In this blog post, you will learn how to setup image scanning with Github Actions using Sysdig Secure DevOps Platform. We will create a basic workflow to perform a local scan to detect vulnerabilities and bad practices before the image is pushed to any registry. We will also customize scanning policies to stop the build according to a set of defined rules.
There has never been more pressure on development teams to build software faster and more efficiently. The rise in popularity of DevOps has largely been the result of its promise to speed up dev cycles, increase agility, and help teams resolve issues more quickly. And while the availability and sophistication of DevOps tools have improved greatly in the last few years, simply choosing the latest and greatest tools is no guarantee of a smooth, problem-free development lifecycle.
The typical workday for a developer using Git involves a variety of different tasks. Between generating new SSH keys, cloning Git repositories, viewing commit diffs, creating pull requests, and on and on. But do you ever sit back and think about how much time you’re spending on each of these seemingly smaller tasks? Trust us, it adds up. The concept for the GitKraken Git GUI was born from this very frustration.
Whether you’re a product owner, project manager, or the CEO of the company, understanding how your team plans for and achieves project milestones is crucial to reaching long-term and sustainable success.
In part 1 of the GitOps blog series, we discussed the value of using GitOps for Calico policies, and how to roll out such a framework. In this second part of the series, we will expand the scope to include decentralized deployment and GitOps.
At Sentry, we’re big fans of continuous integration and deployment. We’re also big fans of GitHub — and not just because we employ a number of notable GitHub alumni. We use our own GitHub integration to link issues, identify suspect commits that likely introduced new errors, and suggest assignees who can best resolve each issue. Last month, GitHub released GitHub Actions for general availability.
When it comes to the most popular technologies, we look to Stack Overflow’s Developer Survey 2019 to find the answers. JavaScript continues to be the most commonly used programming language for 7 years in a row, while Python is the fastest growing. If you want to find out what tools these developers are using, that’s where our survey comes in. For the fourth year in a row, Axosoft asked our global community of software developers to tweet their top 5 #MustHaveDevTools.
On 12-10-2019, Git released patch v2.24.1 to address several common vulnerabilities and exposures, or CVE. For those unfamiliar with what CVE is, it is a dictionary that provides definitions for publicly disclosed cybersecurity vulnerabilities and exposures. These security issues could allow complete takeover of a computer through the use of various git commands. They can affect all Git and GitKraken users, especially those that have exposure to lots of obscure public repos.
Commits are fundamental to Git, but not all developers have a comprehensive understanding of what a commit actually is and how it gets applied to your project. In short, a commit is a snapshot of your Git repository at one point in time. In this beginner Git tutorial video, we will dig into the journey of creating a commit.
