ChatGPT has been on everyone’s lips for last two months. I personally think, that it is a great piece of technology, that will definitely has it place in the software ecosystem. To find out how good it really is, I made a test.
I am a DevOps guy by heart and I have read a lot of twitter discussions and blog posts about how the ChatGPT is going to replace …
Azure Key Vault is a great product to store secrets like connection strings and passwords. It is relatively cheap, easy to use and integr… well quite easy to integrate if you run for example .NET Core application. If you use Key Vault with .NET Framework configuration manager, or you want to access secrets at DevOps pipeline, then things are getting bit more trickier. Let me explain why.
What are Stakeholders in Azure DevOps and how you can gain all the benefits from this user type?
Stakeholders are special users in Azure DevOps. They are free tier user, who don’t have basic or any other Azure DevOps license assigned. However they have some restrictions and they cannot perform all the same things than users with basic or some any other license in Azure DevOps.
With Stakeholder user, …
Microsoft has published new CLI tool aimed for Azure developers called Azure Developer CLI. It is completely different tool than Azure CLI and its main focus is on DevOps. The CLI provides developer-friendly commands to handle key steps in your DevOps workflow. For example to setup new project, to deploy azure resources, to setup pipelines etc. It can be used through the Windows Terminal, Visual Studio Code, Visual Studio …
In my last blog post, I gave a short review of a GitHub tool called gitStream. Now it is time to deep diver and see what secrets it beholds and how it can improve our code review process.
gitStream is a free tool (for small teams) at GitHub developed by LinearB and it can be installed directly from GitHub market place. Tool can be installed for one repo, specific …
Working code review process is a cornerstone of a modern software development. Developers should not push their changes directly into test or production environment without proper code review by another developer. The problem with code review is, that they create a tollgate for developers which slows down the code deployment process. Usually other developers are busy with their own work and they don’t have time to immediately review the code …
Want to find potential security vulnerabilities from your code base? Or want to see an impact of code changes to dependencies before you merge a pull request? If you answered yes then keep reading.
GitHub offers security features, like code scanning for private repositories under GitHub Advanced Security license. This option is only available for GitHub Enterprise users. You can test these features in public repositories (because they are free …
Last week I received a question about, how to become DevOps expert? I cannot give short answer on that, but I can share my journey, which has some key points needed to be a good DevOps expert. To understand the present, we need to know the history. Why we need DevOps and what it tries to solve.
At mid 2000 I worked in a …
I have been recently contacted a couple of times about same thing: How to run .NET tests in release pipeline? The answer isn’t actually that simple. It requires some decision making and pipeline workout to get it running.
In this post I’m going to walk through how to run XUnit (or NUnit/MSTest) tests in release pipeline and report test results so, that they are shown at Tests tab after finished …
Microsoft Defender for DevOps is latest Microsoft DevSecOps product, that extends the Defender for Clouds threat detection capabilities to Azure DevOps resources. It assesses your Azure DevOps resources according to Azure DevOps specific security recommendations and the results are then added into your Defender security score.
The feature can be enabled from Azure Portal / Microsoft Defender For Cloud. If you haven’t enable the Defender …