blogs Archives - DEVOPS DONE RIGHT

Dependency Management with Renovate: Beyond the Limits of Dependabot

While mature CI pipelines often incorporate security scanner tools like Trivy and Clair. But these tools primarily identify vulnerabilities and to fix those vulnerabilities, developers manually upgrade versions of those dependencies like packages, libraries, etc.

Manually managing dependencies in software development can be a time-consuming and error-prone process, leading to several challenges. What if we use a tool that scans the entire repo and detects if updates/patches are available or not and raises PR to upgrade dependency automatically, allowing developers to review and merge them as needed. This proactive approach helps prevent the introduction of vulnerabilities in the first place by ensuring dependencies are kept up-to-date until it is zero-day vulnerabilities.

This blog introduces you to Renovate, a powerful open-source tool that automates dependency management. As an open-source, it offers various ways of installing and configuring it. We will specifically focus on installation using the command-line interface (CLI), in this blog.

Continue reading “Dependency Management with Renovate: Beyond the Limits of Dependabot”

The Fallacies of Platform Engineering

Delve into the intricacies of implementing platform engineering strategies and the misconceptions that surround it.

In today’s rapidly evolving tech landscape, the significance of platform engineering cannot be overstated. It serves as the bedrock upon which countless digital ecosystems are built, from mobile applications to cloud-based services and everything in between. Yet, for all its importance, the world of platform engineering is riddled with misconceptions & misunderstandings that can lead to costly mistakes, project delays and suboptimal outcomes. To navigate this complex terrain successfully, it is crucial to identify and address these fallacies head-on.

By exposing these fallacies and offering insights into platform engineering best practices, we aim to empower engineers, developers and decision-makers to make more informed choices and in turn, create more robust and effective platforms.

Throughout this exploration, we’ll delve into the intricacies of implementing platform engineering strategies, examining its core principles and the misconceptions that surround it. We’ll also discuss real-world examples and case studies to illustrate the consequences of falling prey to these fallacies.

CICD for Mobile App Development Using Capacitor JS on Azure DevOps

In the world of iOS mobile app development, implementing a robust CI/CD (Continuous Integration/Continuous Delivery) pipeline is essential to ensure efficient and reliable software delivery. Capacitor JS is a powerful framework that allows developers to build cross-platform mobile apps using web technologies. When combined with Azure DevOps, it enables a seamless CI/CD pipeline for iOS app development. In this blog post, we will guide you through the process of setting up a CI/CD pipeline for iOS mobile apps using Capacitor JS and Azure DevOps.

A Note on Capacitor JS

Capacitor is a free and open source (MIT-licensed) platform that enables web developers to build cross-platform apps with standard web technology that runs in modern browsers. Capacitor takes your existing web application and runs it as a native app on each platform, providing hooks into the native platform via JavaScript. These hooks can be built directly into the app, or as standalone plugins to be reused and distributed to others.

Can I reuse existing web code and share new code with a web app?
Yes! One of the strengths of Capacitor is that it runs normal web apps natively. In many cases, teams have a single codebase for web and mobile using Capacitor.

Prerequisite –

1. An azure devops account.
2. Working Web app code
3. App center account for distribution

GitHub: Self-Hosted Runner on Kubernetes

GitHub Actions is a powerful tool for automating software workflows, and it can be used to build, test, and deploy code right from GitHub. It provides a way to automate repetitive tasks and can be integrated with many popular tools and platforms.

GitHub Actions can use two types of runners: hosted and self-hosted.

Hosted runners are provided by GitHub and run on virtual machines in the cloud.
Self-hosted runners are machines that you set up and manage yourself. They run on your infrastructure, and you can customize them to meet your needs.

In this tutorial, we will show you how to set up GitHub’s self-hosted runner on Kubernetes.

Prerequisites

Before you begin, make sure you have the following:

A Kubernetes cluster
Helm Installed
Access to a GitHub repository for creating PAT and adding runners.

AWS Transit Gateway – A Saviour for your Connections

Source

As the Edtech industry continues to grow and evolve, the need for reliable and secure network infrastructure becomes imperative. Recently I got a chance to work on an Edtech project where we had to manage multiple Virtual Private Clouds (VPCs) and on-premises networks in order to accommodate their different environments – development, testing, and production.

Managing these networks separately was quite challenging and also made it difficult to troubleshoot any issues. This is where we thought of leveraging AWS Transit Gateway. In this blog, we’ll explore the capabilities of AWS Transit Gateway.

Transit Gateway can make your routing easy with the simple configuration just by making simple Transit attachments. See how it works.

What is Transit Gateway?

Transit gateways help you to connect multiple VPCs, multiple Transit Gateway, network Appliance, AWS Direct Connect Gateway, and VPN to transit Gateway. It helps you in making your routing flow understandable and easy to maintain. More over you can say it’s serverless of your VPC peering Service.