In light of the recent Equifax breach, Gene Kim and speakers from the upcoming DevOps Enterprise Summit San Francisco (DOES17) dissected the situation and discussed the technical leadership lessons learned while offering their own expert advice for handling crisis situations. The following are more highlights from the discussion ...
Sonatype announced support of new application quality and ROI metrics within its Nexus Lifecycle solution. The new feature, known as Success Metrics, enables DevOps teams to quickly assess and measure the efficacy of their automated open source governance programs.
Each month, Sonatype customers analyze more than 650,000 applications to assess the security, license, and architectural quality associated with open source, third-party, and proprietary components used in development. Success Metrics now enables Sonatype customers to measure the number of defective components used in applications across their organization and then tracks their mean time to remediation.
Success Metrics is designed to empower teams with empirical evidence of business value and facilitate further investments in DevOps automation. DevOps teams can also use feedback from Success Metrics to improve the hygiene of their applications and the processes that deliver them.
Wayne Jackson, CEO, Sonatype, said: “We live in an age where Innovation is king, speed is critical, and open source is center stage. Today, components of varying quality are flowing through development lifecycles and landing in production applications. The best software will be built by those organizations who harness software supply chain automation practices to not only improve the quality of their applications but accelerate their ability to identify and remediate defects.”