-
Software Development
Backdoors, Sabotage or Just Plain Stupidity
Someone on your development team, or a contractor or a consultant, or one of your sys admins, or a bad…
Read More » -
DevOps
Towards Compliance as Code
Infrastructure as Code is fundamental to DevOps. Automating the work of setting up and maintaining systems infrastructure. Making it defined,…
Read More » -
Software Development
Making Refactoring Work
A recent academic study raises some questions about how useful and how important refactoring really is. The researchers found that…
Read More » -
Agile
Putting Security into Sprints
To build a secure app, you can’t wait to the end and hope to “test security in”. For teams who…
Read More » -
DevOps
DevOps is not a Race
Most of what we read about or hear about in DevOps emphases speed. Continuous Deployment. Fast feedback. Fail fast, fail…
Read More » -
Software Development
Don’t waste time tracking technical debt
For the last couple of years we’ve been tracking technical debt in our development backlog. Adding debt payments to the…
Read More » -
Enterprise Java
Required Reading: Iron Clad Java
They didn’t teach appsec in Comp Sci or in engineering or MIS or however you learned how to program. And…
Read More » -
Software Development
If you got bugs, you’ll get pwned
The SEI recently published some fascinating research which shows a clear relationship between software quality and software security. The consensus…
Read More » -
Software Development
We can’t measure Programmer Productivity… or can we?
If you go to Google and search for “measuring software developer productivity” you will find a whole lot of nothing.…
Read More »
