Podcasts about ci cd

Policy-as-Code is reshaping how modern teams enforce security and compliance. In this episode, we break down how organizations are replacing manual checks with automated, code-driven policies that integrate directly into CI/CD pipelines. If you're working with cloud, DevOps, or DevSecOps, this is a must-listen session to understand how PaC boosts consistency, scalability, and audit readiness.

Rani Radhakrishnan is a Principal at PwC US, leading work on AI-managed services, autonomous agents, and data-driven transformation for enterprises.The Future of AI Operations: Insights from PwC AI Managed Services // MLOps Podcast #345 with Rani Radhakrishnan, Principal, Technology Managed Services - AI, Data Analytics and Insights at PwC US.Huge thanks to PwC for supporting this episode!Join the Community: https://go.mlops.community/YTJoinInGet the newsletter: https://go.mlops.community/YTNewsletter// AbstractIn today's data-driven IT landscape, managing ML lifecycles and operations is converging.On this podcast, we'll explore how end-to-end ML lifecycle practices extend to proactive, automation-driven IT operations.We'll discuss key MLOps concepts—CI/CD pipelines, feature stores, model monitoring—and how they power anomaly detection, event correlation, and automated remediation. // BioRani Radhakrishnan, a Principal at PwC, currently leads the AI Managed Services and Data & Insight teams in PwC US Technology Managed Services.Rani excels at transforming data into strategic insights, driving informed decision-making, and delivering innovative solutions. Her leadership is marked by a deep understanding of emerging technologies and a commitment to leveraging them for business growth.Rani's ability to align and deliver AI solutions with organizational outcomes has established her as a thought leader in the industry.Her passion for applying technology to solve tough business challenges and dedication to excellence continue to inspire her teams and help drive success for her clients in the rapidly evolving AI landscape. // Related LinksWebsite: pwc.com/us/aimanagedserviceshttps://www.pwc.com/us/en/tech-effect.html~~~~~~~~ ✌️Connect With Us ✌️ ~~~~~~~Catch all episodes, blogs, newsletters, and more: https://go.mlops.community/TYExploreJoin our Slack community [https://go.mlops.community/slack]Follow us on X/Twitter [@mlopscommunity](https://x.com/mlopscommunity) or [LinkedIn](https://go.mlops.community/linkedin)] Sign up for the next meetup: [https://go.mlops.community/register]MLOps Swag/Merch: [https://shop.mlops.community/]Connect with Demetrios on LinkedIn: /dpbrinkmConnect with Rani on LinkedIn: /rani-radhakrishnan-163615Timestamps:[00:00] Getting to Know Rani[01:54] Managed services[03:50] AI usage reflection[06:21] IT operations and MLOps[11:23] MLOps and agent deployment[14:35] Startup challenges in managed services[16:50] Lift vs practicality in ML[23:45] Scaling in production[27:13] Data labeling effectiveness[29:40] Sustainability considerations[37:00] Product engineer roles[40:21] Wrap up

Do you actually need a Release Engineer to manage Salesforce DevOps? Ana Moreno joins Jack to share her incredible (and truly accidental) journey from the world of art history to the heart of tech. Before they dive into release management, Jack derails the conversation to hear all about the fascinating world of art fraud, including tales of Man Ray's lost negatives and fake Victorian photographs.Once back on track, Ana pulls back the curtain on what it really takes to manage a complex, high-stakes Salesforce release process at a company that lives and breathes DevOps.Tune in to learn:- What the day-to-day life of a dedicated Release Engineer actually looks like.- How GitLab manages weekly Salesforce releases with a 30+ person team across five pods.- Strategies for handling merge conflicts as a "necessary evil."- Ana's top advice for teams looking to overhaul their process (Hint: It's not just about buying a tool).- The practical role AI is playing in their DevOps cycle today.About DevOps Diaries: Salesforce DevOps Advocate Jack McCurdy chats to members of the Salesforce community about their experience in the Salesforce ecosystem. Expect to hear and learn from inspirational stories of personal growth and business success, whilst discovering all the trials, tribulations, and joy that comes with delivering Salesforce for companies of all shapes and sizes. New episodes bi-weekly on YouTube as well as on your preferred podcast platform.Podcast produced and sponsored by Gearset. Learn more about Gearset: https://grst.co/4iCnas2Subscribe to Gearset's YouTube channel: https://grst.co/4cTAAxmLinkedIn: https://www.linkedin.com/company/gearsetX/Twitter: https://x.com/GearsetHQFacebook: https://www.facebook.com/gearsethqAbout Gearset: Gearset is the leading Salesforce DevOps platform, with powerful solutions for metadata and CPQ deployments, CI/CD, automated testing, sandbox seeding and backups. It helps Salesforce teams apply DevOps best practices to their development and release process, so they can rapidly and securely deliver higher-quality projects. Get full access to all of Gearset's features for free with a 30-day trial: https://grst.co/4iKysKWChapters:00:00 Welcome Ana Moreno, Salesforce Release Engineer at GitLab02:36 Ana's journey: The "Accidental Admin"03:30 From art history to tech09:33 Let's talk about art fraud!15:14 From Admin to Release Engineer22:35 What does a Release Engineer actually do all day?25:48 Inside GitLab's weekly Salesforce release cycle28:09 The challenge of managing 1,000+ Apex tests33:07 Taming the "necessary evil" of merge conflicts38:41 Key advice for teams overhauling their DevOps process46:12 The real-world future of AI in the DevOps pipeline50:57 Ana's Final Mantra

An airhacks.fm conversation with Gabriel Pop (@vwggolf3) about: transition from individual contributor to engineering management since 2011, managing developer tools and AWS code suite services, discussion of AWS CodeCommit entering maintenance mode but maintaining performance and security standards, benefits of AWS CodeBuild as a serverless build service, using CodeBuild for running JARs and automated testing, proper channels for submitting AWS feature requests through documentation and github repos, CodeArtifact as artifact repository for Java JARs and other packages, using S3 for serverless lambda deployment artifacts, multi-account architecture patterns for build systems, CodeDeploy flexibility for various deployment scenarios including ECS rolling updates, lifecycle hooks in CodeDeploy for Lambda deployments, Code Connections for secure third-party repository integration without storing secrets, CodePipeline as orchestrator for CI/CD workflows, CodePipeline V2 features with tag-based triggers for release automation, event-driven architecture using Amazon EventBridge with CodeBuild and CodePipeline events, comparison with GitHub Actions and Jenkins integrations, philosophy of using AWS-native services for consistency and security, Step Functions as alternative orchestration tool, importance of automation and infrastructure as code with CDK, challenges of prioritization and trade-offs in AWS service development, AWS region expansion and service availability, end-to-end testing strategies with Java interfaces and MicroProfile, security best practices with least privilege and dedicated build accounts, developer experience improvements and console UI updates, community engagement through AWS Hero program and user groups Gabriel Pop on twitter: @vwggolf3

Driving Enterprise Innovation with AI and Strong CI/CD FoundationsAs enterprises push to deliver software faster and more efficiently, continuous integration and continuous delivery (CI/CD) pipelines have become central to modern engineering. With increasing complexity in builds, tools, and environments, the challenge is no longer just speed, but it's also about maintaining flow, consistency, and confidence in every release.In this episode of Tech Transformed, host Dana Gardner joins Arpad Kun, VP of Engineering and Infrastructure at Bitrise, to explore how solid CI/CD foundations can drive innovation and enable enterprises to harness AI in more practical, impactful ways. Drawing on findings from the Bitrise Mobile DevOps Insights Report, Kuhn shares how teams are optimising mobile delivery pipelines to accelerate development and support intelligent automation at scale.Complexity of Continuous Integration“Continuous integration pipelines are becoming more complex,” says Kuhn. “Build times are decreasing despite increasing complexity.” Faster compute and caching solutions are helping offset these pressures, but only when integrated into a cohesive CI/CD platform that can handle the rising demands of modern software delivery.A mature CI/CD environment creates stability and predictability. When developers trust their pipelines, they iterate faster and with less friction. As Kuhn notes, “A robust CI/CD platform reduces anxiety around releases.” Frequent, smaller iterations deliver faster feedback, shorten release cycles, and often improve app ratings—especially in the fast-paced world of mobile and cross-platform development.AI Ambitions with Engineering RealityIt's easy to become swept up in the potential of AI without considering whether existing foundations can support it. Many development environments are not yet equipped to handle the iterative, data-intensive nature of AI-powered software engineering. Without scalable CI/CD pipelines, teams risk encountering bottlenecks that can cancel out the potential benefits of AI.To truly drive innovation, enterprises must align their AI ambitions with robust automation, strong observability, and disciplined engineering practices. A well-designed CI/CD platform allows teams to integrate AI responsibly, accelerating testing, improving deployment accuracy, and maintaining agility even as complexity grows.TakeawaysContinuous integration pipelines are becoming more complex.Build times are decreasing despite increasing complexity.Faster computing and caching are key to improving delivery speed.Flaky tests have increased significantly, causing inefficiencies.Monitoring and isolating flaky tests can improve build success rates.Maintaining flow for engineers is crucial for productivity.A robust CI/CD platform reduces anxiety around releases.Frequent iterations lead to faster feedback and improved app ratings.Cross-platform development is on the rise, especially with React Native.The future of software development will be influenced by AI.For more insights, follow Bitrise:X: @bitriseInstagram: @bitrise.ioFacebook:

Cloud Posse holds LIVE "Office Hours" every Wednesday to answer questions on all things related to AWS, DevOps, Terraform, Kubernetes, CI/CD. Register at https://cloudposse.com/office-hoursSupport the show

In part one of this Building Better Foundations interview, hosts Rob Broadhead and Michael Meloche talk with Greg Lind, founder of Buildly and OpenBuild, about bridging the gap in software development through AI, automation, and collaboration. Greg shares how modern teams can overcome silos, strengthen communication, and build transparency into their workflows — creating stronger, more adaptive foundations for success in today's fast-paced, AI-driven world. "We wanted to bring developers and product managers into one tool—so they could build together rather than as two separate teams." — Greg Lind About the Guest — Greg Lind Gregory Lind is an American software developer, author, and entrepreneur with over 20 years of experience in open-source innovation, software efficiency, and team transparency. He's the founder of Buildly in Brooklyn and co-founder of Humanitec in Berlin, helping organizations modernize systems through collaboration and automation. A frequent speaker at Open Gov and Open Source conferences, Greg advocates for open, scalable solutions and smarter software processes. His upcoming book, "Radical Therapy for Software Teams" (Apress, 2024), explores how transparency and AI can transform how teams build software. Bridging the Gap Between Teams and Tools Greg's journey toward bridging the gap started years ago while working with Humanitech in Berlin, where he saw firsthand how poorly connected processes caused frustration and inefficiency. Traditional Agile frameworks, while once revolutionary, began to buckle under the pressure of multi-repo, multi-cloud, and AI-driven development. "Agile started to break under the pressure—especially when we introduced AI-driven tools and CI/CD pipelines. The cycles just weren't fast enough." — Greg Lind To solve this, Buildly introduced a Rapid AI Development (RAD) process — a modern evolution of Agile that supports faster, release-based cycles rather than rigid sprints. It's an approach designed to keep pace with today's distributed teams and complex workflows. Bridging the Gap Through Automated Communication At the heart of Buildly's philosophy is a belief that communication shouldn't slow developers down — it should empower them. By integrating tools like Trello and GitHub, Buildly connects product and sprint backlogs into one transparent view. Developers' commits, issues, and updates automatically feed into team dashboards, reducing the need for endless meetings and manual updates. "You shouldn't have to explain what you did yesterday. Your commits already tell that story." — Greg Lind This approach allows teams to focus on outcomes rather than overhead — building trust, visibility, and true alignment across departments. It's automation as a bridge, not a barrier. Using AI to Bridge the Gap Between People and Process While Greg embraces AI's potential, he warns against depending on it too heavily. AI is great at identifying tasks and patterns, but humans still bring creativity, empathy, and strategic thinking to the table. "AI can tell you what's urgent, but it can't understand what's important." — Greg Lind In Greg's view, AI should be a co-pilot — helping teams filter information, automate repetitive work, and focus on higher-value decisions. By balancing automation with human insight, teams can bridge the gap between efficiency and innovation. Empowering Developers to Bridge the Gap Themselves Greg encourages developers not to wait for leadership to fix broken processes — but to take initiative. Automate your own workflows, visualize your backlog, and demonstrate how better systems can look in practice. "Even if you have to automate your own backlog—do it. Show your team what better looks like." — Greg Lind This proactive mindset transforms teams from reactive to adaptive, ensuring that everyone contributes to bridging the gap between communication, accountability, and delivery. Bridging the Gap Toward the Future of Development Greg Lind's insights remind us that bridging the gap in software development isn't about adopting the latest framework — it's about reconnecting people, process, and purpose. When teams share context, communicate openly, and use AI responsibly, they build stronger foundations for innovation. As this episode shows, the future of software isn't about faster code — it's about better collaboration. And bridging the gap is where that future begins. Stay Connected: Join the Developreneur Community We invite you to join our community and share your coding journey with us. Whether you're a seasoned developer or just starting, there's always room to learn and grow together. Contact us at info@develpreneur.com with your questions, feedback, or suggestions for future episodes. Together, let's continue exploring the exciting world of software development. Additional Resources Useful WordPress SEO Plugins Product Catalog: A Deeper Dive Into Customizing WordPress Plugins Manage WordPress Plugins Building Better Foundations Podcast Videos – With Bonus Content

Don't get stuck using AI to build faster horses. Instead, find the opportunities and rethink your software delivery processes! That, and only that, will help you increase Developer Experience and Efficiency!This episode is all about how to measure and improve DevEx in the age of Artificial Intelligence. And with Laura Tacho, CTO at DX, we think we found a perfect guest!Laura has been working in the dev tooling space for the past 15 years. In her current role at DX she is working on the evolution of DORA and SPACE into DX Core 4 and the DXI Measurement Framework.In our episode we learn about those frameworks but also how tech leaders need to rethink where and how to apply AI to improve overall efficiency, quality and effectiveness! The key takeaways from this conversation areDevEx is all about the identifying and reducing friction in the end-2-end development processTech Leaders need to become better in articulating technical change requirements to businessAs of today only 22% of code in git is really AI generated. Don't get fooled into believing AI is already betterBack to Basics makes companies successful with AI. That is: proper CI/CD, testing, documentation, observability!Here the links we discussedLaura's LinkedIn: https://www.linkedin.com/in/lauratacho/DX: https://getdx.com/Cloud Native Days Austria Talk: https://www.youtube.com/watch?v=kZ1F0-XS1l4Engineering Leadership Community: https://www.engineeringleaders.io/

In this comprehensive episode, Luka Mustafa, founder and CEO of Irnas Product Development, provides an in-depth exploration of Zephyr RTOS and its transformative impact on embedded development. We dive deep into how Zephyr's Linux Foundation-backed ecosystem enables hardware-agnostic development, dramatically reducing the time spent on foundational code versus business-value features. Luka shares practical insights from five years of specializing in Zephyr development, demonstrating how projects can achieve remarkable portability - including running the same Bluetooth code on different chip architectures in just an hour, and even executing embedded applications natively on Linux for development purposes.The discussion covers Zephyr's comprehensive testing framework (Twister), CI/CD integration capabilities, and the cultural shift required when moving from traditional bare-metal development to this modern RTOS approach. We explore real-world applications from low-power IoT devices consuming just 5 microamps to complex multi-core systems, while addressing the learning curve challenges and when Zephyr might not be the right choice. This episode is essential listening for embedded teams considering modernizing their development practices and leveraging community-driven software ecosystems.Key Topics[03:15] Zephyr RTOS fundamentals and Linux Foundation ecosystem benefits[08:30] Hardware abstraction and device tree implementation for portable embedded code[12:45] Nordic Semiconductor strategic partnership and silicon vendor support landscape[18:20] Native POSIX development capabilities and cross-platform debugging strategies[25:10] Learning curve challenges: EE vs CS background adaptation to Zephyr development[32:40] Resource requirements and low-power implementation on constrained microcontrollers[38:15] Multi-vendor chip support: STMicroelectronics, NXP, and industry adoption trends[42:30] Safety-critical applications and ongoing certification processes[45:50] Organizational transformation strategies and cultural adaptation challenges[52:20] Zbus inter-process communication and modular development architecture[58:45] Twister testing framework and comprehensive CI/CD pipeline integration[65:30] Sample-driven development methodology and long-lived characterization tests[72:15] Production testing automation and shell interface utilization[78:40] Model-based development integration and requirements traceability[82:10] When not to use Zephyr: Arduino simplicity vs RTOS complexity trade-offsNotable Quotes"With Zephyr, porting a Bluetooth project from one chip architecture to another took an hour for an intern, compared to what would traditionally be months of effort." — Luka Mustafa"How many times have you written a logging subsystem? If the answer is more than zero, then it shouldn't be the case. Someone needs to write it once, and every three years someone needs to rewrite it with a better idea." — Luka Mustafa"The real benefit comes from doing things the Zephyr way in Zephyr, because then you are adopting all of the best practices of developing the code, using all of the subsystems to the maximum extent." — Luka Mustafa"You want to make sure your team is spending time on things that make money for you, not on writing logging, for example." — Luka MustafaZephyr Project - Linux Foundation-backed RTOS project providing comprehensive embedded development ecosystemTwister Testing Framework - Zephyr's built-in testing framework for unit tests, hardware-in-the-loop, and CI/CD integrationZbus Inter-Process Communication - Advanced event bus system for modular embedded development and component decouplingiirnas - Open-source examples of Zephyr best practices and CI/CD pipeline implementationsCarles Cufi's Talk - Detailed presentation on Nordic's strategic decision to support Zephyr RTOS You can find Jeff at https://jeffgable.com.You can find Luca at https://luca.engineer.Want to join the agile Embedded Slack? Click hereAre you looking for embedded-focused trainings? Head to https://agileembedded.academy/Ryan Torvik and Luca have started the Embedded AI podcast, check it out at https://embeddedaipodcast.com/

Che cosa rende davvero produttivo un team di sviluppo? Non solo skill tecniche o organigrammi: è la Developer Experience (DX), l'insieme di strumenti, processi e cultura che determina come gli sviluppatori pensano, creano e rilasciano valore. In questo video ti mostro perché la DX è la leva più sottovalutata per performance, benessere e retention, e come l'AI sta ridisegnando l'equilibrio tra velocità e qualità. Parliamo di:- I 4 pilastri della DX,- Come misurarla senza fuffa,- Quick wins tecnici e culturali che puoi implementare subito,- Il ruolo del CTO,- 3 casi studio (Spotify/Backstage, GitHub/Copilot, PMI italiana con +30% produttività). Se guidi team tech, qui trovi un framework pratico per ridurre attriti, aumentare focus e trasformare la DX in vantaggio competitivo.Vuoi farmi una domanda su questo o altri temi? Inviala qui e ti darò risposta nel prossimo video della rubrica #AskAlex: https://alexpagnoni.com/askalex/

Cloud Posse holds LIVE "Office Hours" every Wednesday to answer questions on all things related to AWS, DevOps, Terraform, Kubernetes, CI/CD. Register at https://cloudposse.com/office-hoursSupport the show

This week's guests are Ani and Henry, co-founders of Smithery. Smithery is building the marketplace and runtime for MCP, making it easier for developers to distribute, discover, and monetize tools in the emerging agent ecosystem.  Smithery provides a platform to connect your repo, integrate with CI/CD, and handle hosting for servers seamlessly. MCP shines when agents become more general, but it only scales if demand grows for more connections between tools and systems. Drawing from their experiences at Browserbase, Whatnot, and prior AI startups, Ani and Henry saw the need for standardization across the agent stack and set out to build the distribution and trust layer for MCP. We cover what early traction they're seeing from developers, how they're approaching payments and identity to reduce configuration friction, and what the broader shift toward open, composable AI infrastructure means for the future of agents. Episode chapters: 1:51 — Getting into AI 5:30 — The Origin of Smithery 7:40 — Building the Supply Side 9:10 — Why Smithery Is the Easiest Way to Discover MCPs 13:30 — Agent Authentication and Identity 17:08 — The Most Popular MCPs 19:50 — MCP and the Principle of Separation of Concerns 22:50 — How AI Is Being Used Today 25:57 — Defining Success as Founders 31:45 — Quire Fire RoundThis episode is brought to you by Grata, the world's leading deal sourcing platform. Our AI-powered search, investment-grade data, and intuitive workflows give you the edge needed to find and win deals in your industry. Visit grata.com to schedule a demo today.Fresh out of Y Combinator's Summer batch, Overlap is an AI-driven app that uses LLMs to curate the best moments from podcast episodes. Imagine having a smart assistant who reads through every podcast transcript, finds the best parts or parts most relevant to your search, and strings them together to form a new curated stream of content - that is what Overlap does. Podcasts are an exponentially growing source of unique information. Make use of it! Check out Overlap 2.0 on the App Store today.

Jon helped a lot of teams improve their software engineer processes. We talk about the importance of testing, having sane Ci and CD pipeline, pairing and a lot of other extreme programing concepts.Links:Tuple pair programming guide:The Mob ToolPop — Screen sharing for remote teamsIf you'd like to support the show spread the words about it, join the slack channel #gopodcast, take a Patron subscription, purchase Zero to Gopher, my latest course.

"Data loss" is a phrase that strikes fear into the heart of every Salesforce professional. But what if you could face a data incident with calm and confidence?Jack speaks with Aga Peryie, Senior Product Manager at Gearset, about building a solid data management strategy. They discuss the vital role of understanding customer needs, the challenges of data backup, and why so many teams are vulnerable to simple user errors.This conversation is a masterclass in shifting from anxiety to control.Tune in to learn:- Why most teams are unprepared for the most common cause of data loss: user error.- The key to reducing anxiety: regularly testing your recovery process before you need it.- Practical strategies for archiving data to manage Salesforce storage limits effectively.- How to build a backup solution truly tailored to the complexities of Salesforce.- Why a "set it and forget it" backup plan is a recipe for disaster.About DevOps Diaries: Salesforce DevOps Advocate Jack McCurdy chats to members of the Salesforce community about their experience in the Salesforce ecosystem. Expect to hear and learn from inspirational stories of personal growth and business success, whilst discovering all the trials, tribulations, and joy that comes with delivering Salesforce for companies of all shapes and sizes. New episodes bi-weekly on YouTube as well as on your preferred podcast platform.Podcast produced and sponsored by Gearset. Learn more about Gearset: https://grst.co/4iCnas2Subscribe to Gearset's YouTube channel: https://grst.co/4cTAAxmLinkedIn: https://www.linkedin.com/company/gearsetX/Twitter: https://x.com/GearsetHQFacebook: https://www.facebook.com/gearsethqAbout Gearset: Gearset is the leading Salesforce DevOps platform, with powerful solutions for metadata and CPQ deployments, CI/CD, automated testing, sandbox seeding and backups. It helps Salesforce teams apply DevOps best practices to their development and release process, so they can rapidly and securely deliver higher-quality projects. Get full access to all of Gearset's features for free with a 30-day trial: https://grst.co/4iKysKWChapters:00:00 Introduction to Product Management at Gearset02:52 The Importance of Customer-Centric Product Management05:15 Understanding Customer Needs and Asking 'Why'08:00 Data Backup Solutions: Common Practices and Misconceptions10:54 Assessing the Importance of Data and Trust13:35 Identifying Data Loss and Recovery Strategies16:16 Best Practices for Data Restoration19:09 Archiving Strategies for Salesforce Data21:47 The Role of Data in AI and Customer Experience24:39 The Benefits of Backup and Archiving Solutions27:28 Creating a Culture of Data Awareness29:58 Final Thoughts on Data Backup and Recovery

Send us a textQuantum threats aren't waiting politely on the horizon, and neither should we. We kick off with Signal's bold move to deploy post-quantum encryption, unpacking the “belt and suspenders” approach that blends classical cryptography with quantum-resistant algorithms. No jargon traps—just clear takeaways on why this matters for privacy, resilience, and the pressure it puts on other messaging platforms to evolve. We point you to smart reads from Ars Technica and Bruce Schneier that make the technical guts approachable and actionable.From there, we switch gears into a focused CISSP Domain 8 walkthrough: how to weave security into every phase of the software development lifecycle. We talk practical integration across waterfall, agile, and DevOps; show why change management, continuous monitoring, and application-aware incident response are non-negotiable; and explain how maturity models like CMMI and BSIMM help teams move from reactive to repeatable. We also break down the developer's toolbox—secure language choices, vetted libraries with SCA, hardened runtimes, and IDE plugins that surface issues in real time—so teams can ship faster without trading away safety.Speed meets rigor in the CI/CD pipeline, where shift-left security comes alive with SAST, DAST, and SOAR-driven checks. We cover repository hygiene, secret scanning, and how to measure effectiveness with audit trails and risk analysis that map code issues to business impact. You'll get a clear view of third-party risk across COTS and open source, the shared responsibility model for SaaS, PaaS, and IaaS, and the daily practices that keep APIs from leaking data: least privilege, strict authorization, input validation, and rate limiting. We close with software-defined security—policies as code—bringing consistency, versioning, and automation to your defenses. Subscribe, share with a teammate who owns your pipeline, and leave a review to tell us the next Domain 8 topic you want us to deep-dive.Gain exclusive access to 360 FREE CISSP Practice Questions at FreeCISSPQuestions.com and have them delivered directly to your inbox! Don't miss this valuable opportunity to strengthen your CISSP exam preparation and boost your chances of certification success. Join now and start your journey toward CISSP mastery today!

Organizations pour millions into protecting running applications—yet attackers are targeting the delivery path itself.This episode of AppSec Contradictions reveals why CI/CD and cloud pipelines are becoming the new frontline in cybersecurity.

Cloud Posse holds LIVE "Office Hours" every Wednesday to answer questions on all things related to AWS, DevOps, Terraform, Kubernetes, CI/CD. Register at https://cloudposse.com/office-hoursSupport the show

Organizations pour millions into protecting running applications—yet attackers are targeting the delivery path itself.This episode of AppSec Contradictions reveals why CI/CD and cloud pipelines are becoming the new frontline in cybersecurity.

Microsoft MVP Hailey Phillips joins The PowerShell Podcast to share her journey from systems engineer to automation innovator. She talks about IntuneStack, her new PowerShell-driven CI/CD project for Intune environments, and how it bridges the gap between systems engineering and DevOps. Hailey also reflects on her path to becoming an MVP, her experiences at MMS, and the importance of mentorship, collaboration, and authenticity in the tech community.   Key Takeaways: Bridging systems and DevOps – Hailey's IntuneStack helps IT pros apply DevOps principles like CI/CD and Infrastructure as Code to Intune environments. Automate and empower – True success in automation means enabling your team, not bottlenecking them. Collaboration beats perfectionism. Community and authenticity – Sharing knowledge, mentoring others, and showing up as your true self create lasting impact in the PowerShell ecosystem. Guest Bio: Hailey Phillips is a Systems Engineer, Microsoft MVP, and Professional Pokémon Trainer. She specializes in automation, endpoint management, and modern workplace strategy, bridging the gap between traditional IT and DevOps. Hailey's work focuses on building pragmatic, scalable solutions using tools like PowerShell, Microsoft Graph, Intune, and Azure Arc. When she's not deep in tech, you'll probably find her skiing in the Cascades, lifting heavy things, or at a metalcore show with a strong cup of coffee in hand.   Resource Links: Intune Stack Project – https://github.com/AllwaysHyPe/IntuneStack Hailey's Website – https://www.allwayshype.com/ Hailey on BlueSky – https://bsky.app/profile/allwayshype.com Hailey on GitHub – https://github.com/AllwaysHyPe Hailey's "Rage Coding" Spotify Playlist: https://open.spotify.com/playlist/692CBjUNRBnSzSsRncQJkn?si=9d8bf7e625104ce8 PowerShell Wednesdays – https://www.youtube.com/watch?v=2-d16gi3VEc&list=PL1mL90yFExsix-L0havb8SbZXoYRPol0B&pp=gAQB PDQ Discord – https://discord.gg/PDQ The PowerShell Podcast on YouTube: https://youtu.be/1YefrFekEJ

Cloud Posse holds LIVE "Office Hours" every Wednesday to answer questions on all things related to AWS, DevOps, Terraform, Kubernetes, CI/CD. Register at https://cloudposse.com/office-hoursSupport the show

In this episode, Darko welcomes Brian Douglas, Head of Developer Experience at Continue and longtime open source advocate. They talk about the rise of the AI engineer, how AI agents are reshaping developer workflows, and what's next for open source infrastructure. Enjoy the episode!Read the blog post: https://semaphore.io/blog/brian-douglasLike this episode? Be sure to leave a ⭐️⭐️⭐️⭐️⭐️ review on the podcast player of your choice and share it with your friends.

Kieron Allen speaks with Chris Pope, Chief Product Officer at AutomatePro, in an in-depth discussion that is part of a broader series of podcasts, articles, and reports on ServiceNow's evolving ecosystem. They explore how intelligent automation and agentic AI are reshaping DevOps and quality assurance. The conversation also highlights how AutomatePro's built-on approach enhances developer productivity, reduces risk, and ensures security, all within the ServiceNow environment.AutomatePro's AI EdgeThe Big ThemesAutomatePro's Core Mission: AutomatePro focuses on solving one of the most time-consuming parts of software delivery: testing and documentation. Pope explains that their goal isn't to replace humans but to augment their efforts through intelligent automation. By embedding deeply within the ServiceNow platform, AutomatePro allows developers and platform owners to automate repetitive tasks early in the development cycle, ensuring higher-quality releases and faster deployment.Human-AI Collaboration Wins: The myth of AI replacing people is outdated. Pope reframes the conversation: it's not about replacement, it's about enablement. The real winners will be those who know how to use AI effectively. Today's Copilots are context-aware, learning from human behavior and adapting to different personas — whether it's a developer, analyst, or HR owner. Prompt engineering is emerging as a vital skill, and the better the prompt, the better the AI-driven output.DevOps Innovation Without Compromise: AutomatePro and ServiceNow are reshaping DevOps by making speed and quality compatible. Historically, faster releases meant riskier ones. With AutomatePro's intelligent testing automation, that tradeoff no longer exists. Frequent, smaller releases — the “fixed forward” model — are now safer thanks to early automation, embedded security, and contextual AI. Pope argues that platform owners and developers are the new heroes in enterprise IT, and equipping them with Copilots, intelligent workflows, and instant feedback loops unlocks untapped value.The Big Quote: "You're not going to be replaced by AI per se, you're going to be replaced by someone that knows how to use AI effectively."More from ServiceNow and AutomatePro:Follow AutomatePro on LinkedIn or learn more about ServiceNow and intelligent automation. Visit Cloud Wars for more.

Cloud Posse holds LIVE "Office Hours" every Wednesday to answer questions on all things related to AWS, DevOps, Terraform, Kubernetes, CI/CD. Register at https://cloudposse.com/office-hoursSupport the show

Animesh Koratana - CEO and Founder of PlayerZero discusses how agentic AI is transforming software quality assurance through predictive code simulation, and how teams can shift from reactive debugging to proactive problem prevention in the era of AI-generated code.SHOW: 967SHOW TRANSCRIPT: The Cloudcast #967 TranscriptSHOW VIDEO: https://youtube.com/@TheCloudcastNET CLOUD NEWS OF THE WEEK: http://bit.ly/cloudcast-cnotwNEW TO CLOUD? CHECK OUT OUR OTHER PODCAST: "CLOUDCAST BASICS"SPONSORS:[Interconnected] Interconnected is a new series from Equinix diving into the infrastructure that keeps our digital world running. With expert guests and real-world insights, we explore the systems driving AI, automation, quantum, and more. Just search “Interconnected by Equinix”.[TestKube] TestKube is Kubernetes-native testing platform, orchestrating all your test tools, environments, and pipelines into scalable workflows empowering Continuous Testing. Check it out at TestKube.io/cloudcastSHOW NOTES:PlayerZero websiteTopic 1 - Welcome to the show Animesh. Tell us about your background and your involvement in.Topic 2 - Let's start with the core problem you're solving. What is "predictive software quality" and why is this becoming critical now, especially in the era of AI-generated code?Topic 3 - How does agentic code simulation work, and what makes it different from traditional testing approaches?Topic 4 - This feels like it democratizes software quality beyond just engineering teams. How does PlayerZero work across different roles - developers, QA, product managers, and support teams?Topic 5 - Integration and workflow - how does PlayerZero fit into existing CI/CD pipelines and development workflows? What does the implementation look likeTopic 6 - Let's talk about scale and complexity. How does PlayerZero handle large, distributed systems with microservices, databases, and complex architecturesTopic 7 - If someone out there is interested and wants to get started, what is the best place to started?FEEDBACK?Email: show at the cloudcast dot netBluesky: @cloudcastpod.bsky.socialTwitter/X: @cloudcastpodInstagram: @cloudcastpodTikTok: @cloudcastpod

What's the most overlooked element in a successful DevOps strategy? According to Salesforce Architect and community leader Raksha Sanganee, it's culture.In this powerful episode of DevOps Diaries, Jack McCurdy sits down with Raksha to uncover her remarkable journey from a school finance officer to a respected DevOps consultant. She shares the invaluable lessons learned while training over 300 people in Salesforce for free and unpacks her core principles for transforming a team's software delivery lifecycle.Tune in to learn why "seeing is believing" is the key to overcoming client skepticism, how to build unbreakable trust, and why you should never, ever forget your backups!About DevOps Diaries: Salesforce DevOps Advocate Jack McCurdy chats to members of the Salesforce community about their experience in the Salesforce ecosystem. Expect to hear and learn from inspirational stories of personal growth and business success, whilst discovering all the trials, tribulations, and joy that comes with delivering Salesforce for companies of all shapes and sizes. New episodes bi-weekly on YouTube as well as on your preferred podcast platform.Podcast produced and sponsored by Gearset. Learn more about Gearset: https://grst.co/4iCnas2Subscribe to Gearset's YouTube channel: https://grst.co/4cTAAxmLinkedIn: https://www.linkedin.com/company/gearsetX/Twitter: https://x.com/GearsetHQFacebook: https://www.facebook.com/gearsethqAbout Gearset: Gearset is the leading Salesforce DevOps platform, with powerful solutions for metadata and CPQ deployments, CI/CD, automated testing, sandbox seeding and backups. It helps Salesforce teams apply DevOps best practices to their development and release process, so they can rapidly and securely deliver higher-quality projects. Get full access to all of Gearset's features for free with a 30-day trial: https://grst.co/4iKysKWChapters:00:00 Introduction to Raksha Her Journey04:23 Transitioning to Salesforce and Community Impact09:13 Understanding DevOps: Culture and Trust13:41 Common Mistakes in DevOps and Importance of Automation18:24 Building Trust with Clients and Overcoming Skepticism23:02 The Role of Training and Demos in DevOps27:29 Data Strategy and Best Practices in Salesforce32:00 The Importance of Community and Continuous Learning36:31 Parting Wisdom and Final Thoughts

The NFL runs on tight deadlines. Every kickoff and Super Bowl demands that millions of fans get flawless live video, stats, and fantasy features, whether they're on iPhones, Xboxes, or connected TVs. In this episode of React Universe On Air, Mike Grabowski talks with Michael Blanchard (Director of Engineering at the NFL), about how React Native became the backbone of this high-pressure, multi-platform ecosystem. Michael shares his journey from web engineer to leading NFL's engineering teams across nfl.com, three mobile apps, a cross-platform video player, and a suite of connected TV apps. Together with Mike, he explores the NFL's migration strategy, the transition from Haul/Webpack to Metro and Expo, and the cultural shifts that helped merge web and native engineers into one collaborative team. You'll learn: ➡️ Why the NFL went full Greenfield (twice) ➡️ How NFL+ shaped their second rewrite ➡️ Lessons from moving from Haul/Webpack to Metro ➡️ How Expo SDKs gradually replaced community libraries ➡️ How GitHub Actions + EAS Build reshaped their CI/CD pipeline ➡️ Strategies for handling 20–30 PRs daily in a monorepo ➡️ How React Native powers mobile, web, and multiple connected TVs ➡️ What cultural shifts enabled true cross-platform collaboration Catch more React Universe On Air episodes

Rick Doten, cybersecurity startup advisor and AI researcher, joins the show to unpack how AI-assisted development is reshaping software—and what it means for security. From startups rushing to ship faster code to the unseen risks of “vibe coding,” Rick explains how engineering teams can balance innovation with secure, resilient design.If your dev team is using AI tools to boost velocity, this conversation might change how you think about your SDLC, code review, and even your threat model.Key Takeaways• AI-assisted coding speeds up output but can multiply security risks if context isn't baked in.• Startups often trade speed for security early on—and that can be expensive to unwind later.• Traditional fundamentals like OWASP and BSIMM still apply, even as architectures evolve with agents and MCP.• AI creates a widening gap between companies that can secure their models and those that can't.• “Vibe coding”—non-devs using AI to build—introduces a new wave of shadow code leaders must prepare for.Timestamped Highlights[02:09] The real range of how startups are using AI-assisted tools—and why security is often an afterthought.[05:12] Why AI-generated code is not just another form of third-party code.[09:40] The hidden risk: code volume grows faster than your ability to secure it.[15:51] How AI is widening the gap between resource-rich enterprises and everyone else.[18:25] The new fragility of systems—where architecture and resilience start to break.[22:07] Rethinking SDLC: integrating AI tools without losing security fundamentals.[25:29] “Vibe coding” and what happens when non-engineers start shipping code.Memorable Insight“AI isn't lazy like humans—it doesn't just fix one thing. It rewrites everything. That's why every line has to be re-scrutinized.”Pro TipsIf your startup doesn't have a dedicated security function yet, start with the basics: integrate OWASP checks into your CI/CD, use non-human accounts correctly, and automate code review gates early. Don't wait until production to harden your systems.Call to ActionIf this episode sparked ideas for your dev or security team, share it with someone who's experimenting with AI-assisted tools. Follow The Tech Trek for more conversations at the intersection of engineering, AI, and leadership.

Bret is joined by Philip Andrews and Dan Muret of Cast AI to discuss pod live migration between nodes in a Kubernetes cluster.

Neste episódio do Cabeça de Lab, mergulhamos no universo da Qualidade de Software (QA) com um foco especial nos Testes Regressivos, a "rede de segurança" que garante que nenhuma nova funcionalidade quebre aquilo que já estava funcionando perfeitamente. Discutimos a importância fundamental desses testes, diferenciando-os dos testes unitários e de integração, e exploramos os principais desafios de sua implementação e manutenção.Além disso, abordamos o equilíbrio ideal entre testes manuais e automação, como essa prática se alinha à agilidade e à velocidade de entrega de produtos, e a necessidade de uma cultura de qualidade compartilhada por desenvolvedores, QAs e times de produto. Por fim, trouxemos dicas de ferramentas, boas práticas como "começar pequeno" e a tendência da integração de CI/CD, Feature Flags e Inteligência Artificial no futuro dos testes.Edição completa por Rádiofobia Podcast e Multimídia: ⁠⁠https://radiofobia.com.br/⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠---Nos siga no Twitter e no Instagram: @luizalabs @cabecadelabDúvidas, cabeçadas e sugestões, mande e-mail para o cabecadelab@luizalabs.com⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ ou uma DM no InstagramParticipantes: ICARO BELMIRO | https://www.linkedin.com/in/icarobelmiro/MARCIANO CADORE | https://www.linkedin.com/in/marciano-cadore-a615b125/VICTORIA GABRIELLA | https://www.linkedin.com/in/victoria-gabriella-91392a1b2/ANA CAROLINA FONSECA BARRETO | https://www.linkedin.com/in/anacarolinafonsecabarreto/

Cloud Posse holds LIVE "Office Hours" every Wednesday to answer questions on all things related to AWS, DevOps, Terraform, Kubernetes, CI/CD. Register at https://cloudposse.com/office-hoursSupport the show

In this episode of Technical Tips, Tommy walks you through three core principles of automation and CI/CD. These are the foundations that help teams deploy faster, avoid stress, and keep pipelines running smoothly.Learn more: https://semaphore.io/blog/pipelines-explained-principles-ci-cdLike this episode? Be sure to leave a ⭐️⭐️⭐️⭐️⭐️ review on the podcast player of your choice and share it with your friends.

Peter Ritchie is a veteran software architect and consultant with over 35 years of experience in the tech industry. Peter is renowned for his deep expertise in .NET development, distributed systems, and agile methodologies. He's an accomplished author of several technical books, a former Microsoft MVP, and a sought-after international speaker. Peter is also actively involved in the .NET community and was a candidate for the .NET Foundation Board of Directors, reflecting his commitment to open-source and developer advocacy. Through his consulting work, he helps teams elevate their architecture, code quality, and development practices — especially in areas like ASP.NET, Clean Architecture, and CI/CD pipelines.   Topics of Discussion: [3:45] Overview of .NET Foundation. [5:33] Support for User Groups and .NET 10. [5:48] The upcoming release of .NET 10 and Visual Studio 2026. [6:39] Stability and backward compatibility. [9:10] Challenges and approaches to business logic. [11:24] Repository structure and team organization. [15:27] Testing and continuous integration. [17:12] The role of experienced developers in mentoring and reviewing the work of junior developers. [20:02] Jeffrey mentions a recent blog post of Peter's and how we can define clear user stories, including roles, actions, criteria, and benefits, to ensure developers understand the requirements. [24:15] The importance of context in AI-driven development and how it applies to working with people. [25:06] How the AI revolution can lead to better understanding and communication within development teams.   Mentioned in this Episode: Clear Measure Way Architect Forum Software Engineer Forum Peter Ritchie LinkedIn     Want to Learn More? Visit AzureDevOps.Show for show notes and additional episodes.  

An airhacks.fm conversation with Alvaro Hernandez (@ahachete) about: Framework laptop experience and build process with DIY edition, modular connectors and upgradability, running Ubuntu 25.10 beta with nix package manager, automating installation with YAML and Ansible, comparison with IBM AS/400 feature activation model, docker adoption history for server maintenance and documentation, PostgreSQL extensions, upgradability and security concerns, challenges with packing 1000+ extensions into container images, security concerns with large monolithic images containing unused extensions, dynamic extension injection using sidecar pod local controller in kubernetes, problems with mutating running containers and security tool compliance, traditional Docker build approach requiring users to become image maintainers, challenging assumptions about container image immutability and Merkle tree, container images as JSON manifests pointing to tar file layers, Dynamic OCI Registry concept for composing images on-the-fly, generating manifests dynamically in milliseconds without Docker build, interface-based approach for mapping user preferences to layer digests, PostgreSQL-specific implementation with extension URL patterns, metadata storage in PostgreSQL database for layer digest resolution, potential applications for quarkus and Java microservices, serverless deployment possibilities with AWS Lambda, comparison with Cloudflare's serverless OCI registry, enterprise use cases for automated patching and security updates, integration possibilities with AWS EventBridge for CI/CD pipelines, transparency to Docker clients with only registry change required, stackgres platform using 4 million lines of Java code, ongres company services including PostgreSQL training and Oracle migrations, Alvaro's website: aht.es Alvaro Hernandez on twitter: @ahachete

This interview was recorded at GOTO Copenhagen 2024.https://gotocph.comMichael Nygard - General Manager of Data at NubankDave Farley - Continuous Delivery & DevOps Pioneer, Award-winning Author, Founder & Director of Continuous Delivery Ltd.RESOURCESMichaelhttps://www.linkedin.com/in/mtnygardhttps://twitter.com/mtnygardhttp://www.michaelnygard.comDavehttps://bsky.app/profile/davefarley77.bsky.socialhttps://www.continuous-delivery.co.ukhttps://linkedin.com/in/dave-farley-a67927https://twitter.com/davefarley77http://www.davefarley.netRead the full abstract hereRECOMMENDED BOOKSDavid Deutsch • The Beginning of InfinityMichael Nygard • Release It! 2nd EditionMichael Nygard • Release It! 1st EditionZhamak Dehghani • Data MeshDave Farley • Modern Software EngineeringDave Farley • Continuous Delivery PipelinesDave Farley & Jez Humble • Continuous DeliveryInspiring Tech Leaders - The Technology PodcastInterviews with Tech Leaders and insights on the latest emerging technology trends.Listen on: Apple Podcasts SpotifyBlueskyTwitterInstagramLinkedInFacebookCHANNEL MEMBERSHIP BONUSJoin this channel to get early access to videos & other perks:https://www.youtube.com/channel/UCs_tLP3AiwYKwdUHpltJPuA/joinLooking for a unique learning experience?Attend the next GOTO conference near you! Get your ticket: gotopia.techSUBSCRIBE TO OUR YOUTUBE CHANNEL - new videos posted daily!

Cloud Posse holds LIVE "Office Hours" every Wednesday to answer questions on all things related to AWS, DevOps, Terraform, Kubernetes, CI/CD. Register at https://cloudposse.com/office-hoursSupport the show

Мок-интервью для junior/начинающего middle DevOps: CI/CD, Git-ветки, AWS (VPC, S3), Kubernetes (probes, DaemonSet), Terraform. Разбираем основы, типовые вопросы и ошибки — простым языком.

70% of critical security debt stems from third-party code - what can be done upstream?How real-time threat intelligence and policy enforcement are closing the gapWhy DORA and modern CI/CD pipelines demand pre-emptive visibility and automation Thom Langford, Host, teissTalkhttps://www.linkedin.com/in/thomlangford/Paul Holland, Cyber Capability Manager, Royal Mailhttps://www.linkedin.com/in/paulinfosec/Tiago Rosado, Chief Information Security Officer, Asitehttps://www.linkedin.com/in/tiagorosado/Jean Carlos, Information Security Lead, Trade Republichttps://www.linkedin.com/in/jeanpcarlos/John Smith, CTO of EMEA, Veracodehttps://www.linkedin.com/in/jtsmith123

Send us a textDive into the critical world of software development security with Sean Gerber as he tackles Domain 8.3 in this knowledge-packed CISSP Question Thursday episode. We examine fifteen challenging questions that address the security controls essential for protecting code throughout the development lifecycle.Discover why static application security testing integrated directly into your CICD pipeline stands as the gold standard for catching vulnerabilities early, and why developer arguments about "unlikely" buffer overflow exploits should never persuade you to leave vulnerabilities unaddressed. The podcast breaks down the crucial difference between partial mitigations and proper vulnerability elimination, providing you with the decision-making framework you'll need both for the CISSP exam and real-world security leadership.The episode doesn't shy away from controversial topics, including the persistent myth of "security through obscurity" and why it fails as a protection strategy. You'll learn why security code reviews by senior developers remain irreplaceable for identifying business logic vulnerabilities, while generic security checklists prove ineffective against sophisticated threats. For those working with cloud platforms, open-source libraries, or outsourced development, Sean offers targeted guidance on the controls that matter most in each scenario.Beyond the technical content, Sean shares his passion for helping adoptive families through the nonprofit initiative supported by purchases at CISSPCyberTraining.com. Every training package purchased contributes to providing grants and low-interest loans to families looking to adopt children who need loving homes.Ready to strengthen your understanding of software security while preparing for your CISSP certification? This episode delivers actionable insights, exam-ready knowledge, and the confidence to tackle Domain 8.3 questions with expertise. Listen now and take another step toward mastering the crucial intersection of development and security that today's organizations desperately need.Support the showGain exclusive access to 360 FREE CISSP Practice Questions delivered directly to your inbox! Sign up at FreeCISSPQuestions.com and receive 30 expertly crafted practice questions every 15 days for the next 6 months—completely free! Don't miss this valuable opportunity to strengthen your CISSP exam preparation and boost your chances of certification success. Join now and start your journey toward CISSP mastery today!

Cloud Posse holds LIVE "Office Hours" every Wednesday to answer questions on all things related to AWS, DevOps, Terraform, Kubernetes, CI/CD. Register at https://cloudposse.com/office-hoursSupport the show

In this episode, Darko welcomes Sarah Novotny, a technology leader with 25+ years of experience. From shaping Kubernetes governance at Google to her current work on AI security with the Coalition for Secure AI, Sarah brings deep insight into how open source and governance shape the future of tech.Like this episode? Be sure to leave a ⭐️⭐️⭐️⭐️⭐️ review on the podcast player of your choice and share it with your friends.

Scaling CI/CD for mobile apps is hard. Faster test runs often lead to more tests, more infrastructure, and more complexity. So how do you keep your pipelines healthy and reliable while still shipping at speed? In this episode, we sit down with Anton Malinski of Marathon Labs to explore the real-world lessons he's learned building and optimizing mobile CI/CD pipelines. You'll discover: How to scale mobile test automation without introducing friction What “healthy CI growth” looks like in practice Why real devices still matter, even with a massive emulator fleet How backend mocking and dedicated mobile API gateways transform shift-left testing Practical advice for teams evolving from weekly releases to on-every-commit confidence Whether you're a QA leader, automation engineer, or DevOps practitioner, this conversation gives you the insights and metrics you need to take your mobile testing pipelines to the next level.

In the world of tech, it's easy to get lost in the code, the pipelines, and the deadlines. But what truly separates a good team from a great one? In this episode of DevOps Diaries, Conlan makes the case that it's a culture built on trust and continuous improvement.Conlan shares his experience managing a complex Salesforce project management application where the stakes are high. He reveals how his team navigates the strict world of SOX compliance, not as a burden, but as a driver for quality. We explore his passion for automation, from CI/CD pipelines that supercharge efficiency to automated deployments that eliminate human error.However, the real magic lies in the human element. Conlan explains how creating psychological safety and running blameless post-mortems transforms mistakes into learning opportunities, and why true collaboration only happens when every single person, including contractors, feels like a core part of the team. If you want to build systems and teams that last, this episode is for you.Podcast produced and sponsored by Gearset. Learn more about Gearset: https://grst.co/4iCnas2Subscribe to Gearset's YouTube channel: https://grst.co/4cTAAxmLinkedIn: https://www.linkedin.com/company/gearsetX/Twitter: https://x.com/GearsetHQFacebook: https://www.facebook.com/gearsethqAbout Gearset: Gearset is the leading Salesforce DevOps platform, with powerful solutions for metadata and CPQ deployments, CI/CD, automated testing, sandbox seeding and backups. It helps Salesforce teams apply DevOps best practices to their development and release process, so they can rapidly and securely deliver higher-quality projects. Get full access to all of Gearset's features for free with a 30-day trial: https://grst.co/4iKysKWChapters:00:00 Introduction to Conlan02:11 Managing Compliance in Project Management Applications07:04 The Intersection of Compliance and Data Quality08:32 Importance of DevOps in Delivery Processes12:02 Automation and Change Management in Salesforce17:37 Correction of Errors and Continuous Improvement20:40 Continuous Quality Improvement in Software Development22:42 Creating a Culture of Psychological Safety24:50 Anomaly Reports vs. Correction of Errors27:21 Empowering Team Members to Speak Up31:03 Integrating Contractors into Team Culture37:00 Ensuring Quality Oversight in Contractor Work39:32 Exciting Innovations on the Salesforce Platform

In this episode of the IoT For All Podcast, Gaurav Johri, co-founder and CEO of Doppelio, joins Ryan Chacon to discuss software validation and testing in IoT. The conversation covers the vital role of virtualization, the increasing complexity and distributed nature of connected products, the benefits of combining physical and virtual testing labs, the pitfalls of simulator-based approaches, intelligent automation in DevOps, the ROI of early validation, and future trends in AI, edge computing, and 5G.Gaurav Johri brings a wealth of expertise with over 25 years in steering multinational enterprises through the digital age. He has held global leadership positions at Mindtree, Onmobile, and Infosys. Johri's vision and passion for a future built on connected products shaped Doppelio as a pioneer in IoT testing. He is also a regular speaker at connected world events, such as AutomotiveIQ and IoT Tech Expo.Doppelio is a leading IoT test automation platform that enables enterprises to rapidly test connected products through advanced device virtualization at scale. Their solution creates "Doppels" (data twins) across diverse protocols, eliminating physical device dependency while enabling seamless co-existence of physical and virtual testing labs. They support comprehensive testing from simple sensors to complex industrial equipment, delivering 10x faster testing speeds, 80-90% coverage, and millions in operational savings. Trusted by Fortune 500 companies across connected elevators, medical devices, automotive, and security industries, Doppelio accelerates time-to-market while reducing field failure risks through intelligent automation.Discover more about IoT at https://www.iotforall.comFind IoT solutions: https://marketplace.iotforall.comMore about Doppelio: https://doppelio.comConnect with Gaurav: https://www.linkedin.com/in/gaurav-johri/(00:00) Intro(00:21) Gaurav Johri and Doppelio(00:56) IoT testing and its importance(03:56) Virtualization in IoT testing(06:10) Real-world examples of IoT testing(08:32) Physical vs. virtual testing labs(10:22) Limitations of simulator-based approaches(12:25) How do you enable rapid, scalable validation?(14:12) Role of intelligent automation in DevOps and CI/CD(15:43) The ROI of performing early software validation(17:35) Advice for modernizing IoT testing(19:26) Future of IoT testing with AI, edge, 5G(20:52) Learn more and follow upSubscribe to the Channel: https://bit.ly/2NlcEwmJoin Our Newsletter: https://newsletter.iotforall.comFollow Us on Social: https://linktr.ee/iot4all

Ole Lensmarm, Founder/CTO at TestKube, discusses how Kubernetes-native testing platforms are designed to address limitations in traditional CI/CD testing workflows. The conversation covers how TestKube differs from existing testing environments, expands test coverage opportunities for development and QA teams, and provides best practices for testing in Kubernetes environments.SHOW: 957SHOW TRANSCRIPT: The Cloudcast #957 TranscriptSHOW VIDEO: https://youtube.com/@TheCloudcastNET CLOUD NEWS OF THE WEEK: http://bit.ly/cloudcast-cnotwNEW TO CLOUD? CHECK OUT OUR OTHER PODCAST: "CLOUDCAST BASICS" SPONSORS:[Interconnected] Interconnected is a new series from Equinix diving into the infrastructure that keeps our digital world running. With expert guests and real-world insights, we explore the systems driving AI, automation, quantum, and more. Just search Interconnected by Equinix.[TestKube] TestKube is Kubernetes-native testing platform, orchestrating all your test tools, environments, and pipelines into scalable workflows empowering Continuous Testing. Check it out at TestKube.io/cloudcast[DoIT] Visit doit.com (that's d-o-i-t.com) to unlock intent-aware FinOps at scale with DoiT Cloud Intelligence.SHOW NOTES:TestKube - A Kubernetes-native platform that powers Continuous Testing for today's AI-accelerated developmentTestKube (open source)Why did we start TestKube (Ole Lensmar)Topic 1 - Welcome to the show. Tell us about your background and what led you to start TestKube.Topic 2 - Let's talk about the origins of TestKube. What were some areas where you saw people having frustrations or limitations that were holding back their ability to do proper testing to get things into production?Topic 3 - Let's talk about the basics of TestKube. Can you talk about how it's different from existing testing environments, or how people use CI/CD todayTopic 4 - Does TestKube expand what a typical Dev-team, or QA-team would test, or does it create new opportunities for test coverage that were very difficult before? Topic 5 - What are some of the results or feedback you've heard from people using TestKube?Topic 6 - What are some best practices you're seeing as people begin to evolve how they test for their Kubernetes environments?Topic 7 - What's the best way for people to get started with TestKubeFEEDBACK?Email: show at the cloudcast dot netBluesky: @cloudcastpod.bsky.socialTwitter/X: @cloudcastpodInstagram: @cloudcastpodTikTok: @cloudcastpod

As the Building Better Developers with AI season nears its close, Rob Broadhead and Michael Meloche revisit a topic every team faces but few get right: code consistency. In this episode, they explore how shared conventions, smart tooling, and simple documentation transform messy projects into scalable, high-quality systems. The Hidden Cost of Inconsistency Picture opening a project where every file tells a different story: mixed naming styles, conflicting error handling, and folders arranged on a whim. Before you can fix a bug or add a feature, you're lost in formatting chaos. Callout: Inconsistency wastes time, complicates onboarding, and hides defects—long before code reaches production. Rob notes that AI can now help. Define your preferred patterns—naming, structure, logging—and tools like ChatGPT can propose refactors that enforce uniformity. What Code Consistency Looks Like Consistency isn't about stifling creativity—it's about shared, predictable choices that reduce cognitive load. The essentials include: Naming & Structure – Clear, conventional names; sensible modules/packages. File Organization – Standard project layouts (Maven for Java, src/app folders in web projects). Comments & Docs – Concise explanations paired with readable code. Error Handling & Logging – A single, unified approach across the app. Michael highlights that without these agreements, containerized deployments break easily and new developers struggle to contribute. Why Teams Benefit from Code Consistency Rob compares a consistent codebase to a band playing in sync: individual instruments can vary, but the music holds together. That's the impact of code consistency. Benefits include: Communication: Developers spend less time deciphering quirks. Maintainability: Predictable structure accelerates debugging and onboarding. Quality: Automated tools enforce standards and prevent regressions. Professionalism: Consistent code signals engineering maturity, not just coding skill. Tools That Do the Heavy Lifting Michael insists that every team should enforce linters, formatters, and pre-commit hooks. Without them, a small change can appear as a full-file rewrite, confusing reviews and merges. Start with community standards like PEP8, Google Java Style, or eslint/prettier. Add checks to CI/CD pipelines. Document expectations in CONTRIBUTING.md or a team wiki. Pro Tip: One rule set, many editors. Don't let each IDE invent its own defaults. Debunking the Myths of Code Consistency “Standards kill creativity.” True creativity lies in solving problems, not inventing new brace styles. “It slows us down.” Alignment may take effort initially, but it saves hours of confusion later. “Every project is different.” Standards should evolve as living guidelines, not rigid laws. Michael adds that consistent libraries allow teams to reuse components across projects instead of duplicating them. How to Put Standards Into Practice Here's a simple rollout path: Choose a baseline such as PEP8 or Google Style. Automate formatting and linting. Add pre-commit hooks to stop violations early. Focus reviews on consistency, not just correctness. Document standards and revisit them quarterly. Encourage adoption. Praise clean diffs and fast merges. Your Developer Challenge Here's your action step: Pick one project and audit three files. How many naming styles, error-handling patterns, or file structures do you find? Then: Apply a linter or formatter. Document two conventions (naming + logging). Share them with your team. Small steps toward code consistency will save your team time, money, and frustration down the road. Stay Connected: Join the Developreneur Community We invite you to join our community and share your coding journey with us. Whether you're a seasoned developer or just starting, there's always room to learn and grow together. Contact us at info@develpreneur.com with your questions, feedback, or suggestions for future episodes. Together, let's continue exploring the exciting world of software development. Additional Resources Coding Standards – A Personal Approach Look More Professional With Personal Coding Standards One-Offs, Side Projects, and Veering From Standards Updating Developer Tools: Keeping Your Tools Sharp and Efficient The Developer Journey Videos – With Bonus Content Building Better Developers With AI Podcast Videos – With Bonus Content

Making Invisible Work VisibleLately I noticed, sprint velocity looked fine and Jira showed progress. But none of the key tests, critical analysis and silent validations are tracked.After my observations I questioned: How much of our real work is visible?In Agile teams, productivity is often measured by delivered outputs: written code, released features, completed user stories, increasing metrics in dashboards, sprint completion rates, closed Jira tasks, the number of successful CI/CD runs, pull requests deployed to production, or customer-facing new functionalities.These are all important indicators. However, the behind-the-scenes efforts that make these visible outcomes possible are just as valuable.How to connect with AgileDad:- [website] https://www.agiledad.com/- [instagram] https://www.instagram.com/agile_coach/- [facebook] https://www.facebook.com/RealAgileDad/- [Linkedin] https://www.linkedin.com/in/leehenson/

Microsoft MVP Emanuel Palm joins The PowerShell Podcast to share his journey from managing printers in Sweden to being a Microsoft MVP who is automating the cloud with PowerShell and Azure. He talks about building the AZAuth module for OAuth authentication, using GitHub Actions for CI/CD, and the importance of blogging and community involvement. Plus, Emanuel reveals his unique side hobby... roasting coffee!   Key Takeaways From printers to the cloud: Emanuel's career shows how PowerShell can open doors, from automating IT tasks to driving cloud automation and DevOps practices. Community and sharing matter: Blogging, presenting, and contributing help you grow your own understanding while creating opportunities for others. Automation and authentication: With tools like GitHub Actions and his AZAuth module, Emanuel demonstrates how to simplify workflows and securely interact with APIs. Guest Bio Emanuel Palm is a Microsoft MVP based in Sweden, where he is a consultant focused on Microsoft technologies and is active in the PowerShell community. Emanuel is the creator of the AZAuth module, a lightweight solution for handling OAuth authentication in PowerShell, and a frequent speaker at events like PowerShell Conference Europe. Beyond tech, Emanuel is a coffee enthusiast who even roasts his own beans as a side hobby.   Resource Links Emanuel's Blog: https://pipe.how GitHub – Emanuel Palm: https://github.com/palmemanuel X / BlueSky: @palmemanuel AZAuth Module on GitHub: https://github.com/PalmEmanuel/AzAuth Emanuel's PS Wednesday: https://www.youtube.com/watch?v=trP2LLDynA0 Arkanum Coffee (Emanuel's hobby project): https://arkanum.coffee PDQ Discord: https://discord.gg/pdq Connect with Andrew: https://andrewpla.tech/links The PowerShell Podcast on YouTube: https://youtu.be/-uHHGVH1Kcc The PowerShell Podcast hub: https://pdq.com/the-powershell-podcast 

Guest: Rick Correa,Uber TL Google SecOps, Google Cloud Topics: On the 3rd anniversary of Curated Detections, you've grown from 70 rules to over 4700. Can you walk us through that journey? What were some of the key inflection points and what have been the biggest lessons learned in scaling a detection portfolio so massively? Historically the SecOps Curated Detection content was opaque, which led to, understandably, a bit of customer friction. We've recently made nearly all of that content transparent and editable by users. What were the challenges in that transition? You make a distinction between "Detection-as-Code" and a more mature "Software Engineering" paradigm. What gets better for a security team when they move beyond just version control and a CI/CD pipeline and start incorporating things like unit testing, readability reviews, and performance testing for their detections? The idea of a "Goldilocks Zone" for detections is intriguing – not too many, not too few. How do you find that balance, and what are the metrics that matter when measuring the effectiveness of a detection program? You mentioned customer feedback is important, but a confusion matrix isn't possible, why is that? You talk about enabling customers to use your "building blocks" to create their own detections. Can you give us a practical example of how a customer might use a building block for something like detecting VPN and Tor traffic to augment their security? You have started using LLMs for reviewing the explainability of human-generated metadata. Can you expand on that? What have you found are the ripe areas for AI in detection engineering, and can you share any anecdotes of where AI has succeeded and where it has failed?    Resources EP197 SIEM (Decoupled or Not), and Security Data Lakes: A Google SecOps Perspective EP231 Beyond the Buzzword: Practical Detection as Code in the Enterprise EP181 Detection Engineering Deep Dive: From Career Paths to Scaling SOC Teams EP139 What is Chronicle? Beyond XDR and into the Next Generation of Security Operations EP123 The Good, the Bad, and the Epic of Threat Detection at Scale with Panther “Back to Cooking: Detection Engineer vs Detection Consumer, Again?” blog “On Trust and Transparency in Detection” blog “Detection Engineering Weekly” newsletter “Practical Threat Detection Engineering” book

The enterprise network is under pressure like never before. Hybrid environments, cloud migrations, edge deployments, and the sudden surge in AI workloads have made it increasingly difficult to keep application connectivity secure and reliable. The old model of device-by-device, rule-based network management can't keep up with today's hyperconnected, API-driven world. In this episode of Tech Talks Daily, I sit down with Kyle Wickert, Field Chief Technology Officer at AlgoSec, to discuss the future of network management in the age of platformization. With more than a decade at AlgoSec and years of hands-on experience working with some of the world's largest enterprises, Kyle brings an unfiltered view of the challenges and opportunities that IT leaders are facing right now. We talk about why enterprises are rapidly shifting to platform-based models to simplify network security, but also why that strategy can start to break down when dealing with multi-vendor environments. Kyle explains the fragmentation across cloud, on-prem, and edge infrastructure that keeps CIOs awake at night, and why spreadsheets and manual change processes are still far too common in 2025. He also shares why visibility, intent-based policies, and policy automation are becoming non-negotiable in reducing risk and friction. Kyle doesn't just talk theory. He shares a real-world case study of a European financial institution that automated policy provisioning across firewalls and cloud infrastructure, integrated it with CI/CD pipelines, and reduced its change rejection rate from 25% to 4%. It's a compelling example of how the right approach to network management can deliver measurable improvements in agility, security, and business satisfaction.  

Deploying and managing cloud workloads is a complex task that requires developers to handle infrastructure, scaling, CI/CD pipelines, and database hosting. Configuring and maintaining Kubernetes, ensuring smooth deployments, and integrating various services efficiently is a common challenge. Will Stewart is the co-founder and CEO of Northflank, which is a platform focused on streamlining application deployment The post Complex Workload Deployment with Will Stewart appeared first on Software Engineering Daily.