Secure Your Travis CI Releases - Part 2: Signature with OpenPGP
In the first part of our series, I showed you how to generate a hash code file for your Travis CI release, thus making it possible for clients to check release integrity. In this part we are going to take things one step further by securing release authenticity with OpenPGP signatures, thus giving attackers, e.g., malware injectors, a hard time.
Secure your Travis CI releases – part 1: checksum with SHA
When fiddling around with Travis CI a very popular CI tool for GitHub projects, I was wondering: How to secure my release artifacts against forgery, e.g., malware injection? I already knew the solution: SHA and OpenPGP. But how to include those into my Travis CI ...
How serverless architectures change development process and project business
This blogpost gives a short impression of serverless architectures and serverless computing, what these terms stand for, and which benefits and drawbacks they involve. You will get some information about the impact on the development process and the business ...
Xtext 2.19 Release – builds on Eclipse’s new infrastructure JIRO
The Xtext team has released version 2.19.0 of Eclipse Xtext & Xtend. The current version is mainly a maintenance release. After working hard on some new features in the past releases, it was time for summer vacation during the current release period and for some ...
Introduced: New RKH state machine framework for reactive and real-time embedded systems
RKH (Reative frameworK for Hierarchical state machines) is a state machine framework used to build software for reactive and real-time embedded systems in a safely and timely way. Read on if you want to learn more about the benefits of this flexible, efficient and highly portable state machine framework.
Hardware/software co-design made easy using DSLs
Hardware/software co-design can be challenging. In this blog article, I am going to explain how model-driven development using domain-specific languages (DSLs) can reduce time to market and improve product quality in heterogeneous hardware/software environments.