SREs Wish Automation Solved All Their Problems
SREs are more than glorified IT operations professionals, but a focus on availability means they often are often not empowered to work on the engineering challenges they rather being working on.
Category: Snippet of The New Stack article
Security Integration Throughout Software Development Lifecycle Is a Pipe Dream
Risk and vulnerability management is the top reason to implement security throughout the software development lifecycle (SDLC), but the second most common reason is improving code quality according to the DevSecOps Community Survey 2019. However, this does not appear to be enough motivation to integrate security automation into the development process.
Open Source Maintainers Want to Reduce Application Security Risk
Just because they care about security does not mean developers have the time or ability to address all your infosec vulnerabilities.
Insights from 68 People Who Care About AWS Container Security
In late 2019, Amazon Web Services’ Developer Advocate Michael Hausenblas surveyed 68 people who use containers on AWS. The publicly available results provide several anecdotal clues about adoption patterns among customers of the world’s largest cloud provider.
Microsoft Mobile Developers Moving to Generic Browsers
Over the last two years, the percentage of developers working on Android and iOS apps declined slightly while those targeting mobile browsers rose by 43 percent.
Multicloud Now a Chief Driver for Containers Says Portworx Survey
People claim that avoiding vendor lock-in drives cloud computing choices but don’t actually use multiple providers.
Enterprise Adoption of Kubernetes Is Growing
Kubernetes is increasingly the first choice among container users, with Datadog reporting its use increasing from 22.5 percent in October 2017 to 32.5 percent in October 2018.
Serverless vs. Kubernetes vs. Containers
Experience with FaaS predicts whether or not someone prefers functions. In fact, 63 percent of those with broad production FaaS implementations would standardize on functions.
Serverless Roadmap: Monitoring, Security, Frameworks, Tools
For serverless monitoring, we found that cloud provider’s own tools were commonly used to monitor apps, with Amazon CloudWatch used by 88% of respondents with live AWS Lambda implementations.
Open Source Development at Large Companies
Using LinkedIn data, we profiled 12 of the largest tech companies’ workforces to determine how many developers they deploy.
Redis Pulls Back on Open Source Licensing, Citing Stingy Cloud Services
With a for-profit entity taking advantage of an “open core” business model, it remains to be seen which users will stop using the database because they want to use something with more permissive licensing.
Competing Estimates of Open Source Composition
Nine out of 10 components in the average application are open source, according to an analysis of 1,700 apps in Sonatype’s “State of the Software Supply Chain.” However, a survey of people familiar with application security by ESG provides a lower figure — only 43% believe that more than half of their enterprise’s codebase of open source.