DevOps Tools for Java Developers v2

Download as pptx, pdf

2 likes1,919 views

The document discusses essential DevOps tools for Java developers, emphasizing the importance of version control systems, continuous integration and deployment, and security scanning. It outlines various workflows like git-flow, GitHub flow, and GitLab flow, highlighting their strategies for branching and merging. The document stresses that as companies become more software-centric, managing security vulnerabilities is crucial.

DevOps Tools for Java Developers
Stephen Chin @steveonjava
VP of Devrel @JFrog

2
HOW I PICTURED MYSELF
DURING THE PANDEMIC

3
HOW I ACTUALLY LOOK
DURING THE PANDEMIC

Source Code
Repository
Package Manager Security Scanner
Continuous
Integration
Continuous
Delivery
Single Source
of Truth
Build and
test on every
integration
Full bill of
materials
and binary
history for
traceability
Deep scanning of
dependencies
and containers
Distribution and
automated
deployment to
the edge and
beyond

DevOps Tools for Java Developers v2

Evolution of Version Control Systems
• 1st Generation – Locking
• SCCS, RCS
• 2nd Generation – Optimistic Locking
• CVS, Subversion
• 3rd Generation – Distributed
• Git, Mercurial

Adoption of Major VCS Systems
Source: Google Trends

How Distributed version control works

Usage of developer tools
https://insights.stackoverflow.com/survey/2020

GIT-FLOW
• Development Branches:
Branch per feature
• Merge Strategy: No fast
forward merges
• Rebasing History: No rebasing
• Release Strategy: Separate
release branch

GITHUB FLOW
• Development Branches:
Branch per feature
• Merge Strategy: No fast
forward merges
• Rebasing History: No
rebasing
• Release Strategy: No
separate release branches
GITLAB FLOW
• Development Branches:
Branch per feature
• Merge Strategy: Open ended
• Rebasing History: Optional
• Release Strategy: Separate
release branches

Source Code
Repository
Package Manager Security Scanner
Continuous
Integration
Continuous
Deployment
Single Source
of Truth
Build and
test on every
integration
Full bill of
materials
and binary
history for
traceability
Deep scanning of
dependencies
and containers
Automated
deployment to
the edge and
beyond

DevOps Tools for Java Developers v2

DevOps Tools for Java Developers v2

Source Code
Repository
Package Manager Security Scanner
Continuous
Integration
Continuous
Delivery
Single Source
of Truth
Build and
test on every
integration
Full bill of
materials
and binary
history for
traceability
Deep scanning of
dependencies
and containers
Distribution and
automated
deployment to
the edge and
beyond

“AS EVERY COMPANY BECOME A SOFTWARE
COMPANY,
SECURITY VULNERABILITIES ARE
THE NEW OIL SPILLS”

DevOps Tools for Java Developers v2

DevOps Tools for Java Developers v2

DevOps Tools for Java Developers v2

DevOps Tools for Java Developers v2

Source Code
Repository
Package Manager Security Scanner
Continuous
Integration
Continuous
Delivery
Single Source
of Truth
Build and
test on every
integration
Full bill of
materials
and binary
history for
traceability
Deep scanning of
dependencies
and containers
Distribution and
automated
deployment to
the edge and
beyond

DevOps Tools for Java Developers v2

DevOps Tools for Java Developers v2

DevOps Tools for Java Developers v2

DevOps Tools for Java Developers v2

(?:(?:"|'|]|}||d|(?:nan|infinity|true|false|null|undefined|
symbol|math)|`|-|+)+[)]*;?((?:s|-|~|!|{}||||+)*.*(?:.*=.*)))

(?:(?:"|'|]|}||d|(?:nan|infinity|true|false|null|undefined|
symbol|math)|`|-|+)+[)]*;?((?:s|-|~|!|{}||||+)*.*(?:.*=.*)))

.*(?:.*=.*)

.*.*=.*

DevOps Tools for Java Developers v2

Source Code
Repository
Package Manager Security Scanner
Continuous
Integration
Continuous
Delivery
Single Source
of Truth
Build and
test on every
integration
Full bill of
materials
and binary
history for
traceability
Deep scanning of
dependencies
and containers
Distribution and
automated
deployment to
the edge and
beyond

ARTIFACTORY
DISTRIBUTION XRAY
CI Servers
Remote Repositories
Build Tools/Dependency
Managers
QA/QC
Provisioning Tools
1
2
3
4 5
6
7 8
10
10
Version
Control
System
Take VCS
changes
Commit the
changes
Dev.
Team
Declare new
dependencies
Resolve
dependencies
Resolve
dependencies
Resolve
dependencies
Deploy module Artifacts
and Buildinfo BOM
Contribute
Metadata
Deploy to
Production
Roll out for Internal
Distribution
Production
Servers
Build
MSBuild
DRONE
External Data Sources
Updat
e
ARTIFACTORY
EDGE
ARTIFACTORY
EDGE
ARTIFACTORY
EDGE
Analyze
Build Tools/Dependency
Managers
9
MSBuild

THANK YOU!

Ad

Recommended

PDF

ISACA SV Chapter: Securing Software Supply ChainsJim Bugwadia

PDF

GitOps 101 Presentation.pdfssuser31375f

PDF

Git SVN Migrate ReasonsOvidiu Dimulescu

PDF

Developing XWikiVincent Massol

PDF

GitOps is the best modern practice for CD with KubernetesVolodymyr Shynkar

PDF

DevSecOps - Background, Status and Future Challengesdsc71656

PDF

What is GitOps? How GitOps works? we discuss Key Challanges.aniporwal00

PDF

OSS Japan - Application Monitoring And Tracing In KubernetesDavid vonThenen

PPTX

Enabling Production Grade Containerized Applications through Policy Based Inf...Docker, Inc.

PPTX

Leveraging Analytics for DevOpsMichael Floyd

PDF

Journey toward3rdplatformTzung-Hsien (Shawn) Ho

PPTX

Shopify - CNCF March 2025 Meetup - Presentation - 26-03-25.pptxMichael Foster

PDF

Alt. GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using ...James Anderson

PPTX

Ramin Orujov - Android API Overview and RepositoryRashad Aliyev

PPTX

Hackathon Azerbaijan Android API Overview and RepositoryRamin Orujov

PDF

Designing an unobtrusive analytics framework for monitoring java applications...IWSM Mensura

PDF

Increase the Velocity of Your Software Releases Using GitHub and DeployHubDevOps.com

PPTX

DevSecCon London 2017: when good containers go bad by Tim MackeyDevSecCon

PDF

Intro to GitOps with Weave GitOps, Flagger and LinkerdWeaveworks

PDF

DevOps Service | MindtreeAnikeyRoy

PPTX

DevOps Interview Questions Part - 1 | Devops Interview Questions And Answers ...Simplilearn

PPTX

2016 Federal User Group Conference - TeamForge Capabilities and DirectionsCollabNet

PDF

Tracy Miranda_DevOps Loop, May 2022.pdfVMware Tanzu

PPTX

Continuous delivery by sergey seletskySergey Seletsky

PDF

S3 Group on Code Management - RDK Users Conference 2014S3 Group | TV Technology

PDF

Agile Secure Cloud Application Development ManagementAdam Getchell

PPTX

Top10 Characteristics of Awesome AppsCasey Lee

PDF

Leading a Community-Driven Open Source ProjectVincent Massol

PPTX

10 Ways Everyone Can Support the Java CommunityStephen Chin

PPTX

Java Clients and JavaFX: The Definitive GuideStephen Chin

More Related Content

Similar to DevOps Tools for Java Developers v2 (20)

PPTX

Enabling Production Grade Containerized Applications through Policy Based Inf...Docker, Inc.

PPTX

Leveraging Analytics for DevOpsMichael Floyd

PDF

Journey toward3rdplatformTzung-Hsien (Shawn) Ho

PPTX

Shopify - CNCF March 2025 Meetup - Presentation - 26-03-25.pptxMichael Foster

PDF

Alt. GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using ...James Anderson

PPTX

Ramin Orujov - Android API Overview and RepositoryRashad Aliyev

PPTX

Hackathon Azerbaijan Android API Overview and RepositoryRamin Orujov

PDF

Designing an unobtrusive analytics framework for monitoring java applications...IWSM Mensura

PDF

Increase the Velocity of Your Software Releases Using GitHub and DeployHubDevOps.com

PPTX

DevSecCon London 2017: when good containers go bad by Tim MackeyDevSecCon

PDF

Intro to GitOps with Weave GitOps, Flagger and LinkerdWeaveworks

PDF

DevOps Service | MindtreeAnikeyRoy

PPTX

DevOps Interview Questions Part - 1 | Devops Interview Questions And Answers ...Simplilearn

PPTX

2016 Federal User Group Conference - TeamForge Capabilities and DirectionsCollabNet

PDF

Tracy Miranda_DevOps Loop, May 2022.pdfVMware Tanzu

PPTX

Continuous delivery by sergey seletskySergey Seletsky

PDF

S3 Group on Code Management - RDK Users Conference 2014S3 Group | TV Technology

PDF

Agile Secure Cloud Application Development ManagementAdam Getchell

PPTX

Top10 Characteristics of Awesome AppsCasey Lee

PDF

Leading a Community-Driven Open Source ProjectVincent Massol

Enabling Production Grade Containerized Applications through Policy Based Inf...Docker, Inc.

Leveraging Analytics for DevOpsMichael Floyd

Journey toward3rdplatformTzung-Hsien (Shawn) Ho

Shopify - CNCF March 2025 Meetup - Presentation - 26-03-25.pptxMichael Foster

Alt. GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using ...James Anderson

Ramin Orujov - Android API Overview and RepositoryRashad Aliyev

Hackathon Azerbaijan Android API Overview and RepositoryRamin Orujov

Designing an unobtrusive analytics framework for monitoring java applications...IWSM Mensura

Increase the Velocity of Your Software Releases Using GitHub and DeployHubDevOps.com

DevSecCon London 2017: when good containers go bad by Tim MackeyDevSecCon

Intro to GitOps with Weave GitOps, Flagger and LinkerdWeaveworks

DevOps Service | MindtreeAnikeyRoy

DevOps Interview Questions Part - 1 | Devops Interview Questions And Answers ...Simplilearn

2016 Federal User Group Conference - TeamForge Capabilities and DirectionsCollabNet

Tracy Miranda_DevOps Loop, May 2022.pdfVMware Tanzu

Continuous delivery by sergey seletskySergey Seletsky

S3 Group on Code Management - RDK Users Conference 2014S3 Group | TV Technology

Agile Secure Cloud Application Development ManagementAdam Getchell

Top10 Characteristics of Awesome AppsCasey Lee

Leading a Community-Driven Open Source ProjectVincent Massol

More from Stephen Chin (20)

PPTX

10 Ways Everyone Can Support the Java CommunityStephen Chin

PPTX

Java Clients and JavaFX: The Definitive GuideStephen Chin

PPTX

DevOps Tools for Java DevelopersStephen Chin

PPTX

Java Clients and JavaFX - Presented to LJCStephen Chin

PPTX

RetroPi Handheld Raspberry Pi Gaming ConsoleStephen Chin

PPTX

JavaFX on Mobile (by Johan Vos)Stephen Chin

PPTX

Confessions of a Former Agile Methodologist (JFrog Edition)Stephen Chin

PPTX

Devoxx4Kids Lego WorkshopStephen Chin

PPTX

Raspberry Pi with Java (JJUG)Stephen Chin

PPTX

Confessions of a Former Agile MethodologistStephen Chin

PPTX

Internet of Things Magic ShowStephen Chin

PPTX

Zombie Time - JSR 310 for the UndeadStephen Chin

PPTX

JCrete Embedded Java WorkshopStephen Chin

PPTX

Oracle IoT Kids WorkshopStephen Chin

PPTX

OpenJFX on Android and DevicesStephen Chin

PPTX

Java on Raspberry Pi LabStephen Chin

PDF

Java 8 for Tablets, Pis, and LegosStephen Chin

PDF

DukeScriptStephen Chin

PPTX

Devoxx4Kids NAO WorkshopStephen Chin

PPTX

Raspberry Pi Gaming 4 Kids (Devoxx4Kids)Stephen Chin

10 Ways Everyone Can Support the Java CommunityStephen Chin

Java Clients and JavaFX: The Definitive GuideStephen Chin

DevOps Tools for Java DevelopersStephen Chin

Java Clients and JavaFX - Presented to LJCStephen Chin

RetroPi Handheld Raspberry Pi Gaming ConsoleStephen Chin

JavaFX on Mobile (by Johan Vos)Stephen Chin

Confessions of a Former Agile Methodologist (JFrog Edition)Stephen Chin

Devoxx4Kids Lego WorkshopStephen Chin

Raspberry Pi with Java (JJUG)Stephen Chin

Confessions of a Former Agile MethodologistStephen Chin

Internet of Things Magic ShowStephen Chin

Zombie Time - JSR 310 for the UndeadStephen Chin

JCrete Embedded Java WorkshopStephen Chin

Oracle IoT Kids WorkshopStephen Chin

OpenJFX on Android and DevicesStephen Chin

Java on Raspberry Pi LabStephen Chin

Java 8 for Tablets, Pis, and LegosStephen Chin

DukeScriptStephen Chin

Devoxx4Kids NAO WorkshopStephen Chin

Raspberry Pi Gaming 4 Kids (Devoxx4Kids)Stephen Chin

Ad

Recently uploaded (20)

PPTX

Curietech AI in action - Accelerate MuleSoft developmentshyamraj55

PPTX

MARTSIA: A Tool for Confidential Data Exchange via Public Blockchain - Pitch ...Michele Kryston

PDF

The Future of Product Management in AI ERA.pdfAlyona Owens

PDF

How to Visualize the Spatio-Temporal Data Using CesiumJSSANGHEE SHIN

PDF

Database Benchmarking for Performance Masterclass: Session 2 - Data Modeling ...ScyllaDB

PPTX

01_Approach Cyber- DORA Incident Management.pptxFinTech Belgium

PPTX

Practical Applications of AI in Local GovernmentOnBoard

PDF

Automating the Geo-Referencing of Historic Aerial Photography in FlandersSafe Software

PDF

EIS-Webinar-Engineering-Retail-Infrastructure-06-16-2025.pdfEarley Information Science

PDF

Optimizing the trajectory of a wheel loader working in short loading cyclesReno Filla

PPTX

Enabling the Digital Artisan – keynote at ICOCI 2025Alan Dix

PDF

LLM Search Readiness Audit - Dentsu x SEO Square - June 2025.pdfNick Samuel

PDF

FME as an Orchestration Tool with Principles From Data GravitySafe Software

PDF

5 Things to Consider When Deploying AI in Your EnterpriseSafe Software

PPTX

Paycifi - Programmable Trust_Breakfast_PPTXTFinTech Belgium

PPTX

MARTSIA: A Tool for Confidential Data Exchange via Public Blockchain - Poster...Michele Kryston

PPTX

reInforce 2025 Lightning Talk - Scott Francis.pptxScottFrancis51

PDF

“MPU+: A Transformative Solution for Next-Gen AI at the Edge,” a Presentation...Edge AI and Vision Alliance

PDF

From Chatbot to Destroyer of Endpoints - Can ChatGPT Automate EDR Bypasses (1...Priyanka Aash

PDF

Hello I'm "AI" Your New _________________Dr. Tathagat Varma

Curietech AI in action - Accelerate MuleSoft developmentshyamraj55

MARTSIA: A Tool for Confidential Data Exchange via Public Blockchain - Pitch ...Michele Kryston

The Future of Product Management in AI ERA.pdfAlyona Owens

How to Visualize the Spatio-Temporal Data Using CesiumJSSANGHEE SHIN

Database Benchmarking for Performance Masterclass: Session 2 - Data Modeling ...ScyllaDB

01_Approach Cyber- DORA Incident Management.pptxFinTech Belgium

Practical Applications of AI in Local GovernmentOnBoard

Automating the Geo-Referencing of Historic Aerial Photography in FlandersSafe Software

EIS-Webinar-Engineering-Retail-Infrastructure-06-16-2025.pdfEarley Information Science

Optimizing the trajectory of a wheel loader working in short loading cyclesReno Filla

Enabling the Digital Artisan – keynote at ICOCI 2025Alan Dix

LLM Search Readiness Audit - Dentsu x SEO Square - June 2025.pdfNick Samuel

FME as an Orchestration Tool with Principles From Data GravitySafe Software

5 Things to Consider When Deploying AI in Your EnterpriseSafe Software

Paycifi - Programmable Trust_Breakfast_PPTXTFinTech Belgium

MARTSIA: A Tool for Confidential Data Exchange via Public Blockchain - Poster...Michele Kryston

reInforce 2025 Lightning Talk - Scott Francis.pptxScottFrancis51

“MPU+: A Transformative Solution for Next-Gen AI at the Edge,” a Presentation...Edge AI and Vision Alliance

From Chatbot to Destroyer of Endpoints - Can ChatGPT Automate EDR Bypasses (1...Priyanka Aash

Hello I'm "AI" Your New _________________Dr. Tathagat Varma

Ad

DevOps Tools for Java Developers v2

1. DevOps Tools for Java Developers Stephen Chin @steveonjava VP of Devrel @JFrog

2. 2 HOW I PICTURED MYSELF DURING THE PANDEMIC

3. 3 HOW I ACTUALLY LOOK DURING THE PANDEMIC

4. Source Code Repository Package Manager Security Scanner Continuous Integration Continuous Delivery Single Source of Truth Build and test on every integration Full bill of materials and binary history for traceability Deep scanning of dependencies and containers Distribution and automated deployment to the edge and beyond

6. Evolution of Version Control Systems • 1st Generation – Locking • SCCS, RCS • 2nd Generation – Optimistic Locking • CVS, Subversion • 3rd Generation – Distributed • Git, Mercurial

7. Adoption of Major VCS Systems Source: Google Trends

8. How Distributed version control works

9. Usage of developer tools https://insights.stackoverflow.com/survey/2020

10. GIT-FLOW • Development Branches: Branch per feature • Merge Strategy: No fast forward merges • Rebasing History: No rebasing • Release Strategy: Separate release branch

11. GITHUB FLOW • Development Branches: Branch per feature • Merge Strategy: No fast forward merges • Rebasing History: No rebasing • Release Strategy: No separate release branches GITLAB FLOW • Development Branches: Branch per feature • Merge Strategy: Open ended • Rebasing History: Optional • Release Strategy: Separate release branches

12. Source Code Repository Package Manager Security Scanner Continuous Integration Continuous Deployment Single Source of Truth Build and test on every integration Full bill of materials and binary history for traceability Deep scanning of dependencies and containers Automated deployment to the edge and beyond

15. Source Code Repository Package Manager Security Scanner Continuous Integration Continuous Delivery Single Source of Truth Build and test on every integration Full bill of materials and binary history for traceability Deep scanning of dependencies and containers Distribution and automated deployment to the edge and beyond

16. “AS EVERY COMPANY BECOME A SOFTWARE COMPANY, SECURITY VULNERABILITIES ARE THE NEW OIL SPILLS”

21. Source Code Repository Package Manager Security Scanner Continuous Integration Continuous Delivery Single Source of Truth Build and test on every integration Full bill of materials and binary history for traceability Deep scanning of dependencies and containers Distribution and automated deployment to the edge and beyond

28. (?:(?:"|'|]|}||d|(?:nan|infinity|true|false|null|undefined| symbol|math)|`|-|+)+[)]*;?((?:s|-|~|!|{}||||+)*.*(?:.*=.*)))

29. (?:(?:"|'|]|}||d|(?:nan|infinity|true|false|null|undefined| symbol|math)|`|-|+)+[)]*;?((?:s|-|~|!|{}||||+)*.*(?:.*=.*)))

30. .*(?:.*=.*)

33. Source Code Repository Package Manager Security Scanner Continuous Integration Continuous Delivery Single Source of Truth Build and test on every integration Full bill of materials and binary history for traceability Deep scanning of dependencies and containers Distribution and automated deployment to the edge and beyond

35. ARTIFACTORY DISTRIBUTION XRAY CI Servers Remote Repositories Build Tools/Dependency Managers QA/QC Provisioning Tools 1 2 3 4 5 6 7 8 10 10 Version Control System Take VCS changes Commit the changes Dev. Team Declare new dependencies Resolve dependencies Resolve dependencies Resolve dependencies Deploy module Artifacts and Buildinfo BOM Contribute Metadata Deploy to Production Roll out for Internal Distribution Production Servers Build MSBuild DRONE External Data Sources Updat e ARTIFACTORY EDGE ARTIFACTORY EDGE ARTIFACTORY EDGE Analyze Build Tools/Dependency Managers 9 MSBuild