Software supply chain attacks increased over 300% in 2021

We all knew there was an increase in software supply chain attacks in 2021, but a new study has quantified just how bad things got.

Argon Security – recently acquired by Aqua Security – published the latest edition of its annual Software Supply Chain Security Review this week.

The headline stat from Argon’s report that software supply chain attacks grew by more than 300 percent in 2021 compared to 2020.

Eran Orzel, Senior Director of Argon Customer...

20 January 2022 | Development Tools

In-built infrastructure security advantage with policy as code

It is impossible to discuss where DevOps trends are heading without mentioning policy as code, the writing of code in a high-level language to manage and automate policies in the developmental process.

In an ever-evolving regulatory landscape, organisations simply don't have the right technology or resources to scale their security and compliance efforts. Policy as code provides the much-needed agility to address regulations or standards as they emerge. This means that new...

2 December 2021 | DevOps

Understanding Kubernetes clusters with observability

Developer technologies, such as Kubernetes, are rapidly evolving. Driven by a quest to deliver faster performance, optimised efficiency, and enhanced business results, organisations are under pressure to keep up with the changing needs of engineering teams, as well as their customers.

While developer tools are geared towards progression, the speed of change means that they sometimes miss the forest for the trees. In today’s world, the most prevalent tool within the industry is...

11 November 2021 | Cloud

Setting containers free: Keep IT in line with business needs

The adoption of containers in enterprises is in full swing, with container platforms like Kubernetes fast becoming the de facto standard for deploying applications to production. Indeed, a recent study of data protection strategies for containers found that 67% of respondents are already running containers for production applications, while the remaining 33% plan to do so within the next 12 months.

Enabling application developers to package small, focused code into independent...

27 October 2021 | Cloud

SmartBear releases its 2021 State of Software Quality | API survey

SmartBear has debuted the 2021 edition of its State of Software Quality | API survey report.

The company has been releasing its report since 2016 so has accrued deep insights that are valuable to the development industry. This year’s report features responses from over 1,600 global API professionals and spans more than 17 different industries.

The headline takeaway is that just over half (51%) of respondents started creating APIs in the last five years—indicating...

5 October 2021 | API

Linux Foundation: Companies are struggling to find open-source talent

The Linux Foundation and edX have released the 2021 Open Source Jobs report which reveals the struggle companies are having in finding talent.

As the world recovers from the pandemic, the general talent shortages across industries have been well-documented. However, the new report shows just how pronounced the problem is when it comes to hiring open-source expertise.

Technology helped to keep the world moving during the pandemic and even the most resistant-to-change...

21 September 2021 | DevOps

Ram Chakravarti, CTO, BMC Software: On breaking the DevOps plateau and using automation to improve security

The majority of organisations are stuck in a "plateau" in their DevOps evolution and are struggling to advance into the higher stages of adoption.

BMC Software knows a thing or two about the subject and recently sponsored Puppet's 2021 State of DevOps report.

Developer spoke with Ram Chakravarti, CTO of BMC Software, to gain some insights into how to break the DevOps plateau and how automation can be used to bolster security.

Developer: Puppet’s 2021...

16 August 2021 | Approaches

Boris Cipot, Synopsys Software Integrity: On the cybersecurity landscape and countering threats

Following a year of high-profile cyberattacks, developers are understandably concerned their software could be the next to be compromised.

Developer caught up with Boris Cipot, Senior Sales Engineer at Synopsys Software Integrity, to discuss the cybersecurity landscape and how developers can secure their software.

Cipot came to Synopsys following the company’s acquisition of Black Duck Software. Prior to those companies, Cipot held senior roles at anti-malware...

13 August 2021 | DevOps

2021 State of DevOps report highlights factors that lead to success

Puppet’s latest State of DevOps report arrives ten years after the first edition and highlights that successful DevOps is dependent on a number of factors.

The first State of DevOps report was released when DevOps was only discussed by some cutting-edge decision-makers. A decade on, 83 percent now report their organisations are implementing DevOps practices.

Michael Stahnke, VP of Platform at CircleCI, said:

“In ten years, we've gone from hype to practice...

20 July 2021 | DevOps

GitLab: 2020 was a ‘catalyst for DevOps maturation’

GitLab’s fifth annual DevSecOps survey reveals that last year was pivotal for the maturation of DevOps.

The only silver lining from the disaster of a year that was 2020 is that it helped to highlight inefficiencies with legacy processes and technologies. As the world looks to "build back better" from the pandemic, the work of DevOps teams should provide some inspiration.

Eric Johnson, CTO at GitLab, said:

“This year’s Global DevSecOps Survey shows that...

5 May 2021 | Approaches