Operations | Monitoring | ITSM | DevOps | Cloud

CI CD

The latest News and Information on Continuous Integration and Development, and related technologies.

Impossible! Do Developers Really Mean This?

Impossible! Do software developers really mean this when they're estimating projects? Maybe, but they might not realize that even if a project is technically impossible, sometimes getting close is good enough. Here's part 2 of 4 of Sleuth's CTO and cofounder, Don Brown's take on decoding developer speak. Give Sleuth a try and see how we empower software teams to build faster by making engineering efficiency easy to improve and measurable — in a way that both managers and developers love.

Merging to Main #3: CI/CD Secrets

CI/CD Secrets are... well... secret (or at least they should be)! Think of all the credentials and tokens currently in use in your CI/CD pipeline. These secrets provide critical authentication for essential infrastructure like source control, environments, and build and deployment tools, but they can also easily expose you to risk. Having a secure secret management process is more important than ever for protecting your company and ensuring only authorized personnel can access them.

How to Secure Your CI/CD Pipeline: Best Tips and Practices

CI/CD pipelines have become a cornerstone of agile development, streamlining the software development life cycle. They allow for frequent code integration, fast testing and deployment. Having these processes automated help development teams reduce manual errors, ensure faster time-to-market, and deliver enhancements to end-users. However, they also pose risks that could compromise stability of their development ecosystem.

Trivial? THIS is What Developers Really Mean!

Trivial? THIS is What Developers Really Mean! Software development managers, do you really understand your developers? Here's your guide to speaking developer, Part 1 of 4, from Sleuth's CTO and cofounder, Don Brown. Give Sleuth a try and see how we empower software teams to build faster by making engineering efficiency easy to improve and measurable — in a way that both managers and developers love.

Do you think of software developer toil like Atlassian, LaunchDarkly, Okteto and Sleuth?

Do you think of software developer toil like Atlassian, LaunchDarkly, Okteto and Sleuth? Hear how leaders from these SaaS companies deal with toil on their teams. Toil for software developers includes repetitive tasks that could be automated, things that waste time and prevent you from investing in the future. These manual processes weigh down developers and the software development process, and can lead to burnout.

Streamline your CI testing with Datadog Intelligent Test Runner

Modern continuous integration (CI) practices enable development teams to quickly and efficiently build and deploy application code to a shared codebase. However, deploying new code is typically accompanied by tests, and as the codebase expands, this results in a proportionately larger test suite.

Zero trust security for CI/CD pipelines

The zero trust security model is an approach to network security that enforces strict access controls and authentication at every stage of the software development lifecycle. It treats every user, device, and transaction as a security risk and uses the principle of least privilege to restrict access to sensitive resources and minimize the potential attack surface.

A guide to static application security testing (SAST)

Static application security testing (SAST) involves analyzing source code to identify and address potential security vulnerabilities. Using SAST early in development identifies threats before they can affect a live environment. SAST is particularly important for continuous integration and continuous deployment (CI/CD) pipelines. These pipelines automate the integration of new code changes into the main codebase and deploy applications to production environments.