What do dependency resolution, situational awareness, and superheroes have in
common? Meet Chris Corriere, a DevOps/Software Engineer at Autotrader,
speaking on creative ways to maximize usage of all of the above. Mark Miller,
Community Advocate and senior storyteller at Sonatype caught up with Chris to
learn more about what his team is up to.
Chris: I'm Chris Corriere, and I'm a Dev Ops engineer at AutoTrader.
Mark: Can you give us an overview on how you're using Nexus?
Chris: We use Nexus for dependency resolution. Part of that is to insulate
our enterprise infrastructure from general third-party dependencies. We're
able to filter that down with our internal repo and make sure that our
developers are using things that are pre-approved, that we're allowed to
track and update. We also use it to move around internal projects that have
cross-dependency between applica... (more)
Intersections: DevOps, Release Engineering, and Security
Derek: Good morning, Paul. There's a lot those pursuing DevOps can learn from
Release Engineering practices. I know you've got a lot of experience to
share, so let's get started.
J. Paul Reed: Good morning, it's good to be here. My background is release
engineering, although these days I am actually called a DevOps consultant. I
have about 15 years' experience doing that. That's what my presentation is
about: sort of the intersection between DevOps, Rugged DevOps, and release
engineering and wanting to explore that with the... (more)
"Being able to take needless work out of the system is more important than
being able to put more work into the system." This is one of my favorite
quotes from Gene Kim's book, The Phoenix Project, and it plays directly into
why we're announcing the DevOps Express initiative today.
Tracing the Steps. For years now, I have witnessed needless work being
performed across the DevOps industry. No, not within our clients DevOps and
continuous delivery practices. I have seen it in the buyer's journey –
from the folks taking their first baby steps into DevOps to those
organizations tr... (more)
Analysis of 25,000 applications reveals 6.8% of packages/components used
included known defects. Organizations standardizing on components between 2 -
3 years of age can decrease defect rates substantially.
Open source and third-party packages/components live at the heart of high
velocity software development organizations. Today, an average of 106
packages / components comprise 80 - 90% of a modern application, yet few
organizations have visibility into what components are used where.
Use of known defective components leads to quality and security issues within
applications. Wh... (more)
21 DevOps and Docker Reference Architectures
When building DevOps or continuous delivery practices you can learn a great
deal from others. What choices did they make, what practices did they put
in place, and how did they connect the dots?
At Sonatype, we pulled together a set of 21 reference architectures for
folks building continuous delivery and DevOps practices using Docker. Why?
After 3,000 DevOps professionals attended our webinar on "Continuous
Integration using Docker" discussing just one reference architecture example,
we recognized there was a strong interest in the c... (more)