Sat.Dec 11, 2021 - Fri.Dec 17, 2021

Log4J – A 10 step mitigation plan

Xebia

There is already a lot of attention on the #Log4J vulnerability. It is all over the news while we write this blog. Many customers have asked us what to do. In this blog we give some advice on how to deal with the Log4j vulnerability and similar vulnerabilities in the future. . What to do first? Check if you are affected by the vulnerability.

Let’s Talk About Data Visualization! Featuring Tableau’s Director of Data Science & ML

Dataiku

In this episode of the Banana Data Podcast, our hosts are joined by Nathan Mannheimer (Director of Data Science and ML at Tableau) as they unriddle the value of data visualization, explore what can go right and what can go wrong, and search for an answer to inquiries surrounding the future of data visualization. Use Cases & Projects Featured

Data 87
Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Low-Code: Bridging the Gap Between DevOps and Business

DevOps.com

The need to innovate faster, manage multiple environments, optimize an application’s life cycle and achieve continuous delivery are aspirational goals that a successful DevOps team strives for.

DevOps 110

On Code Reviews

Henrik Warne

There seems to be an established truth in programming that code reviews find a lot of bugs. An example is chapter 18 (Modern Code Review ) in the book Making Software. This is however not my experience – I rarely find outright bugs when reviewing changes.

The Complete R&D Funding Guide: How to Get the Funding You Need!

Speaker: Kevin Goldsmith, Chief Technology Officer at Anaconda | Peyman Pouryekta, CEO and Technology Advisor | Bob Webber, VP Product Flow Optimization, Construx

In this interactive panel discussion, we will address common pitfalls of investments for CTOs and VPs of Engineering and will teach you how to manage your investments with confidence and properly allocate resources across business priorities.

How the advice process works in practice

Martin Fowler

Andrew finishes his article on how to scale software architecture by looking at how this technique works in practice , and also outlines how things can go wrong. more…. skip-home-page

More Trending

Agile Architectures

Agile Alliance

Some folks swear a microservices architecture is always a good choice and that a monolith architecture is always a bad choice. But is this true? And is this true for you and your product? Come to think of it – what architecture is a good choice for you and your product?

3 Tips To Help You Make The Shift Towards Remote Hiring In 2022

Hacker Earth Developers Blog

2020 changed the way the globe went to work.

Survey 205

A tech landscape and current climate sensing tool - Your own Tech Radar

Martin Fowler

Andrew's fourth supporting element for the Advice Process is using a tech radar to capture and map out your local version of the technology trends you see across your organization. more…. skip-home-page

Tools 203

Different Types of Attributes in DBMS

The Crazy Programmer

Any real-world object with self-existence is considered an entity in the computer world. Like a car, any person, any book, painting, news, building anything which is available in this world can be considered as an entity.

Optimize the Performance of Your Serverless Functions

Run mission-critical applications on serverless without sacrificing visibility.

Product-led agility: moving beyond feature delivery to define success

Agile Alliance

Gone are the days where the deployment of a user story was the ultimate signal of an achieved goal. Successful agile teams now look beyond the acceptance criteria and production environments to learn if a feature, or an entire release, is worth the effort of building it.

Agile 211

Don’t bury the waterfall

Xebia

TLDR: if you do sprints you might not be actually doing Agile. At the same time, separating your process into development and delivery phases doesn’t necessarily mean you’re doing it wrong. However, hiding the actual methodology you are practicing under labels may do more harm than good.

Agile 130

Treat integration as strategic to your business

Martin Fowler

Brandon finishes his article on how we should look at integration by arguing that it is a strategic element of an enterprise's infrastructure.

Solved: “taberror inconsistent use of tabs and spaces in indentation” in Python

The Crazy Programmer

This error mainly occurs when a code is indented using both space and tab. It is always preferred either to use tab or space and not both at the same time. Tab and space are two different things in Python. There is no specific rule for using tab. Python just expects the same number of space used in first line to be same for rest of the code. So when a code is indented with space for the first line, tab with the second line, it throws a TabError.

The Big Payoff of Application Analytics

Outdated or absent analytics won’t cut it in today's data-driven applications. And they won’t cut it for your end users, your development team, or your business. Learn how 5 companies used embedded analytics to achieve huge returns and greater value than anticipated.

Fortress Agile: nurturing and growing healthy practices in a hostile environment

Agile Alliance

When the broader organization just isn’t agile, teams can get stuck. They’re waiting for their knight in shining armor – the ‘enlightened’ executive – to transform it all. What happens when the hero isn’t coming?

Don’t burry the waterfall

Xebia

TLDR: if you do sprints you might not be actually doing Agile. At the same time, separating your process into development and delivery phases doesn’t necessarily mean you’re doing it wrong. However, hiding the actual methodology you are practicing under labels may do more harm than good.

Agile 130

Why it’s too early to get excited about Web3

O'Reilly Media - Ideas

There’s been a lot of talk about Web3 lately, and as the person who defined “Web 2.0” 17 years ago, I’m often asked to comment. I’ve generally avoided doing so because most prognostications about the future turn out to be wrong.

Overcoming Challenges to Automating DevSecOps

DevOps.com

In the last few years, DevSecOps has been widely adopted among organizations looking to get proactive with their security. Traditionally, development teams would continuously implement and deploy new applications into the enterprise and security was an additional bolt-on at the end.

The Importance of PCI Compliance and Data Ownership When Issuing Payment Cards

This eBook provides a practical explanation of the different PCI compliance approaches that payment card issuers can adopt, as well as the importance of both protecting user PII and gaining ownership and portability of their sensitive data.

The Next Wave

Agile Alliance

We have reached the point where some mid-career developers have never known anything but agile (or some definition of agile). I wonder, on balance, though, how they feel about the way they work. Do they feel pride in their work?

Agile 180

The use of "annotations" boosted our productivity in Golang

Xebia

Writing REST-services in Go is fairly boring and repetitive. Both with the standard http-library as with frameworks you need to write quite some code to implement a simple service.

How to Bring Your Hybrid Meetings to the Next Level

CEO Insider

The COVID-19 pandemic has forever changed how companies around the globe operate their businesses. As a result, many large and small organizations are working to find a balance somewhere between in-office and at-home models, known as hybrid models.

Responsibility Wreckers for Teams and Leaders [Video]

Scrum.org

Extremes of responsibility are wreckers of teams and leaders. In this Unstuck Leadership Moment, Mark explores two unhelpful and unhealthy responsibility stances

Video 154

Data-Driven Performance Feedback Helps Teams Improve Customer Outcomes

Speaker: Mickey Mantle, Founder and CEO at Wanderful Interactive Storybooks | Ron Lichty, Consultant: Interim VP Engineering, Author, Ron Lichty Consulting, Inc.

In this webinar Mickey Mantle and Ron Lichty will teach you why its important to have data driven performance reviews, the most effective way to use data in performance reviews, and how this data helps to align your employee proficiency with your company goals.

Creating Spaces for Women in Agile

Agile Alliance

For the past 20 years, Agile Alliance has been the leading non-profit membership organization dedicated to supporting Agile ways of working.

Agile 165

Influencing software quality as a Scrum Master

Xebia

The quality of the software is a responsibility of the entire team. The Product Owner is responsible for building the right thing. Ensuring we build the thing right is the main responsibility of the development team. Scrum Masters serve a key role in achieving both aspects.

SCRUM 130

Apache Log4j Flaw Puts Third-Party Software in the Spotlight

Tenable

Apache Log4j Flaw Puts Third-Party Software in the Spotlight. Robert Huber. Sun, 12/12/2021 - 17:40.

?? Would you recommend SAFe®? — Join the Survey

Scrum.org

TL; DR: Survey: Would you recommend SAFe®? SAFe® has always been a controversial topic within the agile community. Therefore, back in 2017, I ran a survey on the Net Promoter Score® of the Scaled Agile Framework SAFe®. The result back then was -52.

Survey 152

Monitoring AWS Container Environments at Scale

In this eBook, learn how to monitor AWS container environments at scale with Datadog and which key metrics to monitor when leveraging two container orchestration systems (ECS and EKS).

The Graph Donates $48M to Advance GraphQL Platforms

DevOps.com

The Graph, a provider of indexing and query tools based on the GraphQL language designed for blockchain platforms, today announced it has given $48 million to The Guild, a group of developers advancing an open source application programming interface (API) platform to further development of GraphQL-based technologies.

Cloudera Response to CVE-2021-44228

Cloudera

Summary. On December 10th 2021, the Apache Software Foundation released version 2.15.0 of the Log4j Java logging library, fixing CVE-2021-44228 , a remote code execution vulnerability affecting Log4j 2.0-2.14.

Apache Log4j Flaw: A Fukushima Moment for the Cybersecurity Industry

Tenable

Apache Log4j Flaw: A Fukushima Moment for the Cybersecurity Industry. Renaud Deraison. Mon, 12/13/2021 - 00:55. Organizations around the world will be dealing with the long-tail consequences of this vulnerability, known as Log4Shell, for years to come.