Working code review process is a cornerstone of a modern software development. Developers should not push their changes directly into test or production environment without proper code review by another developer. The problem with code review is, that they create a tollgate for developers which slows down the code deployment process. Usually other developers are busy with their own work and they don’t have time to immediately review the code …
Want to find potential security vulnerabilities from your code base? Or want to see an impact of code changes to dependencies before you merge a pull request? If you answered yes then keep reading.
GitHub offers security features, like code scanning for private repositories under GitHub Advanced Security license. This option is only available for GitHub Enterprise users. You can test these features in public repositories (because they are free …
Last week I received a question about, how to become DevOps expert? I cannot give short answer on that, but I can share my journey, which has some key points needed to be a good DevOps expert. To understand the present, we need to know the history. Why we need DevOps and what it tries to solve.
At mid 2000 I worked in a …
I have been recently contacted a couple of times about same thing: How to run .NET tests in release pipeline? The answer isn’t actually that simple. It requires some decision making and pipeline workout to get it running.
In this post I’m going to walk through how to run XUnit (or NUnit/MSTest) tests in release pipeline and report test results so, that they are shown at Tests tab after finished …
Microsoft Defender for DevOps is latest Microsoft DevSecOps product, that extends the Defender for Clouds threat detection capabilities to Azure DevOps resources. It assesses your Azure DevOps resources according to Azure DevOps specific security recommendations and the results are then added into your Defender security score.
The feature can be enabled from Azure Portal / Microsoft Defender For Cloud. If you haven’t enable the Defender …
The Azure DevOps Boards Hubs is basically a term for new improved “UX” of Azure DevOps Boards. The main principles and features in Boards remains the same, but the Boards Hubs improves the accessibility, readability and visualization of the Board pages. The feature affects Boards, Backlog, Sprints and Queries pages. The feature itself doesn’t bring anything completely new into table, only the UX improvements.
GitHub Copilot is an AI code assistant which helps you to write code and increases your productivity. Copilot is currently in closed beta (preview), but you can get yourself into waitlist and hopefully get invitation in just few months. I think I got my invitation like in six weeks.
Copilot can be installed to Visual Studio as an extension and the extension is available at the Visual Studios own marketplace. …
Shift-Left in security has been a trend for awhile and the reason for that is, that automated CI/CD pipelines are tempting breach points for hackers. Unprotected CI/CD pipeline is easy and tempting route into production environment and can cause some serious issues. One way to improve security is to monitor our pipelines for an unwanted changes. Azure DevOps has some great tools for implementing the …
In the last blog post we looked how Azure DevOps Test Plans is used to structure testing and how we can run the regression testing. In this post we are going to look how Test Plans can be used to handle different test environments and how we can improve our test cases with parameters.
Configurations is a Test Plan feature that can be used to define different environments …
Azure Test Plans provides tools for testers to improve software quality and collaboration throughout the development process. The browser-based test management solution provides capabilities for planned manual testing, user acceptance testing, exploratory testing, and gathering feedback from stakeholders.
The typical use case of Test Plans is manual testing that should either happen along the development within sprints, or release testing that aims for the stable release of software.
The …