Compliance with Puppet

Podcast: Break Things on Purpose | 2021 Year In Review

Dec 28, 2021 By Julie Gunderson In Gremlin

For this episode your hosts, Jason Yee and Julie Gunderson, are sitting down for a year in review! With the new year just around the corner, lets take a glance back at a year of chaos...engineering that is. The rest of the chaos we will leave out of the conversation. Julie and Jason talk about their favorite outages of the year. From Fastly to texts from Julie’s mom, we’ve definitely got a heck of a year to consider!

Read Post

Gremlin

Read more about Podcast: Break Things on Purpose | 2021 Year In Review

Log4j Detection with JFrog OSS Scanning Tools

Dec 28, 2021 By Ilya Khivrich In JFrog

The discovery of the Log4Shell vulnerability in the ubiquitous Apache Log4j package is a singular event in terms of both its impact and severity. Over 1 million attack attempts exploiting the Log4Shell vulnerability were detected within days after it was exposed, and it may take years before we see its full impact.

Read Post