Orta Therox, a core contributor to the CocoaPods project, last week announced that the project has now topped 1 million downloads. This announcement rounds off a year which has seen significant developments in the project and growth in its user base.
Nassim Kammah, engineer at Etsy, explained to Velocity Conference attendants how Etsy does continuous integration for mobile apps. Etsy uses a mix of automated and manual processes, still adhering to the same principles that it applies on web development and reusing many of the same tools. Nassim also talked about how Etsy handles the unique set of challenges presented by mobile apps development.
Stephen de Vries, ContinuumSecurity founder, promoted the idea of continuous and visible security at Velocity Europe 2014. Stephen argued that the same kind of processes and tools that embedded QA in the whole workflow of an agile development process can be applied to security. BDD-Security is a security testing framework that follows the Given-When-Then approach and is built on top of JBehave.
Oracle have announced details for NetBeans Day 2014. Particular topics of interest include Maven, a new Education initiative and an appearance by James Gosling.
Responding to recent concerns that hackers could upload rogue versions of common libraries to Maven Central, Sonatype has released a patch that closes a security vulnerability, enabling SSL by default.
Google engineers have recently published a research paper presenting an empirical study of 26.6 million builds produced during a period of nine months by thousands of developers at Google. The paper describes the build workflow, and analyzes failure frequency, compiler error types, and resolution efforts. Such a study, its authors say, can help improve the build process and support to developers.
Pivotal last week released the first version of their new Spring IO Platform 1.0. At its core, the Spring IO Platform is a list of dependencies (and their versions) that work well together. Its implementation is a Maven POM file that you can import into your projects to set the versions for dependencies. These dependencies are curated and harmonized across Spring projects.
Using the Deployment Notification plugin for Jenkins developed by CloudBees and either the additional Chef Software plugin or Puppet Labs plugin, engineers can now trace every file installed by Chef or Puppet within Jenkins CI.
Deutsche Telekom is using Ravello Systems' nested virtualization solution in its development and testing cycles and in the configuration management process as well. The Ravello’s appliance helps Deutsche Telekom to spread their solutions globally, following the principles of flexibility and agility pursued by them.
The Internet of Things, Web APIs and Big Data will make continuous development a necessary reality and will tie developers down with maintenance work on completed applications, says Andrew Binstock of Dr. Dobbs. In that case, short sprints, continuous integration and deployment and modern programming practices are even more important to ensure a developer's time is better utilized.
Daniel Schauenberg described at QCon London how Etsy, renowned for its DevOps and Continuous Delivery practices, does 50 deploys/day. A fully automated deployment pipeline, thorough application monitoring and IRC-based collaboration are all important to achieve this rate of change while keeping risk to a minimum. Etsy has about 60 million monthly visits and 1.5 billion page views per month.
ThoughtWorks has recently open sourced their Continuous Delivery (CD) tool, called Go, having its origins in CruiseControl and providing a pipeline process that covers the entire code development process: continuous integration, testing and deploying.
The recently released Android++ in closed beta enables you to build Android apps using Visual Studio with support for zero hardware restrictions, MSBuild, LLVM, GCC in addition to integrated GDB debugging.
James Wickett, from Gauntlt core team, gave a tutorial at Velocity Conf London about integrating security testing in the continuous integration cycle for early feedback on application security level. James stressed the importance of regularly checking for security as release delivery rates increase with continuous delivery.