Quality Assurance doesn’t always get the attention it needs during a project. Maintaining and enforcing organization defined quality rules can be seen as a chore. Having code quality audited while coding is much more efficient than manually peer reviewing afterwards. We will not only demonstrate the powerful Oracle JDeveloper built-in auditing tools, but will also show how to extend it with your own auditing rules, create your own automated code fixes, and how to integrate automated auditing with your build automation.
This session shows JDeveloper’s Auditing features and other free tools to enable you and your team to consistently deliver high quality code whether it is ADF, SOA, BPM or any other technology supported by JDeveloper.
Agile Engineering Best Practices by Richard ChengExcella
By Richard Cheng, Certified Scrum Trainer and Training Business Unit Lead, Excella Consulting
21st Century IT development requires building quality into our development practices yet many software teams fail to implement technical practices that are necessary for long term success. Practices like automated builds, automated tests, automated deployments, continuous integration, and continuous delivery are now considered essential for the success of any software development project. Without these practices, the quality of software goes downhill and teams can no longer sustain their initial high levels of productivity.
However, understanding and implementing the practices can seem daunting. This session presents an easy to understand roadmap for implementing engineering best practices for non-technical audiences.
Though this topic is about engineering best practices, attendees do not have to be technical to get value from this session. The session gives a non-technical look at a technical concept and is great for any person in the organization managing, working with, or working on IT teams/programs.
Today’s cutting edge companies have software release cycles measured in days instead of months. This agility is enabled by the DevOps practice of continuous delivery, which automates building, testing, and deploying all code changes. This automation helps you catch bugs sooner and accelerates developer productivity. In this session, we’ll share best practices (including ones followed internally at Amazon) and how you can bring them to your company by using open source and AWS services.
Speaker: Raghuraman Balachandran, Solutions Architect, Amazon India
От хаоса к автоматизации тестирования на примере BackendCOMAQA.BY
В докладе мы на реальном примере проговорим классическую сложную организационно-техническую ситуацию. Вы стали частью команды «нового» проекта. Документации нет или почти нет. Автотесты используются как «магический талисман». Процессы по части тестирования отсутствуют как класс. «Кто виноват и что делать», как не растеряться, разобраться с поставленными задачами, более того, трансформировать проект в комфортный и технически интересный. Мы на реальном примере поговорим о том, как завоевать доверие заказчика, обновить/организовать процессы, «продать» эффективную автоматизацию тестирования. Покажем недостатки изначального подхода, детально проговорим технические аспекты предложенного решения: архитектуру и детали реализации фреймворка для backend тестирования.
Your Framework for Success: introduction to JavaScript Testing at ScaleSauce Labs
There are countless ways to set up your automated testing environment. When it comes to stability and maintainability, it’s crucial to choose the right frameworks at the beginning of the journey, to set yourself up for success and save yourself time and headaches further down the road.
In addition to traditional WebDriver-based JavaScript frameworks like Selenium or WebdriverIO, many new projects have popped up in recent years that provide even more capabilities, particularly for web UI testing. With the emergence of new frameworks like Puppeteer, Playwright, Cypress, and others, how do you choose which one’s right for you and your team? And how do you integrate the chosen framework into your testing practice, to shift testing left and speed up your software delivery lifecycle?
In this webinar, Sauce Labs experts will provide an overview of the JavaScript framework landscape for automated functional testing, with a focus on Cypress, TestCafe, and Playwright. They will explore the differences between these frameworks, and discuss how to choose and implement the right tool for your project.
Key Takeaways:
- Understand how browser automation emerged over the last decade
- Learn about the technical differences of traditional and new frameworks
- Learn to pick the right JavaScript framework for your project
Speakers:
Christian Bromann | Staff Software Engineer, Sauce Labs
Daniel Graham | Senior Software Engineer, Sauce Labs
Stefan Schmidt, from Samsung Open Source Group's EFL development team, discusses current Enlightenment for Linux Quality Assurance Statistics at the recent EFL Developers Day in Dusseldorf, Germany.
How to Measure Success in Continuous Testing by Fernando Vidal and Amir Rozen...Sauce Labs
In this SauceCon 2019 talk, Fernando and Amir use observations from running 2 billion tests for thousands of Sauce Labs customers to outline the the key drivers of success in continuous testing and an provide an actionable way to see how organizations are doing relative to other successful testers. They discuss a new index which can be used by any organization to evaluate their progression towards continuous testing, and cover the components of the new continuous testing index, what makes these components such strong maturity indicators, how organizations can improve on each of the metrics, and what happens organizationally when those metrics are improved
How Vanguard Got to a CD-CD World by Craig SchwarzwaldSauce Labs
In this SauceCon 2019 presentation, Craig Schwarzwald discusses the main phases Vanguard software testing has undergone over the last 10+ years, from thousands of manual tests, to thousands of automated tests with Selenium, to Shifting Left, and to now focusing on Contract Testing. He discusses what Contract Testing is and talks about its importance in the CI/CD pipeline (giving the team virtually E2E coverage at the speed of Unit tests).
Quality Assurance doesn’t always get the attention it needs during a project. Maintaining and enforcing organization defined quality rules can be seen as a chore. Having code quality audited while coding is much more efficient than manually peer reviewing afterwards. We will not only demonstrate the powerful Oracle JDeveloper built-in auditing tools, but will also show how to extend it with your own auditing rules, create your own automated code fixes, and how to integrate automated auditing with your build automation.
This session shows JDeveloper’s Auditing features and other free tools to enable you and your team to consistently deliver high quality code whether it is ADF, SOA, BPM or any other technology supported by JDeveloper.
Agile Engineering Best Practices by Richard ChengExcella
By Richard Cheng, Certified Scrum Trainer and Training Business Unit Lead, Excella Consulting
21st Century IT development requires building quality into our development practices yet many software teams fail to implement technical practices that are necessary for long term success. Practices like automated builds, automated tests, automated deployments, continuous integration, and continuous delivery are now considered essential for the success of any software development project. Without these practices, the quality of software goes downhill and teams can no longer sustain their initial high levels of productivity.
However, understanding and implementing the practices can seem daunting. This session presents an easy to understand roadmap for implementing engineering best practices for non-technical audiences.
Though this topic is about engineering best practices, attendees do not have to be technical to get value from this session. The session gives a non-technical look at a technical concept and is great for any person in the organization managing, working with, or working on IT teams/programs.
Today’s cutting edge companies have software release cycles measured in days instead of months. This agility is enabled by the DevOps practice of continuous delivery, which automates building, testing, and deploying all code changes. This automation helps you catch bugs sooner and accelerates developer productivity. In this session, we’ll share best practices (including ones followed internally at Amazon) and how you can bring them to your company by using open source and AWS services.
Speaker: Raghuraman Balachandran, Solutions Architect, Amazon India
От хаоса к автоматизации тестирования на примере BackendCOMAQA.BY
В докладе мы на реальном примере проговорим классическую сложную организационно-техническую ситуацию. Вы стали частью команды «нового» проекта. Документации нет или почти нет. Автотесты используются как «магический талисман». Процессы по части тестирования отсутствуют как класс. «Кто виноват и что делать», как не растеряться, разобраться с поставленными задачами, более того, трансформировать проект в комфортный и технически интересный. Мы на реальном примере поговорим о том, как завоевать доверие заказчика, обновить/организовать процессы, «продать» эффективную автоматизацию тестирования. Покажем недостатки изначального подхода, детально проговорим технические аспекты предложенного решения: архитектуру и детали реализации фреймворка для backend тестирования.
Your Framework for Success: introduction to JavaScript Testing at ScaleSauce Labs
There are countless ways to set up your automated testing environment. When it comes to stability and maintainability, it’s crucial to choose the right frameworks at the beginning of the journey, to set yourself up for success and save yourself time and headaches further down the road.
In addition to traditional WebDriver-based JavaScript frameworks like Selenium or WebdriverIO, many new projects have popped up in recent years that provide even more capabilities, particularly for web UI testing. With the emergence of new frameworks like Puppeteer, Playwright, Cypress, and others, how do you choose which one’s right for you and your team? And how do you integrate the chosen framework into your testing practice, to shift testing left and speed up your software delivery lifecycle?
In this webinar, Sauce Labs experts will provide an overview of the JavaScript framework landscape for automated functional testing, with a focus on Cypress, TestCafe, and Playwright. They will explore the differences between these frameworks, and discuss how to choose and implement the right tool for your project.
Key Takeaways:
- Understand how browser automation emerged over the last decade
- Learn about the technical differences of traditional and new frameworks
- Learn to pick the right JavaScript framework for your project
Speakers:
Christian Bromann | Staff Software Engineer, Sauce Labs
Daniel Graham | Senior Software Engineer, Sauce Labs
Stefan Schmidt, from Samsung Open Source Group's EFL development team, discusses current Enlightenment for Linux Quality Assurance Statistics at the recent EFL Developers Day in Dusseldorf, Germany.
How to Measure Success in Continuous Testing by Fernando Vidal and Amir Rozen...Sauce Labs
In this SauceCon 2019 talk, Fernando and Amir use observations from running 2 billion tests for thousands of Sauce Labs customers to outline the the key drivers of success in continuous testing and an provide an actionable way to see how organizations are doing relative to other successful testers. They discuss a new index which can be used by any organization to evaluate their progression towards continuous testing, and cover the components of the new continuous testing index, what makes these components such strong maturity indicators, how organizations can improve on each of the metrics, and what happens organizationally when those metrics are improved
How Vanguard Got to a CD-CD World by Craig SchwarzwaldSauce Labs
In this SauceCon 2019 presentation, Craig Schwarzwald discusses the main phases Vanguard software testing has undergone over the last 10+ years, from thousands of manual tests, to thousands of automated tests with Selenium, to Shifting Left, and to now focusing on Contract Testing. He discusses what Contract Testing is and talks about its importance in the CI/CD pipeline (giving the team virtually E2E coverage at the speed of Unit tests).
Testing is a vital part of software development, since it is about finding the software bugs. You can choose from automated and manual testing. Automated testing is good for large projects with many systems users, while manual testing is good for smaller projects or for companies with insufficient budget.
You can also run Continuous testing. The purpose of Continuous testing and continuous integration is to enable continuous delivery, the end goal of which is to accelerate the delivery of high quality software.
Automation is essential for Continuous Testing but Automated Testing is not the same as Continuous Testing.
Try Jenkins Test Automation with codeBeamer ALM. Jenkins is an open source continuous integration tool written in Java. Jenkins provides continuous integration services for software development.
[FullStack NYC 2019] Effective Unit Tests for JavaScriptHazem Saleh
Unit testing coverage is a great way to show us the amount of tested lines and branches of code, but is this really enough? The answer is "no" since unit testing coverage does not really fully measure the efficiency of the unit tests. This is why there is a need for using techniques that can improve unit tests efficiency. Mutation testing is one of these powerful techniques. The main idea of mutation testing is to automatically insert bugs (mutants) into production code and then run unit tests to check if they are strong enough to fail as a result of these mutations.
This session discusses mutation testing techniques and demonstrates Stryker as a powerful mutation testing tool for JavaScript applications.
Automated Testing at The Speed of Headless by Alissa Lydon and Samantha CoffmanSauce Labs
In this SauceCon 2019 presentation, Samantha Coffman, Product Manager at Sauce Labs, and Alissa Lydon, Product Marketing Manager at Sauce Labs, discuss Sauce Headless, the industry’s first cloud-based headless testing solution, making it a fast and affordable option for early pipeline testing at scale. They will cover the benefits of using Sauce Headless in conjunction with Sauce Labs traditional VM offering to increase the release velocity, as well as examples of customers who are experiencing upwards of 50% faster test times using Sauce Headless.
This session will give an overview of Static Code Analysis, its impact on the SDLC, its benefits and problems, the various automated tools used, and a demonstration of the code analysis of a Javascript web application using Sonarqube.
QA Fes 2016. Артем Быковец. Как выживать тестировщику в Agile средеQAFest
Уже много было сказано о тестировании в Agile, но в своем докладе я хочу углубиться в детали и поговорить о:
- месте QA в классических моделях разработки: а был ли это действительно процесс обеспечения качества?
- Agile манифесте и его ценности для QA команды
- традиционном vs Agile подходе к разработке: риски, получение value, прозрачность процессов и нагрузка на команды
- тестовой документации в Agile: нужна ли она?
- том, как с пользой не писать Test Plan и что делать с тест кейсами и чек-листами
The ability of a system to respond gracefully to an unexpected hardware or software failure.
There are many levels of fault tolerance, the lowest being the ability to continue operation in the event of a power failure. Many fault-tolerant computer systems mirror all operations -- that is, every operation is performed on two or more duplicate systems, so if one fails the other can take over.
In most cases it could be achieved by redundancy in application design and set of patterns and approaches to software design.
Continuous Delivery Agile Tour Beirut 2015Dimitri Baeli
Presentation done at Agile Tour Beirut 2015 about the way LesFurets.com learnt and applies the Continous Delivery principles.
* Books and principles
* Main activities
Building Quality into Your DevSecOps PipelinesInflectra
This is a presentation on how to build quality into your DevOps/DevSecOps pipelines. The presentation covers:
- Software Quality through End-to-end Traceability: How SpiraPlan Enables Progress Tracking and Visualization through Dashboards - Adam Sandman, Inflectra
- Quality Gates: Forcing Functions to Bake Quality In - Jeffery Payne, Coveros
- Delivering Quality Through Your DevSecOps Pipeline Using SpiraPlan - Hugo Sanchez, Coveros.
The presentation was created on Feb 4, 2021.
This presentation provides an overview of the features available in Inflectra RemoteLaunch. RemoteLaunch lets you integrate different commercial and open source testing tools with our SpiraTest test management system. RemoteLaunch lets you store and version all of your test scripts centrally, and then execute them on different machines in a global test lab. It has plugins for such popular tools as TestComplete, UFT, QTP, RFT, and Ranorex.
Continuous Integration and Continuous Deployment in Enterprise scenarioDavide Benvegnù
The presentation about Continuous Integration and Continuous Deployment during the Microsoft DevOps Breakfast.
General info about CI and CD.
Demo with Visual Studio Team Services (apply also too TFS)
QA Fes 2016. Jacek Okrojek. Website performance from user perspectiveQAFest
When doing web application performance tests we usually present statistics from tools that simulates real users as a results from tests. This approach works for APIs and simple sites that does not require additional resource like javascript, css or image files. For most modern websites measurements collected that way give stakeholders information only about performance and stability of the first layer of application but give no information about performance seen from user perspective. To collect such information we need to use other tools and approaches.
In my presentation I would like to share experience my team collected when designing and implanting performance tests strategy that aims to give 360 degrees view on application performance. Such solution gives developers fast feedback about performance changes, provide tools for testers to estimate site performance before going live and measures customer experience. In particular I would like to present:
- rules for building high performance web sites
- concepts of synthetic and real user measurements
- when and what for use load generators
- potential issues with test environment
- metrics that could be collected
- JavaScript Resource and Performance APIs
- open source and commercial tools that can be used
The only way to know if your systems can handle the number of users is to load test, however load testing is hard and the infrastructure expensive. Come and see Martin demontrate the tools and techniqies that are required to test your software under load, even in Production.
Presentation on Quality Assurance with the JDeveloper Auditing Framework, covering:
- how to use default auditing framework
- creating custom rules and fixes to implement company and project standards
- SuppressWarnings JDeveloper extension to suppresswarnings in XML files
- ADF Code Guidelines JDeveloper extension
- SonarQube plugin for JDeveloper (ojaudit)
Andreas Grabner - Performance as Code, Let's Make It a StandardNeotys_Partner
Since its beginning, the Performance Advisory Council aims to promote engagement between various experts from around the world, to create relevant, value-added content sharing between members. For Neotys, to strengthen our position as a thought leader in load & performance testing. During this event, 12 participants convened in Chamonix (France) exploring several topics on the minds of today’s performance tester such as DevOps, Shift Left/Right, Test Automation, Blockchain and Artificial Intelligence.
In the world of fast changing technologies and business requirements there is no way to stay with old-school approaches to develop software. Common, leave manual interaction behind, let machine do what it's best capable for and spend your time to solve real problems. During this talk I'm going to demonstrate how to build a sophisticated continuous development pipeline for Java based project to cover things like build, test, code quality, deploy and delivery using Gradle, Jenkins, SonarQube, Docker and Ansible. As an outcome of this presentation there will be an open source project with source code.
Testing is a vital part of software development, since it is about finding the software bugs. You can choose from automated and manual testing. Automated testing is good for large projects with many systems users, while manual testing is good for smaller projects or for companies with insufficient budget.
You can also run Continuous testing. The purpose of Continuous testing and continuous integration is to enable continuous delivery, the end goal of which is to accelerate the delivery of high quality software.
Automation is essential for Continuous Testing but Automated Testing is not the same as Continuous Testing.
Try Jenkins Test Automation with codeBeamer ALM. Jenkins is an open source continuous integration tool written in Java. Jenkins provides continuous integration services for software development.
[FullStack NYC 2019] Effective Unit Tests for JavaScriptHazem Saleh
Unit testing coverage is a great way to show us the amount of tested lines and branches of code, but is this really enough? The answer is "no" since unit testing coverage does not really fully measure the efficiency of the unit tests. This is why there is a need for using techniques that can improve unit tests efficiency. Mutation testing is one of these powerful techniques. The main idea of mutation testing is to automatically insert bugs (mutants) into production code and then run unit tests to check if they are strong enough to fail as a result of these mutations.
This session discusses mutation testing techniques and demonstrates Stryker as a powerful mutation testing tool for JavaScript applications.
Automated Testing at The Speed of Headless by Alissa Lydon and Samantha CoffmanSauce Labs
In this SauceCon 2019 presentation, Samantha Coffman, Product Manager at Sauce Labs, and Alissa Lydon, Product Marketing Manager at Sauce Labs, discuss Sauce Headless, the industry’s first cloud-based headless testing solution, making it a fast and affordable option for early pipeline testing at scale. They will cover the benefits of using Sauce Headless in conjunction with Sauce Labs traditional VM offering to increase the release velocity, as well as examples of customers who are experiencing upwards of 50% faster test times using Sauce Headless.
This session will give an overview of Static Code Analysis, its impact on the SDLC, its benefits and problems, the various automated tools used, and a demonstration of the code analysis of a Javascript web application using Sonarqube.
QA Fes 2016. Артем Быковец. Как выживать тестировщику в Agile средеQAFest
Уже много было сказано о тестировании в Agile, но в своем докладе я хочу углубиться в детали и поговорить о:
- месте QA в классических моделях разработки: а был ли это действительно процесс обеспечения качества?
- Agile манифесте и его ценности для QA команды
- традиционном vs Agile подходе к разработке: риски, получение value, прозрачность процессов и нагрузка на команды
- тестовой документации в Agile: нужна ли она?
- том, как с пользой не писать Test Plan и что делать с тест кейсами и чек-листами
The ability of a system to respond gracefully to an unexpected hardware or software failure.
There are many levels of fault tolerance, the lowest being the ability to continue operation in the event of a power failure. Many fault-tolerant computer systems mirror all operations -- that is, every operation is performed on two or more duplicate systems, so if one fails the other can take over.
In most cases it could be achieved by redundancy in application design and set of patterns and approaches to software design.
Continuous Delivery Agile Tour Beirut 2015Dimitri Baeli
Presentation done at Agile Tour Beirut 2015 about the way LesFurets.com learnt and applies the Continous Delivery principles.
* Books and principles
* Main activities
Building Quality into Your DevSecOps PipelinesInflectra
This is a presentation on how to build quality into your DevOps/DevSecOps pipelines. The presentation covers:
- Software Quality through End-to-end Traceability: How SpiraPlan Enables Progress Tracking and Visualization through Dashboards - Adam Sandman, Inflectra
- Quality Gates: Forcing Functions to Bake Quality In - Jeffery Payne, Coveros
- Delivering Quality Through Your DevSecOps Pipeline Using SpiraPlan - Hugo Sanchez, Coveros.
The presentation was created on Feb 4, 2021.
This presentation provides an overview of the features available in Inflectra RemoteLaunch. RemoteLaunch lets you integrate different commercial and open source testing tools with our SpiraTest test management system. RemoteLaunch lets you store and version all of your test scripts centrally, and then execute them on different machines in a global test lab. It has plugins for such popular tools as TestComplete, UFT, QTP, RFT, and Ranorex.
Continuous Integration and Continuous Deployment in Enterprise scenarioDavide Benvegnù
The presentation about Continuous Integration and Continuous Deployment during the Microsoft DevOps Breakfast.
General info about CI and CD.
Demo with Visual Studio Team Services (apply also too TFS)
QA Fes 2016. Jacek Okrojek. Website performance from user perspectiveQAFest
When doing web application performance tests we usually present statistics from tools that simulates real users as a results from tests. This approach works for APIs and simple sites that does not require additional resource like javascript, css or image files. For most modern websites measurements collected that way give stakeholders information only about performance and stability of the first layer of application but give no information about performance seen from user perspective. To collect such information we need to use other tools and approaches.
In my presentation I would like to share experience my team collected when designing and implanting performance tests strategy that aims to give 360 degrees view on application performance. Such solution gives developers fast feedback about performance changes, provide tools for testers to estimate site performance before going live and measures customer experience. In particular I would like to present:
- rules for building high performance web sites
- concepts of synthetic and real user measurements
- when and what for use load generators
- potential issues with test environment
- metrics that could be collected
- JavaScript Resource and Performance APIs
- open source and commercial tools that can be used
The only way to know if your systems can handle the number of users is to load test, however load testing is hard and the infrastructure expensive. Come and see Martin demontrate the tools and techniqies that are required to test your software under load, even in Production.
Presentation on Quality Assurance with the JDeveloper Auditing Framework, covering:
- how to use default auditing framework
- creating custom rules and fixes to implement company and project standards
- SuppressWarnings JDeveloper extension to suppresswarnings in XML files
- ADF Code Guidelines JDeveloper extension
- SonarQube plugin for JDeveloper (ojaudit)
Andreas Grabner - Performance as Code, Let's Make It a StandardNeotys_Partner
Since its beginning, the Performance Advisory Council aims to promote engagement between various experts from around the world, to create relevant, value-added content sharing between members. For Neotys, to strengthen our position as a thought leader in load & performance testing. During this event, 12 participants convened in Chamonix (France) exploring several topics on the minds of today’s performance tester such as DevOps, Shift Left/Right, Test Automation, Blockchain and Artificial Intelligence.
In the world of fast changing technologies and business requirements there is no way to stay with old-school approaches to develop software. Common, leave manual interaction behind, let machine do what it's best capable for and spend your time to solve real problems. During this talk I'm going to demonstrate how to build a sophisticated continuous development pipeline for Java based project to cover things like build, test, code quality, deploy and delivery using Gradle, Jenkins, SonarQube, Docker and Ansible. As an outcome of this presentation there will be an open source project with source code.
Presents the current state and proposed state for Application lifecycle of Liferay Applications. Introduces DevOps concepts and explains how they can be applied to Liferay application. Also includes Ansible scripts for deployment Automation.
Software Delivery in 2016 - A Continuous Delivery ApproachGiovanni Toraldo
The speech "Software Delivery in 2016" was held by Giovanni Toraldo (Lead Developer at ClouDesire) on July 1st 2016 in Pisa, Italy.
Event: Apericoder
Organizer: Coders TUG
Security Implications for a DevOps TransformationDeborah Schalm
If your organization is undergoing a DevOps transformation, you’re probably thinking about where security fits in. All too often, we tack on security testing at the end of the delivery process, which means significant problems go undetected until development is complete. As we adopt DevOps principles and practices, we enable a natural solution to this problem: ensure that security experts are involved throughout the delivery process.
In this webinar, DevOps.com and Puppet defined a reference implementation of DevOps from the ground up, by illustrating how the software delivery process evolves at a hypothetical startup. Once we've laid a technical foundation for DevOps, we discussed the implications for security. We also discussed:
Benefits for and challenges to security during a DevOps transformation
How to craft a DevOps-ready security practice
Refinements of a standard DevOps workflow to address security needs
Security Implications for a DevOps TransformationDevOps.com
If your organization is undergoing a DevOps transformation, you’re probably thinking about where security fits in. All too often, we tack on security testing at the end of the delivery process, which means significant problems go undetected until development is complete. As we adopt DevOps principles and practices, we enable a natural solution to this problem: ensure that security experts are involved throughout the delivery process.
In this webinar, DevOps.com and Puppet defined a reference implementation of DevOps from the ground up, by illustrating how the software delivery process evolves at a hypothetical startup. Once we've laid a technical foundation for DevOps, we discussed the implications for security. We also discussed:
Benefits for and challenges to security during a DevOps transformation
How to craft a DevOps-ready security practice
Refinements of a standard DevOps workflow to address security needs
Greens Technology is a leading Training and Placement company in Chennai. We are
known for our practical approach towards trainings that enable students to gain real-
time exposure on competitive technologies. Trainings are offered by employees from
MNCs to give a real corporate exposure.
The DevOps methodology integrates development and operations so that system changes can get rolled out quickly without causing unplanned downtime. Industrial organizations that successfully implement DevOps will have a strong advantage, but knowing how to get started can be a real challenge.
In this session, we will learn about Teamcity CI Server. We will look at the different options available and how we can set a CI pipeline using Teamcity.
The ability to deliver software to production speedily and reliably is critical to supporting a disruptive business landscape and covering implementation gaps. A key factor inhibiting this is testing. DevOps practices encourage shifting left, i.e., testing more during development using unit and component test rather than with QA using end-to-end tests. However, unit and component testing lack functional coverage that may exist in QA end-to-end tests. Shifting left with a domain focus may lead to component and unit tests that don't just guarantee that the software is built right but also that the right software is build.
Similar to Enforcing code guidelines by extending JDeveloper’s auditing framework @OOW14 (20)
GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...James Anderson
Effective Application Security in Software Delivery lifecycle using Deployment Firewall and DBOM
The modern software delivery process (or the CI/CD process) includes many tools, distributed teams, open-source code, and cloud platforms. Constant focus on speed to release software to market, along with the traditional slow and manual security checks has caused gaps in continuous security as an important piece in the software supply chain. Today organizations feel more susceptible to external and internal cyber threats due to the vast attack surface in their applications supply chain and the lack of end-to-end governance and risk management.
The software team must secure its software delivery process to avoid vulnerability and security breaches. This needs to be achieved with existing tool chains and without extensive rework of the delivery processes. This talk will present strategies and techniques for providing visibility into the true risk of the existing vulnerabilities, preventing the introduction of security issues in the software, resolving vulnerabilities in production environments quickly, and capturing the deployment bill of materials (DBOM).
Speakers:
Bob Boule
Robert Boule is a technology enthusiast with PASSION for technology and making things work along with a knack for helping others understand how things work. He comes with around 20 years of solution engineering experience in application security, software continuous delivery, and SaaS platforms. He is known for his dynamic presentations in CI/CD and application security integrated in software delivery lifecycle.
Gopinath Rebala
Gopinath Rebala is the CTO of OpsMx, where he has overall responsibility for the machine learning and data processing architectures for Secure Software Delivery. Gopi also has a strong connection with our customers, leading design and architecture for strategic implementations. Gopi is a frequent speaker and well-known leader in continuous delivery and integrating security into software delivery.
UiPath Test Automation using UiPath Test Suite series, part 5DianaGray10
Welcome to UiPath Test Automation using UiPath Test Suite series part 5. In this session, we will cover CI/CD with devops.
Topics covered:
CI/CD with in UiPath
End-to-end overview of CI/CD pipeline with Azure devops
Speaker:
Lyndsey Byblow, Test Suite Sales Engineer @ UiPath, Inc.
Communications Mining Series - Zero to Hero - Session 1DianaGray10
This session provides introduction to UiPath Communication Mining, importance and platform overview. You will acquire a good understand of the phases in Communication Mining as we go over the platform with you. Topics covered:
• Communication Mining Overview
• Why is it important?
• How can it help today’s business and the benefits
• Phases in Communication Mining
• Demo on Platform overview
• Q/A
Alt. GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using ...James Anderson
Effective Application Security in Software Delivery lifecycle using Deployment Firewall and DBOM
The modern software delivery process (or the CI/CD process) includes many tools, distributed teams, open-source code, and cloud platforms. Constant focus on speed to release software to market, along with the traditional slow and manual security checks has caused gaps in continuous security as an important piece in the software supply chain. Today organizations feel more susceptible to external and internal cyber threats due to the vast attack surface in their applications supply chain and the lack of end-to-end governance and risk management.
The software team must secure its software delivery process to avoid vulnerability and security breaches. This needs to be achieved with existing tool chains and without extensive rework of the delivery processes. This talk will present strategies and techniques for providing visibility into the true risk of the existing vulnerabilities, preventing the introduction of security issues in the software, resolving vulnerabilities in production environments quickly, and capturing the deployment bill of materials (DBOM).
Speakers:
Bob Boule
Robert Boule is a technology enthusiast with PASSION for technology and making things work along with a knack for helping others understand how things work. He comes with around 20 years of solution engineering experience in application security, software continuous delivery, and SaaS platforms. He is known for his dynamic presentations in CI/CD and application security integrated in software delivery lifecycle.
Gopinath Rebala
Gopinath Rebala is the CTO of OpsMx, where he has overall responsibility for the machine learning and data processing architectures for Secure Software Delivery. Gopi also has a strong connection with our customers, leading design and architecture for strategic implementations. Gopi is a frequent speaker and well-known leader in continuous delivery and integrating security into software delivery.
Goodbye Windows 11: Make Way for Nitrux Linux 3.5.0!SOFTTECHHUB
As the digital landscape continually evolves, operating systems play a critical role in shaping user experiences and productivity. The launch of Nitrux Linux 3.5.0 marks a significant milestone, offering a robust alternative to traditional systems such as Windows 11. This article delves into the essence of Nitrux Linux 3.5.0, exploring its unique features, advantages, and how it stands as a compelling choice for both casual users and tech enthusiasts.
Observability Concepts EVERY Developer Should Know -- DeveloperWeek Europe.pdfPaige Cruz
Monitoring and observability aren’t traditionally found in software curriculums and many of us cobble this knowledge together from whatever vendor or ecosystem we were first introduced to and whatever is a part of your current company’s observability stack.
While the dev and ops silo continues to crumble….many organizations still relegate monitoring & observability as the purview of ops, infra and SRE teams. This is a mistake - achieving a highly observable system requires collaboration up and down the stack.
I, a former op, would like to extend an invitation to all application developers to join the observability party will share these foundational concepts to build on:
LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...DanBrown980551
Do you want to learn how to model and simulate an electrical network from scratch in under an hour?
Then welcome to this PowSyBl workshop, hosted by Rte, the French Transmission System Operator (TSO)!
During the webinar, you will discover the PowSyBl ecosystem as well as handle and study an electrical network through an interactive Python notebook.
PowSyBl is an open source project hosted by LF Energy, which offers a comprehensive set of features for electrical grid modelling and simulation. Among other advanced features, PowSyBl provides:
- A fully editable and extendable library for grid component modelling;
- Visualization tools to display your network;
- Grid simulation tools, such as power flows, security analyses (with or without remedial actions) and sensitivity analyses;
The framework is mostly written in Java, with a Python binding so that Python developers can access PowSyBl functionalities as well.
What you will learn during the webinar:
- For beginners: discover PowSyBl's functionalities through a quick general presentation and the notebook, without needing any expert coding skills;
- For advanced developers: master the skills to efficiently apply PowSyBl functionalities to your real-world scenarios.
Epistemic Interaction - tuning interfaces to provide information for AI supportAlan Dix
Paper presented at SYNERGY workshop at AVI 2024, Genoa, Italy. 3rd June 2024
https://alandix.com/academic/papers/synergy2024-epistemic/
As machine learning integrates deeper into human-computer interactions, the concept of epistemic interaction emerges, aiming to refine these interactions to enhance system adaptability. This approach encourages minor, intentional adjustments in user behaviour to enrich the data available for system learning. This paper introduces epistemic interaction within the context of human-system communication, illustrating how deliberate interaction design can improve system understanding and adaptation. Through concrete examples, we demonstrate the potential of epistemic interaction to significantly advance human-computer interaction by leveraging intuitive human communication strategies to inform system design and functionality, offering a novel pathway for enriching user-system engagements.
GraphSummit Singapore | The Art of the Possible with Graph - Q2 2024Neo4j
Neha Bajwa, Vice President of Product Marketing, Neo4j
Join us as we explore breakthrough innovations enabled by interconnected data and AI. Discover firsthand how organizations use relationships in data to uncover contextual insights and solve our most pressing challenges – from optimizing supply chains, detecting fraud, and improving customer experiences to accelerating drug discoveries.
Why You Should Replace Windows 11 with Nitrux Linux 3.5.0 for enhanced perfor...SOFTTECHHUB
The choice of an operating system plays a pivotal role in shaping our computing experience. For decades, Microsoft's Windows has dominated the market, offering a familiar and widely adopted platform for personal and professional use. However, as technological advancements continue to push the boundaries of innovation, alternative operating systems have emerged, challenging the status quo and offering users a fresh perspective on computing.
One such alternative that has garnered significant attention and acclaim is Nitrux Linux 3.5.0, a sleek, powerful, and user-friendly Linux distribution that promises to redefine the way we interact with our devices. With its focus on performance, security, and customization, Nitrux Linux presents a compelling case for those seeking to break free from the constraints of proprietary software and embrace the freedom and flexibility of open-source computing.
Unlocking Productivity: Leveraging the Potential of Copilot in Microsoft 365, a presentation by Christoforos Vlachos, Senior Solutions Manager – Modern Workplace, Uni Systems
Maruthi Prithivirajan, Head of ASEAN & IN Solution Architecture, Neo4j
Get an inside look at the latest Neo4j innovations that enable relationship-driven intelligence at scale. Learn more about the newest cloud integrations and product enhancements that make Neo4j an essential choice for developers building apps with interconnected data and generative AI.
15. Setting up JDev Extension Project
● Install Extension SDK (Help>CheckForUpdates)
● File > New > Applications >
Extension Application
● extension.xml and MANIFEST.MF
● Bundled as .ZIP
● Can be distributed through custom JDeveloper
Update Center
(aka network drive or URL)
39. OJAudit
● Command line auditing
● JDEV_HOME/jdev/bin/ojaudit -help
● Output in XML/text/HTML or custom xsl
40.
41. Automated QA
● Simple solution: Run ojaudit from CI server
and publish output
● Benefit: Same rules during development and
CI QA
● @SuppressWarnings and<!--
SuppressWarning--> keep list of
violations short and actionable
44. SonarQube
● Tool to manage Code Quality
● Rules, Violations, Metrics, Test Coverage, etc
● Free Open Source
● Initially Java, but now 20+ languages
● Historical data, thus trends
● Highly extensible through plugins
45.
46.
47.
48.
49. ADF EMG SonarQube plugin
● SonarQube plugin
o runs ojaudit
o converts ojaudit output to SonarQube violations
● www.sonarqube.com for base product
● Watch ADF EMG for availability of plugin
● Not specific to ADF, but for any JDev project
● Tested with JDeveloper 12c, but should work
with any version
51. Further Reading
● www.olrichs.nl
o Index page for Audit Rules
● www.redheap.com
● www.adfemg.org
o Google Groups
● http://docs.oracle.comJDeveloper Doc (not
ADF documentation)
o Developing Extensions for JDeveloper
o Java API Reference for Extension SDK
Editor's Notes
Verschillende uitingen van (standaard) audit rules (het framework).
Audit opties.
Audit Profile, samenstellen, exporteren/importeren. Per rule configureren. New via save as.
Style (weergave) / Severity (hoogte rapportage).Visibility voor java (niveau), default fix nog in te stellen als er meerdere fixen gedefinieerd zijn.
Via Application overview ook een overzicht van rules te verkrijgen.
Het overzicht, verschillende tabbladen voor verschillende soort files.
De hele JWS auditen.
De hele JWS auditen.
Overzicht in een issue overzicht. Filter en groepeer mogelijkheden.