A lot of modern applications these days are composed of open source code, and this is a big challenge for organizations. They need to scan all these dependencies, along with their code, to effectively manage risk. Software Composition Analysis (SCA) can track all software licenses and dependencies that have reported vulnerabilities and potential exploits. Additionally, […]
Category: Application components
Overview of the target architecture – Enabling the Observability of Your Workloads
Before we dive into the code-level changes, let’s get a visual understanding of the components we plan to add around our test application stack, and how they communicate with each other. We will focus on capabilities that help us monitor the application logs and metrics on tools of our choice. We will extend our existing […]
Trade-offs and challenges of security – Implementing DevSecOps with AWS
Every software team can have its own unique set of challenges to solve, be it technical or cultural. Before we dive into the specifics of DevSecOps, let’s try to understand what led to the need for an iteration of existing DevOps methodologies. Along the way, we will discuss why security can sometimes be seen as […]
Amazon CloudWatch, Application components, AWS Certification Exam, Early identification of issues, Software Composition Analysis
Deploying the stack in an AWS account – Enabling the Observability of Your Workloads
At this point, we can deploy our CDK stack in the AWS account. Alongside core infrastructure elements such as VPCs, subnets, and gateways, it will provision the ECS cluster, which contains three containers – the application, the database, and the OpenTelemetry collector. We will also deploy an independent workspace for Amazon-managed Prometheus. Toward the end, […]
Deploying a test application on ECS – Running Containers in AWS
It’s always fun to see what we’ve learned in action. Based on what we have explored so far, let’s get our hands dirty by deploying a test application on Amazon ECS. This time, we’ll create a newapplication that you can also use and customize beyond the scope of this chapter, as per your personal preferences […]
Application components, AWS Certification Exam, Early identification of issues, Software Composition Analysis
What is observability? – Enabling the Observability of Your Workloads
Simply put, it’s all about understanding the current state a running system is in, from the work it is doing and the data that it is emitting. Developing a solid observability strategy is not a one-time thing and it will always have scope for optimizations as your business needs evolve. But, before you can even […]