InfoQ Homepage Articles
-
/articles/buildpacks-software-supply-chain/en/smallimage/logo-1633347463775.jpg)
Using Cloud Native Buildpacks to Address Security Requirements for the Software Supply Chain
Software supply chain attacks are increasing in severity and frequency, with no clear path laid out towards its mitigation. A simple way to trace the origin of vulnerable components is available in the form of Software Bill Of Materials (SBOMs), generated automatically when using Buildpacks.
-
/articles/symptoms-toxic-leadership/en/smallimage/logo-1633338716417.jpg)
The Three Symptoms of Toxic Leadership and How to Get out of It
None of us are born toxic leaders, but anyone can easily become one. In the past several years, workplaces have started to feel the effects of “toxic leadership.” Now is the time to educate everyone on the importance of speaking right, doing right, treating each other right in the workplace, and above all, being a non-toxic leader.
-
/articles/webassembly-dapr-wasmedge/en/smallimage/logo-1633065107977.jpg)
A Lightweight, Safe, Portable, and High-Performance Runtime for Dapr
Dapr (Distributed Application Runtime) has quickly become a very popular open-source framework for building microservices. It provides building blocks and pre-packaged services that are commonly used in distributed applications, such as service invocation, state management, message queues, resource bindings and triggers, mTLS secure connections, and service monitoring.
-
/articles/DevSecOps-shiftleft-cybersecurity/en/smallimage/logo-1632922735916.jpg)
Virtual Panel: DevSecOps and Shifting Security Left
Recent attacks, that targeted SolarWinds, Colonial Pipeline, and others, have shown that development environments come ever more frequently on the radar of malicious actors. A virtual panel on the value of shifting left security, how to take responsibility for it, and the time-to-market pitfalls.
-
/articles/decide-self-managed-projects/en/smallimage/logo-1632924445490.jpg)
How to Decide in Self-Managed Projects - a Lean Approach to Governance
Whether self-managed or self-governed as a project, the power still needs to be distributed internally. If the project is open to decide how things are done, how do we decide? A solid but flexible set of tools and practices like sociocracy is a great starting point for projects to have clear but lean processes that can grow as we grow.
-
/articles/letting-go-remote/en/smallimage/logo-1632826986726.jpg)
Best Practices for Letting Go of a Remote Team Member
At Doist, letting go of a team member is a last resort. Over 14 years, the remote-first pioneer has parted ways with approximately 25 team members, which has evolved the way they handle remote terminations. Today, Doist employs 100 people in 35+ countries with a 90+% employee retention rate. Here COO Allan Christensen offers his lessons learned on letting go of a remote team member.
-
/articles/service-mesh-unnecessary-complexity/en/smallimage/logo-1632479954476.jpg)
How Unnecessary Complexity Gave the Service Mesh a Bad Name
There is immense value in adopting a service mesh, but it must be done in a lightweight manner to avoid unnecessary complexity. Take a pragmatic approach when implementing a service mesh by aligning with the core features of the technology, such as standardized monitoring and smart routing, and watching out for distractions.
-
/articles/gamification-digital-product-practices/en/smallimage/logo-1629983620201.jpg)
Gamification: a Strategy for Enterprises to Enable Digital Product Practices
To embrace the changing needs of consumers, organizations are exploring new ways to ideate, collaborate and create products, some of them being embracing co-creation models, investment in long-term value, and fostering collective wisdom through gamification. This article shows how gamification helps to create perspective around product practices and bring us closer to next-generation products.
-
/articles/medical-innovating-agile/en/smallimage/logo-1632156742576.jpg)
How Medical Companies are Innovating through Agile Practices
The adoption of Agile methods has been steadily growing in medical product companies over the past ten years. Practices vary from cloud-based continuous flow for data-intensive services to sprint-based for physical devices with embedded software. The question is no longer whether, but how Agile can work in medical product development - for our mix of technical, market, and regulatory constraints.
-
/articles/enterprise-private-public-blockchains/en/smallimage/logo-1631858421603.jpg)
Private vs. Public Blockchains for Enterprise Business Solutions
In this article, we’ll explore the benefits of using blockchain for business solutions, describing the differences between public and private versions of this technology in practice. We’ll also talk about a new type of chain — a hybrid of private and public chains which takes the benefits of both to create a truly versatile platform with no compromises.
-
/articles/hybrid-teams-adapt/en/smallimage/logo-1631896158633.jpg)
Hybrid Work is Here to Stay, and Software Teams Need to Adapt
In a post-pandemic workplace, face-to-face conversation is no longer the de facto collaboration method. As hybrid and distributed software development teams emerge, we look at ways that tools and processes can foster collaboration no matter where the team is located. Asynchronous work, a single source of truth, clear documentation and owners, and automation will empower hybrid development teams.
-
/articles/reset-team-sprint-0/en/smallimage/logo-1631683156216.jpg)
Resetting a Struggling Scrum Team Using Sprint 0
Sprint 0 can be a great mechanism in Agile transformations to reset existing teams which are not delivering value, exhibiting a lack of accountability, or struggling with direct collaboration with customers. This article shares the experiences from doing a Sprint 0 with an existing team which was struggling to deliver, helping them to align to a new product vision and become a stronger team.