Author Archives: Derek Weeks

About Derek Weeks

In 2015, I led the largest and most comprehensive analysis of software supply chain practices to date across 160,000 development organizations. I am a huge advocate of applying proven supply chain management principles into DevOps practices to improve efficiencies, reduce costs, and sustain long-lasting competitive advantages. As a 20+ year veteran of the software industry, I have advised leading businesses on IT performance improvement practices covering continuous delivery, business process management, systems and network operations, service management, capacity planning and storage management. As the VP and DevOps Advocate for Sonatype, I am passionate about changing the way people think about software supply chains and improving public safety through improved software integrity. Follow me here @weekstweets, find me here www.linkedin.com/in/derekeweeks, and read me here http://blog.sonatype.com/author/weeks/.

We’ve Moved (to a new community site)


July 14, 2015 By
Derek Weeks
Screen Shot 2015-07-14 at 11.56.31 AM

We have moved.  Please come visit! In April 2015, we moved the Sonatype corporate blog to a new site: TheNexus community. On the new site, you can find more technical information, corporate blogs, videos, free training, documentation, and downloads. Come see the great new community at www.sonatype.org/nexus/. Come and contribute.  Whereas this Sonatype blog site only […]

Continue reading...

Categories: Uncategorized

Real World Experiences: Blackboard


April 21, 2015 By
Derek Weeks
bb-testimonial

As part of a new series we’re calling ‘Real World Experiences’ we’ll be highlighting how Sonatype customers are benefiting from greater development efficiency, higher productivity levels, faster time to market and better quality software, all while being more secure. We kick off the series covering Blackboard, the world’s leading education technology company.

Continue reading...

Categories: Uncategorized

Legal at DevOps Speed


April 7, 2015 By
Derek Weeks
legal risks

Paul is not part of our development team, he doesn’t want to be, and he certainly does not slow them down. But with that said, Paul knows how to work at DevOps speed. He knows legal reviews need to happen at the speed of development on every component, every build, and every release. How much time does Paul spend reviewing open source and third-party software components in the software we are building? Almost none. Yup. That is because we have automated him.

Continue reading...

Categories: Uncategorized

Continuous Delivery and Nexus


March 19, 2015 By
Derek Weeks
nexus_cd

There are numerous examples of reference architectures available, and each of them vary in levels of detail, tools highlighted, and processes followed. Yet, there is a constant theme among the tool sets: Jenkins, Maven, Nexus, Subversion, Git, Docker, Puppet/Chef, Rundeck, and Sonar seem to show up time and again.

Continue reading...

Categories: Uncategorized

Dogfooding Nexus


March 16, 2015 By
Derek Weeks
Sonatype

How does Sonatype use Nexus to support our development efforts? Well, our development team is about to tell you. In fact, they a planning to give a virtual tour of our factory floor (e.g., tool chain) while discussing their own best practices for agile software development across a geographically distributed team. They will also spend time discussing their use of Nexus, Bamboo, JIRA, HipChat, AWS, Ansible and other solutions to streamline our development efforts, improve the quality of our builds while reducing rework, and speed time to market for new releases.

Continue reading...

Categories: Uncategorized

Sonatype and Bamboo: Improving Your Builds


March 3, 2015 By
Derek Weeks
Bamboo

Sonatype now provides native Atlassian Bamboo support to improve the quality of your build outputs. Sonatype provides instant analysis of open source components used in every Bamboo build and alerts development teams to any quality, license, or security issues identified. By catching the issues during CI builds, development teams can quickly address open source policy violations early and can avoid unplanned rework.

Continue reading...

Categories: Uncategorized

Evaluating OSS logistics solutions? Consider these 9 tips.


February 24, 2015 By
Derek Weeks
iStock_000035454232Small

With well over 17 billion open source components downloaded from public repositories in 2014, it is clear that more software development organizations are assembling software from component building blocks. In fact, Gartner reports that by 2016 the vast majority of mainstream IT organizations will leverage open source software (OSS) components in mission-critical IT solutions. This massive reliance on open source components has created new challenges for managing the speed, cost, and risks of continuous delivery in today’s software development efforts.

Continue reading...

Categories: Uncategorized