Stephen Chin, profile picture
Uploaded byStephen Chin
PPTX, PDF1,921 views

DevOps Tools for Java Developers v2

The document discusses essential DevOps tools for Java developers, emphasizing the importance of version control systems, continuous integration and deployment, and security scanning. It outlines various workflows like git-flow, GitHub flow, and GitLab flow, highlighting their strategies for branching and merging. The document stresses that as companies become more software-centric, managing security vulnerabilities is crucial.

Download to read offline
DevOps Tools for Java Developers Stephen Chin @steveonjava VP of Devrel @JFrog
2 HOW I PICTURED MYSELF DURING THE PANDEMIC
3 HOW I ACTUALLY LOOK DURING THE PANDEMIC
Source Code Repository Package Manager Security Scanner Continuous Integration Continuous Delivery Single Source of Truth Build and test on every integration Full bill of materials and binary history for traceability Deep scanning of dependencies and containers Distribution and automated deployment to the edge and beyond
Evolution of Version Control Systems • 1st Generation – Locking • SCCS, RCS • 2nd Generation – Optimistic Locking • CVS, Subversion • 3rd Generation – Distributed • Git, Mercurial
Adoption of Major VCS Systems Source: Google Trends
How Distributed version control works
Usage of developer tools https://insights.stackoverflow.com/survey/2020
GIT-FLOW • Development Branches: Branch per feature • Merge Strategy: No fast forward merges • Rebasing History: No rebasing • Release Strategy: Separate release branch
GITHUB FLOW • Development Branches: Branch per feature • Merge Strategy: No fast forward merges • Rebasing History: No rebasing • Release Strategy: No separate release branches GITLAB FLOW • Development Branches: Branch per feature • Merge Strategy: Open ended • Rebasing History: Optional • Release Strategy: Separate release branches
Source Code Repository Package Manager Security Scanner Continuous Integration Continuous Deployment Single Source of Truth Build and test on every integration Full bill of materials and binary history for traceability Deep scanning of dependencies and containers Automated deployment to the edge and beyond
Source Code Repository Package Manager Security Scanner Continuous Integration Continuous Delivery Single Source of Truth Build and test on every integration Full bill of materials and binary history for traceability Deep scanning of dependencies and containers Distribution and automated deployment to the edge and beyond
“AS EVERY COMPANY BECOME A SOFTWARE COMPANY, SECURITY VULNERABILITIES ARE THE NEW OIL SPILLS”
Source Code Repository Package Manager Security Scanner Continuous Integration Continuous Delivery Single Source of Truth Build and test on every integration Full bill of materials and binary history for traceability Deep scanning of dependencies and containers Distribution and automated deployment to the edge and beyond
22
25
(?:(?:"|'|]|}||d|(?:nan|infinity|true|false|null|undefined| symbol|math)|`|-|+)+[)]*;?((?:s|-|~|!|{}||||+)*.*(?:.*=.*)))
(?:(?:"|'|]|}||d|(?:nan|infinity|true|false|null|undefined| symbol|math)|`|-|+)+[)]*;?((?:s|-|~|!|{}||||+)*.*(?:.*=.*)))
.*(?:.*=.*)
.*.*=.*
Source Code Repository Package Manager Security Scanner Continuous Integration Continuous Delivery Single Source of Truth Build and test on every integration Full bill of materials and binary history for traceability Deep scanning of dependencies and containers Distribution and automated deployment to the edge and beyond
34
ARTIFACTORY DISTRIBUTION XRAY CI Servers Remote Repositories Build Tools/Dependency Managers QA/QC Provisioning Tools 1 2 3 4 5 6 7 8 10 10 Version Control System Take VCS changes Commit the changes Dev. Team Declare new dependencies Resolve dependencies Resolve dependencies Resolve dependencies Deploy module Artifacts and Buildinfo BOM Contribute Metadata Deploy to Production Roll out for Internal Distribution Production Servers Build MSBuild DRONE External Data Sources Updat e ARTIFACTORY EDGE ARTIFACTORY EDGE ARTIFACTORY EDGE Analyze Build Tools/Dependency Managers 9 MSBuild
THANK YOU!

More Related Content

PDF
ISACA SV Chapter: Securing Software Supply Chains
byJim Bugwadia
 
PDF
GitOps 101 Presentation.pdf
byssuser31375f
 
PDF
Git SVN Migrate Reasons
byOvidiu Dimulescu
 
PDF
Developing XWiki
byVincent Massol
 
PDF
GitOps is the best modern practice for CD with Kubernetes
byVolodymyr Shynkar
 
PDF
DevSecOps - Background, Status and Future Challenges
bydsc71656
 
PDF
What is GitOps? How GitOps works? we discuss Key Challanges.
byaniporwal00
 
PDF
OSS Japan - Application Monitoring And Tracing In Kubernetes
byDavid vonThenen
 
ISACA SV Chapter: Securing Software Supply Chains
byJim Bugwadia
 
GitOps 101 Presentation.pdf
byssuser31375f
 
Git SVN Migrate Reasons
byOvidiu Dimulescu
 
Developing XWiki
byVincent Massol
 
GitOps is the best modern practice for CD with Kubernetes
byVolodymyr Shynkar
 
DevSecOps - Background, Status and Future Challenges
bydsc71656
 
What is GitOps? How GitOps works? we discuss Key Challanges.
byaniporwal00
 
OSS Japan - Application Monitoring And Tracing In Kubernetes
byDavid vonThenen
 

Similar to DevOps Tools for Java Developers v2

PPTX
Enabling Production Grade Containerized Applications through Policy Based Inf...
byDocker, Inc.
 
PPTX
Leveraging Analytics for DevOps
byMichael Floyd
 
PDF
Journey toward3rdplatform
byTzung-Hsien (Shawn) Ho
 
PPTX
Shopify - CNCF March 2025 Meetup - Presentation - 26-03-25.pptx
byMichael Foster
 
PDF
Alt. GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using ...
byJames Anderson
 
PPTX
Ramin Orujov - Android API Overview and Repository
byRashad Aliyev
 
PPTX
Hackathon Azerbaijan Android API Overview and Repository
byRamin Orujov
 
PDF
Designing an unobtrusive analytics framework for monitoring java applications...
byIWSM Mensura
 
PDF
Increase the Velocity of Your Software Releases Using GitHub and DeployHub
byDevOps.com
 
PPTX
DevSecCon London 2017: when good containers go bad by Tim Mackey
byDevSecCon
 
PDF
Intro to GitOps with Weave GitOps, Flagger and Linkerd
byWeaveworks
 
PDF
DevOps Service | Mindtree
byAnikeyRoy
 
PPTX
DevOps Interview Questions Part - 1 | Devops Interview Questions And Answers ...
bySimplilearn
 
PPTX
2016 Federal User Group Conference - TeamForge Capabilities and Directions
byCollabNet
 
PPTX
Git Version Control System usage in the devops
bySwapnilPawar483968
 
PDF
Tracy Miranda_DevOps Loop, May 2022.pdf
byVMware Tanzu
 
PPTX
Continuous delivery by sergey seletsky
bySergey Seletsky
 
PDF
S3 Group on Code Management - RDK Users Conference 2014
byS3 Group | TV Technology
 
PDF
Agile Secure Cloud Application Development Management
byAdam Getchell
 
PPTX
Top10 Characteristics of Awesome Apps
byCasey Lee
 
Enabling Production Grade Containerized Applications through Policy Based Inf...
byDocker, Inc.
 
Leveraging Analytics for DevOps
byMichael Floyd
 
Journey toward3rdplatform
byTzung-Hsien (Shawn) Ho
 
Shopify - CNCF March 2025 Meetup - Presentation - 26-03-25.pptx
byMichael Foster
 
Alt. GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using ...
byJames Anderson
 
Ramin Orujov - Android API Overview and Repository
byRashad Aliyev
 
Hackathon Azerbaijan Android API Overview and Repository
byRamin Orujov
 
Designing an unobtrusive analytics framework for monitoring java applications...
byIWSM Mensura
 
Increase the Velocity of Your Software Releases Using GitHub and DeployHub
byDevOps.com
 
DevSecCon London 2017: when good containers go bad by Tim Mackey
byDevSecCon
 
Intro to GitOps with Weave GitOps, Flagger and Linkerd
byWeaveworks
 
DevOps Service | Mindtree
byAnikeyRoy
 
DevOps Interview Questions Part - 1 | Devops Interview Questions And Answers ...
bySimplilearn
 
2016 Federal User Group Conference - TeamForge Capabilities and Directions
byCollabNet
 
Git Version Control System usage in the devops
bySwapnilPawar483968
 
Tracy Miranda_DevOps Loop, May 2022.pdf
byVMware Tanzu
 
Continuous delivery by sergey seletsky
bySergey Seletsky
 
S3 Group on Code Management - RDK Users Conference 2014
byS3 Group | TV Technology
 
Agile Secure Cloud Application Development Management
byAdam Getchell
 
Top10 Characteristics of Awesome Apps
byCasey Lee
 

More from Stephen Chin

PPTX
10 Ways Everyone Can Support the Java Community
byStephen Chin
 
PPTX
Java Clients and JavaFX: The Definitive Guide
byStephen Chin
 
PPTX
DevOps Tools for Java Developers
byStephen Chin
 
PPTX
Java Clients and JavaFX - Presented to LJC
byStephen Chin
 
PPTX
RetroPi Handheld Raspberry Pi Gaming Console
byStephen Chin
 
PPTX
JavaFX on Mobile (by Johan Vos)
byStephen Chin
 
PPTX
Confessions of a Former Agile Methodologist (JFrog Edition)
byStephen Chin
 
PPTX
Devoxx4Kids Lego Workshop
byStephen Chin
 
PPTX
Raspberry Pi with Java (JJUG)
byStephen Chin
 
PPTX
Confessions of a Former Agile Methodologist
byStephen Chin
 
PPTX
Internet of Things Magic Show
byStephen Chin
 
PPTX
Zombie Time - JSR 310 for the Undead
byStephen Chin
 
PPTX
JCrete Embedded Java Workshop
byStephen Chin
 
PPTX
Oracle IoT Kids Workshop
byStephen Chin
 
PPTX
OpenJFX on Android and Devices
byStephen Chin
 
PPTX
Java on Raspberry Pi Lab
byStephen Chin
 
PDF
Java 8 for Tablets, Pis, and Legos
byStephen Chin
 
PDF
DukeScript
byStephen Chin
 
PPTX
Devoxx4Kids NAO Workshop
byStephen Chin
 
PPTX
Raspberry Pi Gaming 4 Kids (Devoxx4Kids)
byStephen Chin
 
10 Ways Everyone Can Support the Java Community
byStephen Chin
 
Java Clients and JavaFX: The Definitive Guide
byStephen Chin
 
DevOps Tools for Java Developers
byStephen Chin
 
Java Clients and JavaFX - Presented to LJC
byStephen Chin
 
RetroPi Handheld Raspberry Pi Gaming Console
byStephen Chin
 
JavaFX on Mobile (by Johan Vos)
byStephen Chin
 
Confessions of a Former Agile Methodologist (JFrog Edition)
byStephen Chin
 
Devoxx4Kids Lego Workshop
byStephen Chin
 
Raspberry Pi with Java (JJUG)
byStephen Chin
 
Confessions of a Former Agile Methodologist
byStephen Chin
 
Internet of Things Magic Show
byStephen Chin
 
Zombie Time - JSR 310 for the Undead
byStephen Chin
 
JCrete Embedded Java Workshop
byStephen Chin
 
Oracle IoT Kids Workshop
byStephen Chin
 
OpenJFX on Android and Devices
byStephen Chin
 
Java on Raspberry Pi Lab
byStephen Chin
 
Java 8 for Tablets, Pis, and Legos
byStephen Chin
 
DukeScript
byStephen Chin
 
Devoxx4Kids NAO Workshop
byStephen Chin
 
Raspberry Pi Gaming 4 Kids (Devoxx4Kids)
byStephen Chin
 

Recently uploaded

PDF
TrustArc Webinar - The Future of Third-Party Privacy Risk: Trends, Tactics & ...
byTrustArc
 
PPTX
Documenta11y’s Role in Healthcare Document Accessibility
bydocumenta11y
 
PDF
What Is Agentic AI and How Is It Transforming ERP Systems?
byScalaCode
 
PDF
Session 2 - Specialized AI Associate Series: Orchestrator Deep-Dive and UiPa...
byDianaGray10
 
PPTX
sap 2016-09-14_PP_MRPType_VB_Blogged.pptx
byAmira Jemi
 
PDF
Session 1 - Specialized AI Associate Series: Essential Studio Automation Fea...
byDianaGray10
 
PDF
Cloud and internet-of-things secure integration along with security concerns
byIJICTJOURNAL
 
PPTX
CLOUD STUDY JAM 2025 GOOGLE DEVELOPER GROUPS ON CAMPUS NSEC
byasutoshkumar560
 
PDF
Web Mapping 101: Creating Dynamic Web Maps with Geospatial Data
bySafe Software
 
PPTX
TechVerse Kent (Combining Tech, AI, Innovation and Creativity)
byKritarthDevli
 
PPTX
Unit 1- Strategies to AVOID ErrorsBias.pptx
byapurvshimpi02
 
PDF
How to get started with Agentic Automation
byUiPathCommunity
 
PDF
Redefining HR Content Creation: Job Description Automation with UiPath's Agen...
byDianaGray10
 
PPTX
Introduction-to-Machine-Learning-Part-1-3.pptx
byAliBilal39
 
PDF
A SEA of Energy Efficiency Opportunities!
byMemoori
 
PDF
CIDT: Blockchain, DeFi & Product Engineering - MVPs in 4 Weeks with a Senior-...
byTetianaBuchynska1
 
PDF
OWASP Transparency Exchange API: How We (Will) Share xBOMs
byPavel Shukhman
 
PDF
The Role of Human Experiences (HX) in GenAI Adoption
byDr. Tathagat Varma
 
PDF
Readying Enterprise Networks for Artificial Intelligence
byEnterprise Management Associates
 
PPTX
Lightning_talk_Mojo comparision of python vs mojo performance
byAbhijeet Mote
 
TrustArc Webinar - The Future of Third-Party Privacy Risk: Trends, Tactics & ...
byTrustArc
 
Documenta11y’s Role in Healthcare Document Accessibility
bydocumenta11y
 
What Is Agentic AI and How Is It Transforming ERP Systems?
byScalaCode
 
Session 2 - Specialized AI Associate Series: Orchestrator Deep-Dive and UiPa...
byDianaGray10
 
sap 2016-09-14_PP_MRPType_VB_Blogged.pptx
byAmira Jemi
 
Session 1 - Specialized AI Associate Series: Essential Studio Automation Fea...
byDianaGray10
 
Cloud and internet-of-things secure integration along with security concerns
byIJICTJOURNAL
 
CLOUD STUDY JAM 2025 GOOGLE DEVELOPER GROUPS ON CAMPUS NSEC
byasutoshkumar560
 
Web Mapping 101: Creating Dynamic Web Maps with Geospatial Data
bySafe Software
 
TechVerse Kent (Combining Tech, AI, Innovation and Creativity)
byKritarthDevli
 
Unit 1- Strategies to AVOID ErrorsBias.pptx
byapurvshimpi02
 
How to get started with Agentic Automation
byUiPathCommunity
 
Redefining HR Content Creation: Job Description Automation with UiPath's Agen...
byDianaGray10
 
Introduction-to-Machine-Learning-Part-1-3.pptx
byAliBilal39
 
A SEA of Energy Efficiency Opportunities!
byMemoori
 
CIDT: Blockchain, DeFi & Product Engineering - MVPs in 4 Weeks with a Senior-...
byTetianaBuchynska1
 
OWASP Transparency Exchange API: How We (Will) Share xBOMs
byPavel Shukhman
 
The Role of Human Experiences (HX) in GenAI Adoption
byDr. Tathagat Varma
 
Readying Enterprise Networks for Artificial Intelligence
byEnterprise Management Associates
 
Lightning_talk_Mojo comparision of python vs mojo performance
byAbhijeet Mote
 

DevOps Tools for Java Developers v2

  • 1.
    DevOps Tools forJava Developers Stephen Chin @steveonjava VP of Devrel @JFrog
  • 2.
    2 HOW I PICTUREDMYSELF DURING THE PANDEMIC
  • 3.
    3 HOW I ACTUALLYLOOK DURING THE PANDEMIC
  • 4.
    Source Code Repository Package ManagerSecurity Scanner Continuous Integration Continuous Delivery Single Source of Truth Build and test on every integration Full bill of materials and binary history for traceability Deep scanning of dependencies and containers Distribution and automated deployment to the edge and beyond
  • 6.
    Evolution of VersionControl Systems • 1st Generation – Locking • SCCS, RCS • 2nd Generation – Optimistic Locking • CVS, Subversion • 3rd Generation – Distributed • Git, Mercurial
  • 7.
    Adoption of MajorVCS Systems Source: Google Trends
  • 8.
  • 9.
    Usage of developertools https://insights.stackoverflow.com/survey/2020
  • 10.
    GIT-FLOW • Development Branches: Branchper feature • Merge Strategy: No fast forward merges • Rebasing History: No rebasing • Release Strategy: Separate release branch
  • 11.
    GITHUB FLOW • DevelopmentBranches: Branch per feature • Merge Strategy: No fast forward merges • Rebasing History: No rebasing • Release Strategy: No separate release branches GITLAB FLOW • Development Branches: Branch per feature • Merge Strategy: Open ended • Rebasing History: Optional • Release Strategy: Separate release branches
  • 12.
    Source Code Repository Package ManagerSecurity Scanner Continuous Integration Continuous Deployment Single Source of Truth Build and test on every integration Full bill of materials and binary history for traceability Deep scanning of dependencies and containers Automated deployment to the edge and beyond
  • 15.
    Source Code Repository Package ManagerSecurity Scanner Continuous Integration Continuous Delivery Single Source of Truth Build and test on every integration Full bill of materials and binary history for traceability Deep scanning of dependencies and containers Distribution and automated deployment to the edge and beyond
  • 16.
    “AS EVERY COMPANYBECOME A SOFTWARE COMPANY, SECURITY VULNERABILITIES ARE THE NEW OIL SPILLS”
  • 21.
    Source Code Repository Package ManagerSecurity Scanner Continuous Integration Continuous Delivery Single Source of Truth Build and test on every integration Full bill of materials and binary history for traceability Deep scanning of dependencies and containers Distribution and automated deployment to the edge and beyond
  • 22.
  • 25.
  • 28.
  • 29.
  • 30.
  • 31.
  • 33.
    Source Code Repository Package ManagerSecurity Scanner Continuous Integration Continuous Delivery Single Source of Truth Build and test on every integration Full bill of materials and binary history for traceability Deep scanning of dependencies and containers Distribution and automated deployment to the edge and beyond
  • 34.
  • 35.
    ARTIFACTORY DISTRIBUTION XRAY CI Servers RemoteRepositories Build Tools/Dependency Managers QA/QC Provisioning Tools 1 2 3 4 5 6 7 8 10 10 Version Control System Take VCS changes Commit the changes Dev. Team Declare new dependencies Resolve dependencies Resolve dependencies Resolve dependencies Deploy module Artifacts and Buildinfo BOM Contribute Metadata Deploy to Production Roll out for Internal Distribution Production Servers Build MSBuild DRONE External Data Sources Updat e ARTIFACTORY EDGE ARTIFACTORY EDGE ARTIFACTORY EDGE Analyze Build Tools/Dependency Managers 9 MSBuild
  • 36.