SlideShare a Scribd company logo

Keep your project in shape

Download as PPTX, PDF
Philippe Lafoucrière
Philippe Lafoucrière

LA-CONF 2013 talk http://2013.la-conf.org/ Developers always focus on their code, and almost never on the eco-system around their app. Dependencies can quickly make an app vulnerable, because new security holes are discovered every day. As we can't read all libraries code we're using in our project, it's kind of hard to determine what side effects could be introduced by using this or this package. Last but not least, APIs evolve, and so are packages. Sometimes APIs versions are deprecated, and if you don't pay attention to that, your app could stop working one day without notice. Ever worse, some packages can simply stop being maintained, leaving no choice then implementing a new one. That's why it's important to keep your projects in shape, the longer you wait to make it up-to-date, the harder it will be. There are some tools out there to achieve this, that every developer should know about: gemnasium (dependencies monitoring, and security alerts on them) rubytoolbox (alternatives) brakeman (security scanner)

Technology
1 of 16
Keep your project in shape LA-CONF 2013 Philippe Lafoucrière @plafoucriere
I KNOW YOUR PROJECT
Project cycle of life •Fun •Exciting •Fresh BORN •Outdated •Missing features •Insecure LIVE •Kill it! •Start over DIE Pictures stollen from: https://peepcode.com/products/play-by-play-aaroncorey I’m sorry
Software Maintenance Cost Time $
KEEP IT IN SHAPE!
Your Daily Training: Reading  Newsletters  Commits  News site  Changelogs  Twitter (?)  …
Tools
Gemnasium  Monitors your projects dependencies  Warns you about outdated gems  Sends security alerts on your projects  Changelog viewer  Decision helper about upgrading (coming soon)  Free for public projects
The Ruby Toolbox  Find alternatives for your deprecated gems  The right gem for the job  Lots of data  Free!
Brakeman Scanner gem
Brakeman scanner  Scans your [rails app] code and reports security issues  Run it every week/month!  Lots of known vulnerabilities  Your code is secure until it’s not anymore  Free and open-source
THANK YOU!
TOP 100 most downloaded gems 65% 19% 13% 2% Changelog Valid Outdated No Changelog Invalid No source Source: http://goo.gl/qozgh (shared gdocs)
Links  Tools presented  https://gemnasium.com  https://www.ruby-toolbox.com/  http://brakemanscanner.org/  Other useful tools  https://github.com/metricfu/metric_fu/  https://github.com/colszowka/simplecov  http://travis-ci.org/  About me  https://github.com/gravis  https://twitter.com/plafoucriere

Recommended

How and why governments should use OpenStreetMap - Pete Lancaster - State of ...
How and why governments should use OpenStreetMap - Pete Lancaster - State of ...How and why governments should use OpenStreetMap - Pete Lancaster - State of ...
How and why governments should use OpenStreetMap - Pete Lancaster - State of ...OSMFstateofthemap
 
The Web is Open. Let's Keep It That Way
The Web is Open. Let's Keep It That WayThe Web is Open. Let's Keep It That Way
The Web is Open. Let's Keep It That WayMarek Stępień
 
SXSW 2013: How Twitter is Changing How We Watch TV
SXSW 2013: How Twitter is Changing How We Watch TVSXSW 2013: How Twitter is Changing How We Watch TV
SXSW 2013: How Twitter is Changing How We Watch TVJenn Deering Davis
 
Data Tiering: Squeezing Scale out of MySQL (LRUG Presentation 2014-01-13)
Data Tiering: Squeezing Scale out of MySQL (LRUG Presentation 2014-01-13)Data Tiering: Squeezing Scale out of MySQL (LRUG Presentation 2014-01-13)
Data Tiering: Squeezing Scale out of MySQL (LRUG Presentation 2014-01-13)mezis
 
How to build rock solid apps & keep 100m+ users happy
How to build rock solid apps & keep 100m+ users happyHow to build rock solid apps & keep 100m+ users happy
How to build rock solid apps & keep 100m+ users happyIordanis (Jordan) Giannakakis
 
Enrich the web with comments
Enrich the web with commentsEnrich the web with comments
Enrich the web with commentsRoss Bruniges
 
Revenge of the ORMs
Revenge of the ORMsRevenge of the ORMs
Revenge of the ORMsMegan Bowra-Dean
 
Where Values Lead Good People Follow
Where Values Lead Good People FollowWhere Values Lead Good People Follow
Where Values Lead Good People FollowNancy Lyons
 

Recommended

How and why governments should use OpenStreetMap - Pete Lancaster - State of ...
How and why governments should use OpenStreetMap - Pete Lancaster - State of ...How and why governments should use OpenStreetMap - Pete Lancaster - State of ...
How and why governments should use OpenStreetMap - Pete Lancaster - State of ...OSMFstateofthemap
 
The Web is Open. Let's Keep It That Way
The Web is Open. Let's Keep It That WayThe Web is Open. Let's Keep It That Way
The Web is Open. Let's Keep It That WayMarek Stępień
 
SXSW 2013: How Twitter is Changing How We Watch TV
SXSW 2013: How Twitter is Changing How We Watch TVSXSW 2013: How Twitter is Changing How We Watch TV
SXSW 2013: How Twitter is Changing How We Watch TVJenn Deering Davis
 
Data Tiering: Squeezing Scale out of MySQL (LRUG Presentation 2014-01-13)
Data Tiering: Squeezing Scale out of MySQL (LRUG Presentation 2014-01-13)Data Tiering: Squeezing Scale out of MySQL (LRUG Presentation 2014-01-13)
Data Tiering: Squeezing Scale out of MySQL (LRUG Presentation 2014-01-13)mezis
 
How to build rock solid apps & keep 100m+ users happy
How to build rock solid apps & keep 100m+ users happyHow to build rock solid apps & keep 100m+ users happy
How to build rock solid apps & keep 100m+ users happyIordanis (Jordan) Giannakakis
 
Enrich the web with comments
Enrich the web with commentsEnrich the web with comments
Enrich the web with commentsRoss Bruniges
 
Revenge of the ORMs
Revenge of the ORMsRevenge of the ORMs
Revenge of the ORMsMegan Bowra-Dean
 
Where Values Lead Good People Follow
Where Values Lead Good People FollowWhere Values Lead Good People Follow
Where Values Lead Good People FollowNancy Lyons
 
No money? No matter - Improve your website with next to no cash
No money? No matter - Improve your website with next to no cashNo money? No matter - Improve your website with next to no cash
No money? No matter - Improve your website with next to no cashIWMW
 
Badges, Badgers, Mushrooms, and a Snake
Badges, Badgers, Mushrooms, and a SnakeBadges, Badgers, Mushrooms, and a Snake
Badges, Badgers, Mushrooms, and a Snakenniiccoollee
 
Marketing Your Tech Talent - OSCON 2014
Marketing Your Tech Talent - OSCON 2014Marketing Your Tech Talent - OSCON 2014
Marketing Your Tech Talent - OSCON 2014deirdrestraughan
 
Using Sakai with Multiple Locales
Using Sakai with Multiple LocalesUsing Sakai with Multiple Locales
Using Sakai with Multiple Localesballsy333
 
C# - Raise the bar with functional & immutable constructs (Dutch)
C# - Raise the bar with functional & immutable constructs (Dutch)C# - Raise the bar with functional & immutable constructs (Dutch)
C# - Raise the bar with functional & immutable constructs (Dutch)Rick Beerendonk
 
Yippee-IA: All you need to know about Information Architecture in 5 minutes
Yippee-IA: All you need to know about Information Architecture in 5 minutesYippee-IA: All you need to know about Information Architecture in 5 minutes
Yippee-IA: All you need to know about Information Architecture in 5 minutesChris How
 
Securing the Web without site-specific passwords
Securing the Web without site-specific passwordsSecuring the Web without site-specific passwords
Securing the Web without site-specific passwordsFrancois Marier
 
TypeScript kata: The TDD Style
TypeScript kata: The TDD StyleTypeScript kata: The TDD Style
TypeScript kata: The TDD StyleRonnie Hegelund
 
Rapid Product Design in the Wild - Agile Iceland
Rapid Product Design in the Wild - Agile IcelandRapid Product Design in the Wild - Agile Iceland
Rapid Product Design in the Wild - Agile IcelandMichele Ide-Smith
 
How releasing faster changes testing
How releasing faster changes testingHow releasing faster changes testing
How releasing faster changes testingDr. Alexander Schwartz
 
Cdl2013 découvrir la carte mondiale libre openstreetmap
Cdl2013 découvrir la carte mondiale libre openstreetmap Cdl2013 découvrir la carte mondiale libre openstreetmap
Cdl2013 découvrir la carte mondiale libre openstreetmapOpenStreetMap, Artefacts.coop
 
Wakanda#3
Wakanda#3Wakanda#3
Wakanda#3kmiyako
 
Datatium - radiation free responsive experiences
Datatium - radiation free responsive experiencesDatatium - radiation free responsive experiences
Datatium - radiation free responsive experiencesAndrew Fisher
 
An Introduction to Multisite - WordCamp Phoenix
An Introduction to Multisite - WordCamp PhoenixAn Introduction to Multisite - WordCamp Phoenix
An Introduction to Multisite - WordCamp Phoenixvegasgeek
 
F# for C# devs - SDD 2015
F# for C# devs - SDD 2015F# for C# devs - SDD 2015
F# for C# devs - SDD 2015Phillip Trelford
 
Online Community Management at CNN TechTuesdays
Online Community Management at CNN TechTuesdaysOnline Community Management at CNN TechTuesdays
Online Community Management at CNN TechTuesdaysPatrick O'Keefe
 
Benchmarking APIs - LNUG February 2014
Benchmarking APIs - LNUG February 2014Benchmarking APIs - LNUG February 2014
Benchmarking APIs - LNUG February 2014Matteo Figus
 
Is having no limits a limitation [distilled version]
Is having no limits a limitation [distilled version]Is having no limits a limitation [distilled version]
Is having no limits a limitation [distilled version]Ben Brignell
 
challenges and recommendations for obtaining chemical structures of industry-...
challenges and recommendations for obtaining chemical structures of industry-...challenges and recommendations for obtaining chemical structures of industry-...
challenges and recommendations for obtaining chemical structures of industry-...Sean Ekins
 
Martijn van Exel - Collaborate to compete: Regain your Competitive Edge with osm
Martijn van Exel - Collaborate to compete: Regain your Competitive Edge with osmMartijn van Exel - Collaborate to compete: Regain your Competitive Edge with osm
Martijn van Exel - Collaborate to compete: Regain your Competitive Edge with osmOSMFstateofthemap
 
Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonData Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonAnna Loughnan Colquhoun
 
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, AdobeApidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobeapidays
 

More Related Content

Viewers also liked

No money? No matter - Improve your website with next to no cash
No money? No matter - Improve your website with next to no cashNo money? No matter - Improve your website with next to no cash
No money? No matter - Improve your website with next to no cashIWMW
 
Badges, Badgers, Mushrooms, and a Snake
Badges, Badgers, Mushrooms, and a SnakeBadges, Badgers, Mushrooms, and a Snake
Badges, Badgers, Mushrooms, and a Snakenniiccoollee
 
Marketing Your Tech Talent - OSCON 2014
Marketing Your Tech Talent - OSCON 2014Marketing Your Tech Talent - OSCON 2014
Marketing Your Tech Talent - OSCON 2014deirdrestraughan
 
Using Sakai with Multiple Locales
Using Sakai with Multiple LocalesUsing Sakai with Multiple Locales
Using Sakai with Multiple Localesballsy333
 
C# - Raise the bar with functional & immutable constructs (Dutch)
C# - Raise the bar with functional & immutable constructs (Dutch)C# - Raise the bar with functional & immutable constructs (Dutch)
C# - Raise the bar with functional & immutable constructs (Dutch)Rick Beerendonk
 
Yippee-IA: All you need to know about Information Architecture in 5 minutes
Yippee-IA: All you need to know about Information Architecture in 5 minutesYippee-IA: All you need to know about Information Architecture in 5 minutes
Yippee-IA: All you need to know about Information Architecture in 5 minutesChris How
 
Securing the Web without site-specific passwords
Securing the Web without site-specific passwordsSecuring the Web without site-specific passwords
Securing the Web without site-specific passwordsFrancois Marier
 
TypeScript kata: The TDD Style
TypeScript kata: The TDD StyleTypeScript kata: The TDD Style
TypeScript kata: The TDD StyleRonnie Hegelund
 
Rapid Product Design in the Wild - Agile Iceland
Rapid Product Design in the Wild - Agile IcelandRapid Product Design in the Wild - Agile Iceland
Rapid Product Design in the Wild - Agile IcelandMichele Ide-Smith
 
Cdl2013 découvrir la carte mondiale libre openstreetmap
Cdl2013 découvrir la carte mondiale libre openstreetmap Cdl2013 découvrir la carte mondiale libre openstreetmap
Cdl2013 découvrir la carte mondiale libre openstreetmapOpenStreetMap, Artefacts.coop
 
Wakanda#3
Wakanda#3Wakanda#3
Wakanda#3kmiyako
 
Datatium - radiation free responsive experiences
Datatium - radiation free responsive experiencesDatatium - radiation free responsive experiences
Datatium - radiation free responsive experiencesAndrew Fisher
 
An Introduction to Multisite - WordCamp Phoenix
An Introduction to Multisite - WordCamp PhoenixAn Introduction to Multisite - WordCamp Phoenix
An Introduction to Multisite - WordCamp Phoenixvegasgeek
 
Online Community Management at CNN TechTuesdays
Online Community Management at CNN TechTuesdaysOnline Community Management at CNN TechTuesdays
Online Community Management at CNN TechTuesdaysPatrick O'Keefe
 
Benchmarking APIs - LNUG February 2014
Benchmarking APIs - LNUG February 2014Benchmarking APIs - LNUG February 2014
Benchmarking APIs - LNUG February 2014Matteo Figus
 
Is having no limits a limitation [distilled version]
Is having no limits a limitation [distilled version]Is having no limits a limitation [distilled version]
Is having no limits a limitation [distilled version]Ben Brignell
 
challenges and recommendations for obtaining chemical structures of industry-...
challenges and recommendations for obtaining chemical structures of industry-...challenges and recommendations for obtaining chemical structures of industry-...
challenges and recommendations for obtaining chemical structures of industry-...Sean Ekins
 
Martijn van Exel - Collaborate to compete: Regain your Competitive Edge with osm
Martijn van Exel - Collaborate to compete: Regain your Competitive Edge with osmMartijn van Exel - Collaborate to compete: Regain your Competitive Edge with osm
Martijn van Exel - Collaborate to compete: Regain your Competitive Edge with osmOSMFstateofthemap
 

Viewers also liked (20)

No money? No matter - Improve your website with next to no cash
No money? No matter - Improve your website with next to no cashNo money? No matter - Improve your website with next to no cash
No money? No matter - Improve your website with next to no cash
 
Badges, Badgers, Mushrooms, and a Snake
Badges, Badgers, Mushrooms, and a SnakeBadges, Badgers, Mushrooms, and a Snake
Badges, Badgers, Mushrooms, and a Snake
 
Marketing Your Tech Talent - OSCON 2014
Marketing Your Tech Talent - OSCON 2014Marketing Your Tech Talent - OSCON 2014
Marketing Your Tech Talent - OSCON 2014
 
Using Sakai with Multiple Locales
Using Sakai with Multiple LocalesUsing Sakai with Multiple Locales
Using Sakai with Multiple Locales
 
C# - Raise the bar with functional & immutable constructs (Dutch)
C# - Raise the bar with functional & immutable constructs (Dutch)C# - Raise the bar with functional & immutable constructs (Dutch)
C# - Raise the bar with functional & immutable constructs (Dutch)
 
Yippee-IA: All you need to know about Information Architecture in 5 minutes
Yippee-IA: All you need to know about Information Architecture in 5 minutesYippee-IA: All you need to know about Information Architecture in 5 minutes
Yippee-IA: All you need to know about Information Architecture in 5 minutes
 
Securing the Web without site-specific passwords
Securing the Web without site-specific passwordsSecuring the Web without site-specific passwords
Securing the Web without site-specific passwords
 
TypeScript kata: The TDD Style
TypeScript kata: The TDD StyleTypeScript kata: The TDD Style
TypeScript kata: The TDD Style
 
Rapid Product Design in the Wild - Agile Iceland
Rapid Product Design in the Wild - Agile IcelandRapid Product Design in the Wild - Agile Iceland
Rapid Product Design in the Wild - Agile Iceland
 
How releasing faster changes testing
How releasing faster changes testingHow releasing faster changes testing
How releasing faster changes testing
 
Cdl2013 découvrir la carte mondiale libre openstreetmap
Cdl2013 découvrir la carte mondiale libre openstreetmap Cdl2013 découvrir la carte mondiale libre openstreetmap
Cdl2013 découvrir la carte mondiale libre openstreetmap
 
Wakanda#3
Wakanda#3Wakanda#3
Wakanda#3
 
Datatium - radiation free responsive experiences
Datatium - radiation free responsive experiencesDatatium - radiation free responsive experiences
Datatium - radiation free responsive experiences
 
An Introduction to Multisite - WordCamp Phoenix
An Introduction to Multisite - WordCamp PhoenixAn Introduction to Multisite - WordCamp Phoenix
An Introduction to Multisite - WordCamp Phoenix
 
F# for C# devs - SDD 2015
F# for C# devs - SDD 2015F# for C# devs - SDD 2015
F# for C# devs - SDD 2015
 
Online Community Management at CNN TechTuesdays
Online Community Management at CNN TechTuesdaysOnline Community Management at CNN TechTuesdays
Online Community Management at CNN TechTuesdays
 
Benchmarking APIs - LNUG February 2014
Benchmarking APIs - LNUG February 2014Benchmarking APIs - LNUG February 2014
Benchmarking APIs - LNUG February 2014
 
Is having no limits a limitation [distilled version]
Is having no limits a limitation [distilled version]Is having no limits a limitation [distilled version]
Is having no limits a limitation [distilled version]
 
challenges and recommendations for obtaining chemical structures of industry-...
challenges and recommendations for obtaining chemical structures of industry-...challenges and recommendations for obtaining chemical structures of industry-...
challenges and recommendations for obtaining chemical structures of industry-...
 
Martijn van Exel - Collaborate to compete: Regain your Competitive Edge with osm
Martijn van Exel - Collaborate to compete: Regain your Competitive Edge with osmMartijn van Exel - Collaborate to compete: Regain your Competitive Edge with osm
Martijn van Exel - Collaborate to compete: Regain your Competitive Edge with osm
 

Recently uploaded

Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonData Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonAnna Loughnan Colquhoun
 
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, AdobeApidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobeapidays
 
presentation ICT roal in 21st century education
presentation ICT roal in 21st century educationpresentation ICT roal in 21st century education
presentation ICT roal in 21st century educationjfdjdjcjdnsjd
 
Tata AIG General Insurance Company - Insurer Innovation Award 2024
Tata AIG General Insurance Company - Insurer Innovation Award 2024Tata AIG General Insurance Company - Insurer Innovation Award 2024
Tata AIG General Insurance Company - Insurer Innovation Award 2024The Digital Insurer
 
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdfUnderstanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdfUK Journal
 
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityPrincipled Technologies
 
GenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day PresentationGenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day PresentationMichael W. Hawkins
 
Handwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsHandwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsMaria Levchenko
 
Tech Trends Report 2024 Future Today Institute.pdf
Tech Trends Report 2024 Future Today Institute.pdfTech Trends Report 2024 Future Today Institute.pdf
Tech Trends Report 2024 Future Today Institute.pdfhans926745
 
Artificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and MythsArtificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and MythsJoaquim Jorge
 
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerThousandEyes
 
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...Neo4j
 
Scaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationScaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationRadu Cotescu
 
Strategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherStrategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherRemote DBA Services
 
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data DiscoveryTrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data DiscoveryTrustArc
 
Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...Enterprise Knowledge
 
The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024Rafal Los
 
Powerful Google developer tools for immediate impact! (2023-24 C)
Powerful Google developer tools for immediate impact! (2023-24 C)Powerful Google developer tools for immediate impact! (2023-24 C)
Powerful Google developer tools for immediate impact! (2023-24 C)wesley chun
 
Boost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdfBoost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdfsudhanshuwaghmare1
 
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...apidays
 

Recently uploaded (20)

Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonData Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt Robison
 
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, AdobeApidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
 
presentation ICT roal in 21st century education
presentation ICT roal in 21st century educationpresentation ICT roal in 21st century education
presentation ICT roal in 21st century education
 
Tata AIG General Insurance Company - Insurer Innovation Award 2024
Tata AIG General Insurance Company - Insurer Innovation Award 2024Tata AIG General Insurance Company - Insurer Innovation Award 2024
Tata AIG General Insurance Company - Insurer Innovation Award 2024
 
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdfUnderstanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
 
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivity
 
GenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day PresentationGenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day Presentation
 
Handwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsHandwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed texts
 
Tech Trends Report 2024 Future Today Institute.pdf
Tech Trends Report 2024 Future Today Institute.pdfTech Trends Report 2024 Future Today Institute.pdf
Tech Trends Report 2024 Future Today Institute.pdf
 
Artificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and MythsArtificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and Myths
 
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected Worker
 
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
 
Scaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationScaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organization
 
Strategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherStrategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a Fresher
 
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data DiscoveryTrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
 
Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...
 
The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024
 
Powerful Google developer tools for immediate impact! (2023-24 C)
Powerful Google developer tools for immediate impact! (2023-24 C)Powerful Google developer tools for immediate impact! (2023-24 C)
Powerful Google developer tools for immediate impact! (2023-24 C)
 
Boost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdfBoost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdf
 
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
 

Keep your project in shape

  • 1. Keep your project in shape LA-CONF 2013 Philippe Lafoucrière @plafoucriere
  • 2. I KNOW YOUR PROJECT
  • 3. Project cycle of life •Fun •Exciting •Fresh BORN •Outdated •Missing features •Insecure LIVE •Kill it! •Start over DIE Pictures stollen from: https://peepcode.com/products/play-by-play-aaroncorey I’m sorry
  • 5. KEEP IT IN SHAPE!
  • 6. Your Daily Training: Reading  Newsletters  Commits  News site  Changelogs  Twitter (?)  …
  • 8.
  • 9. Gemnasium  Monitors your projects dependencies  Warns you about outdated gems  Sends security alerts on your projects  Changelog viewer  Decision helper about upgrading (coming soon)  Free for public projects
  • 10.
  • 11. The Ruby Toolbox  Find alternatives for your deprecated gems  The right gem for the job  Lots of data  Free!
  • 13. Brakeman scanner  Scans your [rails app] code and reports security issues  Run it every week/month!  Lots of known vulnerabilities  Your code is secure until it’s not anymore  Free and open-source
  • 15. TOP 100 most downloaded gems 65% 19% 13% 2% Changelog Valid Outdated No Changelog Invalid No source Source: http://goo.gl/qozgh (shared gdocs)
  • 16. Links  Tools presented  https://gemnasium.com  https://www.ruby-toolbox.com/  http://brakemanscanner.org/  Other useful tools  https://github.com/metricfu/metric_fu/  https://github.com/colszowka/simplecov  http://travis-ci.org/  About me  https://github.com/gravis  https://twitter.com/plafoucriere