« Blog Home

Archive for the ‘Uncategorized’ Category

What is SonarQube’s Current Offering? [New Summary]

Recently, there have been many changes in Sonar and new tools have been added – so we thought we’d take a moment to clear things up and explain what the current SonarQube offering is, as well as what our added value is as their representatives (and of additional development utility tools). We are writing briefly here about each existing product/solution, and I would be happy to elaborate further as needed. 1) SonarQube Server – The long-standing and well-known product: Static code analysis to improve code quality and enhance security […]

Read more »

How Code Coverage in SonarQube Helps Developers, QA Managers, DevOps, R&D Managers, and Security Managers

An explanation of code coverage in SonarQube: how to measure Coverage correctly, integrate coverage reports with code management tools, define smart Quality Gates, and improve code quality.

Read more »

How Socket Helps Prevent Supply Chain Attacks and Malwares from Entering Development Environments

socket logo

Socket.dev prevents supply chain attacks by scanning dependencies for malware signatures, obfuscated code, and suspicious behaviors like data exfiltration or unauthorized API calls in JS, Python, and Go packages. Integrated into GitHub, GitLab, and Jenkins CI/CD pipelines, it blocks threats at the PR stage without uploading source code, complementing tools like SonarQube in DevSecOps workflows.

Read more »

JFrog Curation for Closed Environments: How to Block Malicious Packages Before They Enter Your Code

jfrog

JFrog Curation for Self-Hosted and Air-Gapped environments allows organizations to block malicious, dangerous, or non-compliant packages before they enter the build, repository, and code. This improves security, reduces risks in the software supply chain, and provides better governance over open-source consumption.

Read more »

Introduction to SonarQube’s AI CodeFix: How to Fix Bugs Faster?

SonarQube’s AI CodeFix adds an AI-based remediation layer on top of Sonar’s static code analysis. In this article, we explain what it provides, how it helps fix bugs, which languages it supports, and how to measure its ROI in the organization.

Read more »

SonarQube and C++

SonarQube offers static code scanning for many languages, and one of the most popular is C++. The tool can detect Bugs, Security Vulnerabilities, Security Hotspots, and Code Smells.

Read more »

How Docker Integrates with Git and GitLab: A DevOps Overview

docker gitlab integration

Overview of how Docker connects with git and GitLab, offering best practices for workflows optimized for today’s DevOps environments

Read more »

How Docker Empowers Software Developers and Engineers?

docker logo

Docker is highly valuable for software developers and engineers, making common tasks more efficient and reliable in daily workflows.
In this article we summarize the main benefits of using Docker by software engineers.

Read more »

Our Assortment of GitLab HA/DR Solutions

business continuity

It is well known that once a system becomes critical for an organization’s daily activities, there arises a need of business continuity, speedy Disaster Recovery (DR) or the ability of the system to be continuously operational for a desirably long length of time (High Availability, aka HA). We help GitLab users worldwide to analyze their […]

Read more »

About the connection between GitLab and OpenShift

openshift-gitlab-kubernetes

As a company that deals a lot with GitLab and Kubernetes and helps many customers with these issues, We are often asked about the nature of the connection between GitLab and GitLab CI/CD and Kubernetes, and in particular OpenShift. From ongoing engagement on the subject, we have accumulated quite a bit of knowledge and decided […]

Read more »

Differences of gitlab.com (SaaS) vs GitLab Self-managed

GitLab Self-managed vs gitlab.com

In the last two years, many people ask us what the differences are between GitLab Self-managed (your own private server) and gitlab.com (GitLab’s SaaS solution). Many are confused about using GitLab in the cloud, That’s why I decided to publish a comprehensive and up-to-date article on the subject, based on the accumulated knowledge of our […]

Read more »

New Recording: Consul Webinar

consul webinar

Last week we hosted John Boero from HashiCorp company, who presented what’s new in Consul (for about half an hour) and also answered questions asked about the product (for about another half hour). A total of 8 questions were asked and he managed to answer them all. We added the questions at the end of […]

Read more »

Atlassian Changed the Rules. What’s Next?

atlassian-announcement

Recently Atlassian company shocked and angered its community of users worldwide (including ourselves) by deciding to sunset its on-premises software. We support many customers with Atlassian on-premises installations, and during the last few weeks we have received dozens of inquiries asking,  “What do we do now?” My first response was, “Wait a little, if you […]

Read more »

What is Taiga?

Taiga is a project management tool, development management, issue, and bug tracking tool for shops that are based on Agile / Scrum / Kanban methodologies.  Taiga offers flows, forms, and fields that match those methodologies out-of-the-box. This is an alternative tool for Jira – especially for those who realize that Jira is too complex and […]

Read more »

New demo: How SonarQube is integrated with GitLab

A new video titled “ Code Quality & Security in Your Development Workflow” was released last week by SonarSource – the manufacturer of SonarQube (and a company we represent). In this video they demonstrate how SonarQube can be integrated with GitLab, GitLab CI/CD and other SCM tools.We took this video and edited it in order […]

Read more »

    * Full Name

    * Work Email

    * Are you using any AI tools today? What tools?

      * Full Name

      * Work Email

      Are you using any SCA solution? Which one?

        * Full Name

        * Work Email

        * Are you using OpenProject?

        Do you have any questions you'd like to ask before the webinar?

          * Full Name

          * Work Email

          * Are you using any Secrets Management solution? Which one?