DevOps *

Software Development Methodology

ArticlesPostsNewsAuthors

alexovchinnicov Jun 19 2020 at 17:51

Monitoring and Logging external services in Kubernetes

3 min

3.3K

DevOps*Kubernetes*

Greetings to all!

As a matter of fact I haven't found so far any generalized guide on logging and monitoring of metrics from external systems to Kubernetes on the web. Here I want to share with you my own version. First of all it is supposed that you have already got working Prometheus and other services.

As an example I use third-party data for stateful service RDBMS PostgreSQL in a Docker container. In our company we also use the Helm package manager, and you'll find how it works below. You can see same examples in this article below. You can see same examples in this article below. For a complete solution we create a nested chart.

ultral May 4 2020 at 15:24

Ansible: CoreOS to CentOS, 18 months long journey

4 min

1.6K

DevOps*Systems engineering*Monetization of IT systems*Server Administration*System administration*

There was a custom configuration management solution.

I would like to share the story about a project. The project used to use a custom configuration management solution. Migration lasted 18 months. You can ask me 'Why?'. There are some answers below about changing processes, agreements and workflows.

ultral May 3 2020 at 16:33

How to test Ansible and don't go nuts

10 min

3.6K

DevOps*IT Infrastructure*IT systems testing*System administration*Systems engineering*

It is the translation of my speech at DevOps-40 2020-03-18:

After the second commit, each code becomes legacy. It happens because the original ideas do not meet actual requirements for the system. It is not bad or good thing. It is the nature of infrastructure & agreements between people. Refactoring should align requirements & actual state. Let me call it Infrastructure as Code refactoring.

Okhomiak Feb 27 2020 at 01:11

Are my open-source libraries vulnerable? (2 min reading to make your life more secure)

2 min

2.6K

DevOps*Information Security*IT systems testing*Web services testing*Mobile applications testing*

The explosion of open source and issues related to it

The amount of open source or other third party code used in a software project is estimated as 60-90% of a codebase. Components, such as libraries, frameworks, and other software modules, almost always run with full privileges. If a vulnerable component is exploited, such an attack can facilitate serious data loss or server takeover. Applications using components with known vulnerabilities may undermine application defences and enable a range of possible attacks and impacts.

Conclusion: even if you perform constant security code reviews, you still might be vulnerable because of third-party components.

Some have tried to do this manually, but the sheer amount of work and data is growing and is time consuming, difficult, and error prone to manage. It would require several full time employees and skilled security analysts to constantly monitor all sources to stay on top.

Stolyarrr Feb 13 2020 at 14:42

PVS-Studio Is Now in Chocolatey: Checking Chocolatey under Azure DevOps

9 min

642

PVS-Studio corporate blogC#*DevOps*Open source*Development for Windows*

We continue making the use of PVS-Studio more convenient. Our analyzer is now available in Chocolatey, the package manager for Windows. We believe this will make it easier to deploy PVS-Studio, particularly in cloud services. So right off the bat, we also checked the source code of the same Chocolatey. Azure DevOps took on the role of the CI system.

Ontologic Dec 9 2019 at 12:54

How to Write a Smart Contract with Python on Ontology? Part 5: Native API

3 min

533

Python*DevOps*

Tutorial

In the previous Python tutorial posts, I have introduced the Ontology Smart Contract in
Part 1: Blockchain & Block API and
Part 2: Storage API
Part 3: Runtime API
Part 4: Native API and described how to use smart contracts for ONT / ONG transfer.

Today we will talk about how to use Upgrade API to upgrade smart contract. There are 2 APIs: Destroy and Migrate.

Stolyarrr Nov 20 2019 at 10:03

PVS-Studio in the Clouds: GitLab CI/CD

10 min

1.1K

PVS-Studio corporate blogC++*DevOps*

This article continues the series of publications on usage of PVS-Studio in cloud systems. This time we'll look at the way the analyzer works along with GitLab CI, which is a product made by GitLab Inc. Static analyzer integration in a CI system allows detecting bugs right after the project build and is a highly effective way to reduce the cost of finding bugs.

+28

braindebug Nov 14 2019 at 20:45

Down the Rabbit Hole: A Story of One varnishreload Error — part 1

8 min

1.1K

Shells*DevOps*Debugging**nix*

After hitting the keyboard buttons for the past 20 minutes, as if he was typing for his life, ghostinushanka turns to me with a half-mad look in his eyes and a sly smile, “Dude, I think I got it.

Look at this” — as he points to one of the characters on screen — “I bet my red hat that if we add what I’ve just sent you here” — as he points to another place in the code — “there will be no error anymore.”
Slightly puzzled and tired I modify the sed expression we’ve been figuring out for some time now, save the file and run systemctl varnish reload. Error message gone…

“Those emails I’ve exchanged with the candidate,” my colleague continues, as his smile changes to a wide and genuine grin, “It suddenly struck me that this is the very same exact problem!”

Ontologic Oct 17 2019 at 09:44

How to Write a Smart Contract with Python on Ontology? Part 4: Native API

4 min

1.8K

Distributed systems*Cryptography*CryptocurrenciesPython*DevOps*

Tutorial

Earlier, I have introduced the Ontology Smart Contract in
Part 1: Blockchain & Block API and
Part 2: Storage API
Part 3: Runtime API
Today, let’s talk about how to invoke an Ontology native smart contract through the Native API. One of the most typical functions of invoking native contract is asset transfer.

MrDvorak Oct 10 2019 at 15:04

Analysis of commits and pull requests in Travis CI, Buddy and AppVeyor using PVS-Studio

10 min

756

PVS-Studio corporate blogBuild automation*Cloud services*GitHub*DevOps*

Starting from the version 7.04, the PVS-Studio analyzer for C and C++ languages on Linux and macOS provides the test feature of checking the list of specified files. Using the new mode, you can configure the analyzer to check commits and pull requests. This article covers setting up the check of certain modified files from a GitHub project in such popular CI (Continuous Integration) systems, as Travis CI, Buddy and AppVeyor.

+21

Ontologic Oct 9 2019 at 08:17

How to Write a Smart Contract with Python on Ontology? Part 3: Runtime API

3 min

1.4K

DevOps*Python*CryptocurrenciesCryptography*Programming*

Tutorial

Introduction

Earlier, I have introduced the Ontology Smart Contract in
Part 1: Blockchain & Block API and
Part 2: Storage API
Now when you have an idea about how to call the relevant API for persistent storage when developing Python smart contract on Ontology, let’s go on to Runtime API (Contract Execution API). The Runtime API has 8 related APIs that provide common interfaces for contract execution and help developers get, convert, and validate data. Here’s a brief description of these 8 APIs:

Ontologic Oct 9 2019 at 06:40

How to Write a Smart Contract with Python on Ontology? Part 2: Storage API

3 min

1.4K

Distributed systems*Programming*CryptocurrenciesPython*DevOps*

Tutorial

This is an official tutorial published earlier on Ontology Medium blog
Excited to publish it for Habr readers. Feel free to ask any related questions and suggest a better format for tutorial materials

Foreword

Earlier, in Part 1, we introduced the Blockchain & Block API of Ontology’s smart contract. Today we will discuss how to use the second module: Storage API. The Storage API has five related APIs that enable addition, deletion, and changes to persistent storage in blockchain smart contracts. Here’s a brief description of the five APIs:

Ilya_Gainulin Oct 7 2019 at 15:12

PVS-Studio in the Clouds: CircleCI

11 min

742

PVS-Studio corporate blogC++*DevOps*Development for Windows*

This is a new piece of our series of articles about using the PVS-Studio static analyzer with cloud CI systems. Today we are going to look at another service, CircleCI. We'll take the Kodi media player application as a test project and see if we can find any interesting bugs in its source code.

+24

sainnr Oct 6 2019 at 21:39

Automate SOAP client auto-generation routines with WSDL import for SBT and Scala

5 min

3.9K

DevOps*Java*Scala*

Working with SOAP often gets tricky, and dealing with WSDL might be a huge contribution to the complexity of this task. Really, it could be the least expected thing to face when you are into a modern & fancy language like for example, Scala, that is well known for its reactiveness and asynchronous way of dealing with requests. In fact, many of the software developers that have made their way into industry quite recently, might not even know about SOAP and WSDL protocols, and get quickly annoyed or even enraged when first trying to connect to such a legacy service. So, should we deprecate this altogether in favour of modern technology stack, or maybe there is a less painful solution?

OAndreev Sep 13 2019 at 16:32

PVS-Studio in the Clouds: Azure DevOps

13 min

1.1K

PVS-Studio corporate blogDevelopment for Windows*Microsoft Azure*DevOps*C#*

This is a second article, which focuses on usage of the PVS-Studio analyzer in cloud CI-systems. This time we'll consider the platform Azure DevOps — a cloud CI\CD solution from Microsoft. We'll be analyzing the ShareX project.

+23

ultral Sep 12 2019 at 16:05

Lessons learned from testing Over 200,000 lines of Infrastructure Code

11 min

3.2K

Configuring Linux*DevOps*IT Infrastructure*IT systems testing*

IaC (Infrastructure as Code) is a modern approach and I believe that infrastructure is code. It means that we should use the same philosophy for infrastructure as for software development. If we are talking that infrastructure is code, then we should reuse practices from development for infrastructure, i.e. unit testing, pair programming, code review. Please, keep in mind this idea while reading the article.

Russian Version

ValeryKomarov Sep 11 2019 at 10:04

Configuration of the Warnings Next Generation plugin for integration with PVS-Studio

3 min

1.7K

PVS-Studio corporate blogDevOps*Development Management*IT Infrastructure*IT systems testing*

The PVS-Studio 7.04 release coincided with the release of the Warnings Next Generation 6.0.0 plugin for Jenkins. Right in this release Warnings NG Plugin added support of the PVS-Studio static code analyzer. This plugin visualizes data related to compiler warnings or other analysis tools in Jenkins. This article will cover in detail how to install and configure this plugin to use it with PVS-Studio, and will describe most of its features.

+32

SvyatoslavMC Sep 4 2019 at 16:48

PVS-Studio 7.04

8 min

918

PVS-Studio corporate blogC*C++*DevOps*

Summer is not only a holiday season, but also time of fruitful work. Sunny days are so inspiring that there's enough energy both for late walks and large code commits. The second summer PVS-Studio 7.04 release turned out to be quite large, so we suggest for your attention this press release, in which we'll tell you about everything.

+17

YMinaev Aug 6 2019 at 11:17

Getting Started with the PVS-Studio Static Analyzer for C++ Development under Linux

4 min

2.2K

PVS-Studio corporate blogDevelopment for Linux*DevOps*C++*C*

PVS-Studio supports analyzing projects developed in C, C++, C#, and Java. You can use the analyzer under Windows, Linux, and macOS. This small article will tell you the basics of analyzing C and C++ code in Linux environment.

Installation

There are different ways to install PVS-Studio under Linux, depending on your distro type. The most convenient and preferred method is to use the repository, since it allows auto-updating the analyzer upon releasing new versions. Another option is to use the installation package, which you can get here.

+21

kurliker Jul 1 2019 at 18:12

Microservices architecture & implementation Step-by-Step Part 1

2 min

9.6K

.NET*C#*DevOps*

From sandbox

Hi All,

I’m in the process of implementing a new simple microservices-based project as an example of a step-by-step guide for those who had a hard time with a microservices architecture and are still looking for “another” good reference. Also, I would really appreciate thought through feedback and proposal to make this project a high-quality chunk of work.

There are tons of articles and source code examples. But, unfortunately, I could not find any reference with simple step-by-step instructions, without doing a deep dive into Docker, Event Store, a multitude of configurations, cloud deployment stuff, etc. I cloned several projects and tried to start playing with them, but you know, only God knows how to start them, which dependencies are missing and why all those scripts are failing with thousands of ERRORS.

For example, this eShop project from Microsoft contains all we need, but it is not so simple to figure out what is going on there, SQL database connection strings, Docker scripts fail, no How-Tos and I’m not sure it is super-simple architecture you need to start with.

+11

1 2 3

5 6