A security bill of material (SBOM) is an inventory of the entire building components of a software application. These components include open source libraries, dependencies, commercial components, licenses, patch status, version information, upgrades available, CVEs, etc. Having an SBOM of a codebase or piece of software provides deep visibility into core components that help quickly identify and mitigate the security and licensing risks associated with the software supply chain.
Observability is a term that has gained a lot of traction in recent years, particularly in the realm of software engineering and DevOps. At its core, observability refers to the ability to gain insight into the internal workings of a system by observing its external outputs. This allows engineers to diagnose and troubleshoot issues with the system, as well as to monitor its performance and behaviour.
From one designer to another, you should know why Playbooks is a fantastic addition to your design tool belt. Playbooks were designed with technical workflows in mind, from incident response to release management, but its flexibility makes it a perfect fit for any repeated process. I love it for creating reusable templates of design checklists and an excellent way to do design review sign-off.
Welcome to Open Source Matters, where we cover the latest developments in open source technology. In this special edition, we’re covering 5 open source projects you should consider contributing to in 2023. I’m your host, Ben Lloyd Pearson — now, in no particular order, let’s dive in!
One of the game changers in modern software development is Continuous Integration and Continuous Development (CI/CD). Both large, established organizations and small, growing companies use CI/CD to deliver software faster and to detect bugs in the software lifecycle. In this tutorial, I’ll create a full pipeline to practice CI/CD using Jenkins, including how to set up Jenkins on Docker. I’ll give an in-depth view of a Jenkins pipeline example using Jenkinsfile.
Nastel is honored to receive a total of 18 prominent badges across multiple categories as High Performers in the Winter 2023 report by G2. G2 is the world’s largest and most trusted software review platform marketplace. More than 80 million people use G2 to make smarter software decisions based on authentic peer reviews. Quarterly, G2 highlights the top-rated solutions in the industry, as chosen by the source that matters most: our customers.
RabbitMQ has, for a long time, been one of the most popular message brokers in the world. Last year, streams were introduced and today RabbitMQ can be used to support many use cases, whether it is as a message broker, for message streams, or doing both in unison. This blog will explain why RabbitMQ fits well into most messaging-streaming scenarios and why it’s an excellent choice. But before we jump into that, let’s cover some basics around event streaming.
Observability tools have traditionally focused on capturing and analyzing log data to improve application performance monitoring and security. Data observability turns the focus back on the data to improve data quality, tune data infrastructure and identify problems in data engineering pipelines and processes. “Data analysts and business users are the primary consumers of this data,” said Steven Zhang, director of engineering at Hippo Insurance.