IT/DevOps consultant
Cloud/Solution Architect
Board gamer and sci-fi fan
Ponderer of life mysteries
House owner and Handyman
Tech
› Azure
› Cloud Foundry
› Crap to Cloud
› DevOps
› Evaluating CICD solutions
› Github Actions set-env deprecation
› Initial contact with Swift + Vapor
› Inner source
› Jenkins Show Pw Hack
› Security tools
› So what to do when you have a fresh laptop?
Management
› The art of communication
› The value of certifications
› Volunteer work
Terran
› Corona - Covid 19
› Rules of Speaking
› There be blog?
Definitely needed stuff.
Has automated pull requests to update dependencies.
The issue feed is used by github I think.
Including the lgtm.com stuff is quite powerful. Mostly free for open source stuff.
Dependency scanning! Automated pull requests and security audit emails. That’s cool. Even needed.
Does OWASP scanning of your repo.
Seems like a nice competitor to github.
I know they have some scanning stuff in their pipelines, but it’s not dedicated such as Snyk.