Operations | Monitoring | ITSM | DevOps | Cloud

The latest News and Information on Continuous Integration and Development, and related technologies.

Get Cybersmart with JFrog This October

We live in a world of increasingly connected devices – phones, digital assistants, smart watches, cars, thermostats, refrigerators, windmills, and more. More than 50% of the world’s population is now online and two-thirds own a mobile device, according to the World Economic Forum. Additionally, the codebase of today’s applications typically consists mainly of open source components – exposing them to greater risk of hacking than ever before.

The Vulnerability Conundrum: Improving the Disclosure Process

The vulnerability disclosure process involves reporting security flaws in software or hardware, and can be complex. Cooperation between the organization responsible for the software or hardware, and the security researcher who discovers the vulnerability can be complicated. In this blog we’ll look at the vulnerability disclosure process, the parties involved and how they can collaborate productively.

Fold Your Repos Into PHP Composer v2 with Artifactory

If you’re among the nearly one in four professional developers using PHP (according to StackOverflow’s 2021 survey), then the maintainers of Composer would really like you to migrate from v1 of the PHP package manager to v2. On October 24 2020, Composer 2.0.0 was released with some major improvements.Since almost eight out of every ten websites on the internet use PHP in some way, that’s a change with big impact.

Performing database tests on SQL databases

Testing is one of those activities that if not exhaustive will not have its complete impact on your software development process. Oftentimes developers are only concerned about testing the application layer of the system (a.k.a the codebase) and ignore testing the data layer (the database) which is also as important as testing the code itself.

The Importance of Prioritizing Product Security

Achieving comprehensive security for the products delivered and deployed by organizations is becoming more difficult, due to a variety of factors. A key one is the growing volume, variety and complexity of software and connected devices in use. Another is the overwhelming risk of inherited software supply chain exposures. The result: Companies struggle every day to provide software with optimal security and protection against malicious activities, takeovers, data theft, and commercial sabotage.

The Confident Commit | Ep. 12: Tenth Anniversary Reflections from Our Newest & Oldest Engineers

In this special episode of The Confident Commit, Rob celebrates CircleCI's 10 year anniversary with two CircleCI guests: the company's longest-tenured engineer, Gordon Syme, and one of our newest employees, our SVP Engineering, JP LeBlanc, to discuss the company's past, present, and future. Join us as we celebrate 10 years of working to help organizations build software better and faster. And don't forget to Like and Subscribe to The Confident Commit podcast playlist for alerts to new episodes published biweekly.

CircleCI delivers 664% ROI and $13.98M NPV according to Total Economic Impact Study

Today we’re sharing findings from The Total Economic Impact™ Of CircleCI, a commissioned study conducted by Forrester Consulting on behalf of CircleCI. The study revealed that CircleCI delivered a 664% return on investment (ROI) over a three-year period and highlighted that our platform increased developer productivity by 10%. This results in a greater efficiency value of more than $4.3 million, enabling organizations to increase engineering velocity that drives business success.