InfoQ Homepage DevOps Content on InfoQ
-
/articles/mobile-devsecops/en/smallimage/logo-1633952211346.jpg)
Mobile DevSecOps Is the Road to Mobile Security
In this article, I’ll discuss some of the most common security deficiencies in mobile apps and explain the potential risks to consumers, app developers, and brands, as well how to break the cycle of poor app security, using automated, rapid, continuous, and iterative deployment.
-
/articles/ai-devops-takeover/en/smallimage/logo-1633456324591.jpg)
Is Artificial Intelligence Taking over DevOps?
AI tools are slowly replacing the role of the developer – just as DevOps did before – and will eventually supplant DevOps entirely. Assessing whether that prediction is true is tricky. In this article, we’ll look at what AI promises for the development process, assess whether it can really ever take over from human developers, and what DevOps is likely to look like in a decades’ time.
-
/articles/buildpacks-software-supply-chain/en/smallimage/logo-1633347463775.jpg)
Using Cloud Native Buildpacks to Address Security Requirements for the Software Supply Chain
Software supply chain attacks are increasing in severity and frequency, with no clear path laid out towards its mitigation. A simple way to trace the origin of vulnerable components is available in the form of Software Bill Of Materials (SBOMs), generated automatically when using Buildpacks.
-
/articles/DevSecOps-shiftleft-cybersecurity/en/smallimage/logo-1632922735916.jpg)
Virtual Panel: DevSecOps and Shifting Security Left
Recent attacks, that targeted SolarWinds, Colonial Pipeline, and others, have shown that development environments come ever more frequently on the radar of malicious actors. A virtual panel on the value of shifting left security, how to take responsibility for it, and the time-to-market pitfalls.
-
/articles/service-mesh-unnecessary-complexity/en/smallimage/logo-1632479954476.jpg)
How Unnecessary Complexity Gave the Service Mesh a Bad Name
There is immense value in adopting a service mesh, but it must be done in a lightweight manner to avoid unnecessary complexity. Take a pragmatic approach when implementing a service mesh by aligning with the core features of the technology, such as standardized monitoring and smart routing, and watching out for distractions.
-
/articles/ballerina-cloud-native-programming/en/smallimage/-C2PlY3M-1631543404121.jpg)
Ballerina Swan Lake: 10 Compelling Language Characteristics for Cloud Native Programming
The Ballerina language has come a long way with significant improvements since the 1.0 release in 2019. The latest Swan Lake release further simplifies building and deploying cloud native apps.
-
/articles/pitfalls-patterns-microservice-dependency-management/en/smallimage/pitfalls-and-patterns-in-microservice-dependency-management-small-image-1630081386094.jpg)
Pitfalls and Patterns in Microservice Dependency Management
Silvia Esparrachiari shares stories on how a small change can impact a system, discussing the importance of having a broad view of a system to better understand how a change can impact a system. She presents three different scenarios that changed related to dependency management in an environment of microservices, all based on situations that she encountered while working at Google.
-
/articles/aiops-it-operations/en/smallimage/aiops-it-operations-s-1629237957824.jpg)
AIOps Strategies for Augmenting Your IT Operations
AIOps techniques can be used to decrease the workload on IT Operations teams while also improving outage resolution time and increasing innovation. In implementing AIOps strategies it is important to start small and have measurable KPIs to track progress and performance.
-
/articles/DevOps-value-stream/en/smallimage/DevOps-value-stream-s-1629109641923.jpg)
Driving DevOps with Value Stream Management
In a digital economy, VSM improved software deliveries support the businesses' other value stream improvement initiatives. In its modern reinvention, VSM software tools provide end-to-end and real-time access to data and analytical tools to help improve Flow across CI/CD and DevOps software delivery pipelines.
-
/articles/netops-secops-closing-gap/en/smallimage/bridge-the-gap-NetOps-SecOps-network-management-security-small-image-1627039022447.jpg)
How to Bridge the Gap between Netops and Secops for Ultimate Network Management and Security
Sometimes it can seem like a new IT management paradigm arrives every week. First, we had DevOps; then DevSecOps; now the most innovative organizations are talking about AIOps and even NetAIOps. Yet what is often forgotten about in this rush to name new ways of working is that many of them have been in place in the best-run teams for decades - a great example of this is NetOps and SecOps.
-
/articles/devsecops-supply-chain/en/smallimage/devsecops-key-to-securing-your-supply-chain-small-image-1626439698918.jpg)
DevSecOps: the Key to Securing Your Supply Chain in a Multi-Cloud Threatscape
Recent supply chain attacks require businesses to re-evaluate their approach to DevOps, specifically as it relates to security. The DevSecOps focus CI/CD platforms, testing and scanning across the SDLC, and a focus on minimizing manual efforts can not only improve security postures but also improve delivery of business value.
-
/articles/devops-and-cloud-trends-2021/en/smallimage/InfoQ-Trend-Report-logo-small-1626083029076.jpg)
DevOps and Cloud InfoQ Trends Report - July 2021
This article summarizes how we see the "cloud computing and DevOps" space in 2021, which focuses on fundamental infrastructure and operational patterns, the realization of patterns in technology frameworks, and the design processes and skills that a software architect or engineer must cultivate.