Keep your project in shape

Post on 15-May-2015

183 views 1 download

Preview:

Click to see full reader

Tags:

Report this document
SHARE

description

LA-CONF 2013 talk http://2013.la-conf.org/ Developers always focus on their code, and almost never on the eco-system around their app. Dependencies can quickly make an app vulnerable, because new security holes are discovered every day. As we can't read all libraries code we're using in our project, it's kind of hard to determine what side effects could be introduced by using this or this package. Last but not least, APIs evolve, and so are packages. Sometimes APIs versions are deprecated, and if you don't pay attention to that, your app could stop working one day without notice. Ever worse, some packages can simply stop being maintained, leaving no choice then implementing a new one. That's why it's important to keep your projects in shape, the longer you wait to make it up-to-date, the harder it will be. There are some tools out there to achieve this, that every developer should know about: gemnasium (dependencies monitoring, and security alerts on them) rubytoolbox (alternatives) brakeman (security scanner)

Transcript of Keep your project in shape

Keep your project in shapeLA-CONF 2013

Philippe Lafoucrière

@plafoucriere

I KNOW YOUR PROJECT

Project cycle of life

• Fun• Exciting• Fresh

BORN • Outdated• Missing

features• Insecure

LIVE• Kill it!• Start over

DIE

Pictures stollen from: https://peepcode.com/products/play-by-play-aaroncorey

I’m sorr

y

Software Maintenance Cost

Time

$

DANGER

ZONE

KEEP IT IN SHAPE!

Your Daily Training: Reading

Newsletters

Commits

News site

Changelogs

Twitter (?)

Tools

Gemnasium

Monitors your projects dependencies

Warns you about outdated gems

Sends security alerts on your projects

Changelog viewer

Decision helper about upgrading (coming soon)

Free for public projects

The Ruby Toolbox

Find alternatives for your deprecated gems

The right gem for the job

Lots of data

Free!

Brakeman Scanner gem

Brakeman scanner

Scans your [rails app] code and reports security issues

Run it every week/month!

Lots of known vulnerabilities

Your code is secure until it’s not anymore

Free and open-source

THANK YOU!

TOP 100 most downloaded gems

65%

19%

13%2%

ChangelogValid OutdatedNo ChangelogInvalidNo source

Source: http://goo.gl/qozgh (shared gdocs)

http://goo.gl/qozgh
http://goo.gl/qozgh

Links

Tools presented https://gemnasium.com https://www.ruby-toolbox.com/ http://brakemanscanner.org/

Other useful tools https://github.com/metricfu/metric_fu/ https://github.com/colszowka/simplecov http://travis-ci.org/

About me https://github.com/gravis https://twitter.com/plafoucriere

https://gemnasium.com/
https://www.ruby-toolbox.com/
http://brakemanscanner.org/
https://github.com/metricfu/metric_fu/
https://github.com/colszowka/simplecov
https://github.com/colszowka/simplecov
http://travis-ci.org/
http://travis-ci.org/
http://travis-ci.org/
https://github.com/gravis
https://twitter.com/plafoucriere

Top related

Project Management - Keep it simple
 Business
Project lifecycle, Reporting & BAMOS step by step · • Introduce outputs to new users • Trigger further actions/processes • Keep ownership of investments • Keep project accounting
 Documents
YOUTH WORKER KEEP IN TOUCH PROJECT
 Documents
Want to keep your roof in excellent shape
 Services
Dependable Volunteers who keep our BWT land in good shape · Dependable Volunteers who keep our BWT land in good shape ... Walking a Dog on BWT land ... results we have engaged in
 Documents
Maths Week 4- Shape · Maths Week 4- Shape Instructions For each session there is the “Daily 10”. This includes a mixture of questions not specific to shape. This will help keep
 Documents
Keep Up With Your - The Enterprisers Project
 Documents
Technology Project: Shape-Based Retrieval of 3D Craniofacial Data
 Documents
How to Keep Your Luxury Homes for Sale in San Rafael in Prime Shape
 Real Estate
SHAPE Project Ingenieurbüro Tobias Loose: HPCWelding ...
 Documents
project final shape
 Documents
Dr. Yanjun Yan Self-Disassembly for Shape Formation Swarm ... · This year in the 2017‐2018 capstone project, “Self‐ Disassembly for Shape Formation Using Kilobots”, shape
 Documents
how do i keep my legs in good shape? - · PDF file6 How do I keep my legs in good shape? How do I keep my legs in good shape? 7 The heart of an adult person pumps, on average, around
 Documents
The IBM Pieta Project: A Historical Perspective Gabriel ...allen/S10/ibmPieta-abridged.pdfPieta` Project. SHAPE FROM SHADING Wecan infer shape from amonocular image ifthe ilumination
 Documents
Keep the Shape Información técnica del Material
 Documents
6 Project Management Tips - Keep Everybody Happy
 Documents
KEEP YOUR FLUIDS IN TOP SHAPE - creative.endeavorb2b.com
 Documents
How to keep Microsoft Project from being the Project 1/8/2003.
 Documents
New Exhibit Hall Is Taking Shape - akronfossils.com Times SUM…  · Web viewChronicles of Narnia SUmmer Kick off Carnival. ... Keep praying, keep spreading the word, and consider
 Documents
Ing Belgium - How to keep your data quality in top shape - Data Quality Summit 2008
 Business

Copyright © 2022 FDOCUMENTS