InfoQ Homepage Continuous Integration Content on InfoQ
-
AWS CloudFormation Guard Adds Type Blocks, Filtering, and Reusable Rules
AWS released version 2 of CloudFormation Guard, their open source tool for validating CloudFormation templates. This release introduces a number of new features including type blocks, support for Conjunctive Normal Form, filters, and named rules. Guard enables writing policy-as-code that can then be used to validate any well-formed JSON or YAML file.
-
Ambassador Developer Control Plane Integrates Common Kubernetes Full Lifecycle Tooling
Ambassador Labs announced the release of their Developer Control Plane (DCP). The DCP brings together tooling to support the full development and operations of Kubernetes based services. This includes popular Cloud Native Computing Foundation (CNCF) tools such as Argo, Telepresence, and Envoy Proxy.
-
Adding Security to Testing to Enable Continuous Security Testing
Teams can be trained by security experts to become able to identify areas to add security testing in the test process and add security checks as part of functional test automation. This can lead to continuous security testing where security defects can be spotted at an early stage with higher security testing coverage in every release.
-
GitHub Reacts to Growing Cryptocurrency Mining Attacks Using GitHub Actions
In response to the recent surge in cryptocurrency mining attacks, GitHub has changed how pull requests from public forks are handled in GitHub Actions to prevent abuse.
-
JetBrains Releases IntelliJ IDEA 2021.1
JetBrains has released IntelliJ IDEA 2021.1 featuring support for Java 16, a new preview feature that instantly renders HTML changes, and support for WSL 2. is supported and it’s possible to run applications on Docker, WSL 2, or via SSH. Various other improvements include support for Docker, Kubernetes, Kotlin, Git and others.
-
Gradle 7.0 Released with Support for JDK 16
Gradle, the customizable open source build automation tool, has released version 7 with support for JDK 16, faster incremental builds, improved build reliability, and native support for new Macs with Apple Silicon processors. Preview features like dependency verification and support for Java Module System, introduced in previous releases, have been promoted as stable features.
-
Java News Roundup - Week of April 5th, 2021
A roundup of stories in the Java ecosystem for the week of April 5th.
-
Ebay Open-Sources Package to Reduce Test Flakiness Using Swift and Xcode
Targeted Auto Retry is Ebay's approach to dealing with test flakiness that aims to make a continuous integration pipeline more resilient to flaky test steps. To make this approach straightforward to use, Ebay has open sourced a lightweight framework for the Swift language that can be used with Xcode unit testing framework.
-
Convert Spring Boot Apps to GraalVM with Spring Native Beta
Spring has released Spring Native Beta, a new tool to convert existing Spring Boot applications, written in Java or Kotlin, to GraalVM native images. The goal is to support Spring Boot applications on Spring Native. GraalVM native images are small, optimized and boot quickly. The tradeoffs, however, are longer build times and fewer runtime optimizations compared to the JVM.
-
Community Debates Value, Even Existence of Continuous Deployment
A post by Charity Majors, CTO at Honeycomb, reopened a debate over continuous deployment (CD) as she asserted that when people talk about CI/CD (continuous integration and continuous deployment) they’re only talking about continuous integration (CI), and that’s not enough. The discussion covered not just its importance, but how many organizations are actually using it.
-
How Spotify Leverages Paved Paths and Common Tooling to Improve Productivity
Maria Jernström and Jason Palmer, two product managers at Spotify, shared how the company enables their development teams to operate quickly and in alignment. The Platform Developer Experience tribe builds CI/CD tools, product creation tooling, and paved paths with a focus on automating common processes.
-
Eclipse Credentials Leak Affects Snapshot Builds
Deployment credentials on the Nexus Repository Manager have leaked in GitHub. The issue received broad attention when a vulnerability report was submitted in mid-February. The credentials were encrypted, however, the master password was leaked as well. Although the master password wasn’t stored in plain text, it’s relatively easy to decode and can then be used to decrypt the other credentials.
-
GitLab 13.9 Introduces Security Alerts Dashboard, Maintenance Mode, and More
The latest release of GitLab introduces over 60 new features, mostly aimed at improving support for DevSecOps at scale and better handling the complexity of automation at scale.
-
JFrog to Shut down JCenter and Bintray
JFrog has announced that it is shutting down the Bintray asset hosting service, which includes the JCenter Java repository, often used by Gradle and Android builds. Uploads to Bintray will be blocked at the end of the month, and assets will be unavailable for download after the end of April, and deleted shortly afterwards. Read on to find out what this means for your Java build pipelines.
-
Npm 7 Now Generally Available, Supports Workspaces and Deterministic Builds
The recently released npm 7 adds several features requested by developers, e.g. support for workspaces, better support for peer-dependency management, or deterministically reproducible builds. npm 7 is a big release that includes several breaking changes aiming at improving the overall developer experience.