Robert Reiz, profile picture
Uploaded byRobert Reiz
1,700 views

Continuous Updating with VersionEye at code.talks 2014

Robert Reiz, a software developer since 1998, discusses the importance of continuous updating in dependency management, emphasizing that outdated libraries can pose significant risks. He highlights the shift from the waterfall model to agile development and the need for tools like VersionEye to automate tracking and managing dependencies effectively. The document also covers semantic versioning and the necessity of migration paths to ensure system stability during updates.

Embed presentation

Downloaded 14 times
Continuous Updating
Who I am? • Robert Reiz • Software Dev since 1998 • I started VersionEye
What I do? • I write crawlers • I integrate Package Managers • I integrate SCMs
VersionEye Dependency Management • 445K Open Source Projects • 10 Package Managers • 3 SCMs
Why https://www.versioneye.com/statistics
Why
Why I want to stay up-to-date?
100 libraries per project in avg.
How do you keep track of your Dependencies?
Which Licenses are your dependencies using?
Are your dependencies still alive?
You don’t know ?
Every dependency is a risk factor.
15 years ago we used to work with the WATERFALL MODEL Requirements Analysis Design Coding Testing Accepting
But today we are AGILE
Everything the Waterfall Model used to execute in one year ... ! ... we nowadays execute in 2 weeks!
The way we develop software today totally changed!
Being AGILE got us CONTINUOUS Testing CONTINUOUS Refactoring CONTINUOUS Integration CONTINUOUS Delivery CONTINUOUS Deployment
But what about Continuous Updating?
Why should I care about Continuous Updating?
Core committers don’t release new versions just for fun!
They always have good reasons • Bug Fixes • Security Fixes • Speed & Memory optimization • New Features
If you can't fly then run, if you can't run then walk, if you can't walk then crawl, but whatever you do you have to keep moving forward. Martin Luther King Jr.
How do you ensure that new versions don’t break the system?
Semantic Versioning Migration Paths Continuous Testing
http://semver.org/
MAJOR.MINOR.PATCH 1.MAJOR version when you make incompatible API changes 2.MINOR version when you add functionality in a backwards-compatible manner 3.PATCH version when you make backwards-compatible bug fixes.
Always follow the MIGRATION PATH
Many small steps are better than one big step ! You can do SMALL MIGRATIONS on the fly. ! BIG MIGRATIONS are risky and expensive. ! If you miss versions, you miss migration paths, too. And that leads to TROUBLE!
Don’t miss migration paths! migrate migrate migrate 1 2 3 4 big migration … expensive!
Always run your TESTS against new versions
2.245.022 New Releases
New$Releases$ Major# Minor/Patch# 6%# 94%#
94% of all new releases are harmless and you can update without doubt.
Another reason for being current
Do you really believe those young talents wanna work with COBOL? Or other OLD SHIT?
Tracking versions is a pain!
SOFTWARE LIBRARIES are NOT like iPhone Apps!
100 libraries per project in avg. After 2 weeks the first libraries are OUT-DATED!
Developers are missing critical BUG FIXES and important UPDATES!
Manually checking for updates is no fun! ! It cost TIME & MONEY! ! NOBODY WANTS TO DO IT!
So, how do you wanna solve this PROBLEM
You have to AUTOMATE
You need a TOOL for that!
GemNotifier Gemnasium VersionEye Languages Ruby Ruby, Node.JS, Python 22 Languages GitHub no yes yes Bitbucket no no yes File upload no no yes URL parsing no no yes Changelogs no yes in progress Security no yes in progress Licenses no no yes API no no yes
www.VersionEye.com Keeps an eye on more than 445K open source libraries! Supports 22 Languages and 10 Package Managers! Integrated with GitHub, Bitbucket, Stash. Open REST JSON API.
Are your dependencies still alive?
KPIs
Heat-map for dead / alive Dependencies
Tags / Labels
Which Licenses are your dependencies using?
License Whitelist
DEMO
https://www.versioneye.com/api
M2 VersionEye Enterprise VM VersionEye.com CI Intranet E-Mail data sync SCM VersionEye Enterprise Updates via Docker Containers
Questions? @RobertReiz #ContinuousUpdating

More Related Content

PDF
Ansible Introduction
byRobert Reiz
 
PDF
Ansible introduction - XX Betabeers Galicia
byJuan Diego Pereiro Arean
 
PPTX
Continuous Delivery and Infrastructure as Code
bySascha Möllering
 
PPTX
Infrastructure Automation with Chef & Ansible
bywajrcs
 
PPTX
Continuous Delivery With Selenium Grid And Docker
byBarbara Gonzalez
 
PPTX
London Community Summit - Habitat 2016
bySarah Richards
 
PPTX
London Community Summit 2016 - Fresh New Chef Stuff
byChef
 
PDF
Docker
byMichael Lihs
 
Ansible Introduction
byRobert Reiz
 
Ansible introduction - XX Betabeers Galicia
byJuan Diego Pereiro Arean
 
Continuous Delivery and Infrastructure as Code
bySascha Möllering
 
Infrastructure Automation with Chef & Ansible
bywajrcs
 
Continuous Delivery With Selenium Grid And Docker
byBarbara Gonzalez
 
London Community Summit - Habitat 2016
bySarah Richards
 
London Community Summit 2016 - Fresh New Chef Stuff
byChef
 
Docker
byMichael Lihs
 

What's hot

PDF
Case study: JBoss Developer Studio, an IDE for Web, Mobile and Cloud applicat...
byMax Andersen
 
PDF
Hacking Jenkins
byMiro Cupak
 
PDF
OpenShift: Java EE in the clouds
byMax Andersen
 
PDF
Learning chef
byJonathan Carrillo
 
PPTX
Supermondays: Jenkins CI lightning talk
byMichael Peacock
 
PPTX
Selenium Automation at Incapsula
byadamcarmi
 
PPTX
Jenkins CI presentation
byJonathan Holloway
 
PDF
Automation Testing
byRomSoft SRL
 
PDF
Automated android testing using jenkins ci
bysveinungkb
 
PDF
.Net OSS Ci & CD with Jenkins - JUC ISRAEL 2013
byTikal Knowledge
 
PDF
Hacking on WildFly 9
byVirtual JBoss User Group
 
PDF
Testing as a container
byIrfan Ahmad
 
PDF
Codecoon - A technical Case Study
byMichael Lihs
 
PDF
Docker Tooling for Eclipse
byMax Andersen
 
PPTX
Hooking Docker With Selenium
bySujith Vakathanam
 
PDF
Automated Deployment with Capistrano
bySumit Chhetri
 
PPTX
vodQA(Pune) 2018 - Docker in Testing
byvodQA
 
PPTX
Infrastructure as Code
bySascha Möllering
 
PPTX
Vagrant and Chef on FOSSASIA 2014
byMichael Lihs
 
PPTX
selenium grid & docker
byŁukasz Rosłonek
 
Case study: JBoss Developer Studio, an IDE for Web, Mobile and Cloud applicat...
byMax Andersen
 
Hacking Jenkins
byMiro Cupak
 
OpenShift: Java EE in the clouds
byMax Andersen
 
Learning chef
byJonathan Carrillo
 
Supermondays: Jenkins CI lightning talk
byMichael Peacock
 
Selenium Automation at Incapsula
byadamcarmi
 
Jenkins CI presentation
byJonathan Holloway
 
Automation Testing
byRomSoft SRL
 
Automated android testing using jenkins ci
bysveinungkb
 
.Net OSS Ci & CD with Jenkins - JUC ISRAEL 2013
byTikal Knowledge
 
Hacking on WildFly 9
byVirtual JBoss User Group
 
Testing as a container
byIrfan Ahmad
 
Codecoon - A technical Case Study
byMichael Lihs
 
Docker Tooling for Eclipse
byMax Andersen
 
Hooking Docker With Selenium
bySujith Vakathanam
 
Automated Deployment with Capistrano
bySumit Chhetri
 
vodQA(Pune) 2018 - Docker in Testing
byvodQA
 
Infrastructure as Code
bySascha Möllering
 
Vagrant and Chef on FOSSASIA 2014
byMichael Lihs
 
selenium grid & docker
byŁukasz Rosłonek
 

Similar to Continuous Updating with VersionEye at code.talks 2014

PDF
Continuous Updating
byRobert Reiz
 
PDF
Api Days Berlin - Continuous Updating
byRobert Reiz
 
PPTX
Continuous Integration & the Release Maturity Model
bycPrime | Project Management | Agile | Consulting | Staffing | Training
 
PDF
VersionEye for PHP User Group Berlin
byRobert Reiz
 
PDF
SQL Server DevOps Jumpstart
byOri Donner
 
PDF
Continuous integration (eng)
byAnatoliy Okhotnikov
 
PDF
Continuous Delivery Overview
byWill Iverson
 
PPTX
DBmaestro's State of the Database Continuous Delivery Survey- Findings Revealed
byDBmaestro - Database DevOps
 
PPT
INTRODUCTION TO SOFTWARE ENGINEERING
byPreeti Mishra
 
PPTX
Subversion and bug tracking
byAmira Elsayed Ismail
 
PDF
Continuous delivery @wcap 5-09-2013
byDavid Funaro
 
PDF
How To Become a Software Engineer
byYaroslav Bunyak
 
PPTX
Interview preparation testing
byMallikarjuna G D
 
PDF
Continuous Testing
byjaredrrichardson
 
PDF
Continuous Delivery in the Enterprise
byMichael Medin
 
PPTX
Maven, Archiva, Subversion and Team City
byBoy Tech
 
PDF
Continuous Delivery at Oracle Database Insights
byMichael Medin
 
PDF
Don't Suck at Building Stuff - Mykel Alvis at Puppet Camp Altanta
byPuppet
 
ODP
Passing The Joel Test In The PHP World
byLorna Mitchell
 
PPTX
Interview preparation data_science
byMallikarjuna G D
 
Continuous Updating
byRobert Reiz
 
Api Days Berlin - Continuous Updating
byRobert Reiz
 
Continuous Integration & the Release Maturity Model
bycPrime | Project Management | Agile | Consulting | Staffing | Training
 
VersionEye for PHP User Group Berlin
byRobert Reiz
 
SQL Server DevOps Jumpstart
byOri Donner
 
Continuous integration (eng)
byAnatoliy Okhotnikov
 
Continuous Delivery Overview
byWill Iverson
 
DBmaestro's State of the Database Continuous Delivery Survey- Findings Revealed
byDBmaestro - Database DevOps
 
INTRODUCTION TO SOFTWARE ENGINEERING
byPreeti Mishra
 
Subversion and bug tracking
byAmira Elsayed Ismail
 
Continuous delivery @wcap 5-09-2013
byDavid Funaro
 
How To Become a Software Engineer
byYaroslav Bunyak
 
Interview preparation testing
byMallikarjuna G D
 
Continuous Testing
byjaredrrichardson
 
Continuous Delivery in the Enterprise
byMichael Medin
 
Maven, Archiva, Subversion and Team City
byBoy Tech
 
Continuous Delivery at Oracle Database Insights
byMichael Medin
 
Don't Suck at Building Stuff - Mykel Alvis at Puppet Camp Altanta
byPuppet
 
Passing The Joel Test In The PHP World
byLorna Mitchell
 
Interview preparation data_science
byMallikarjuna G D
 

More from Robert Reiz

PDF
Silicon Valley vs. Berlin vs. Mannheim
byRobert Reiz
 
PDF
Go with Go
byRobert Reiz
 
PDF
Infrastructure Deployment with Docker & Ansible
byRobert Reiz
 
PDF
Dependencies and Licenses
byRobert Reiz
 
PDF
Docker Introduction
byRobert Reiz
 
PDF
Gruenden indercloud
byRobert Reiz
 
KEY
Silicon Valley
byRobert Reiz
 
PDF
Software Libraries And Numbers
byRobert Reiz
 
PDF
Ruby for Java Developers
byRobert Reiz
 
Silicon Valley vs. Berlin vs. Mannheim
byRobert Reiz
 
Go with Go
byRobert Reiz
 
Infrastructure Deployment with Docker & Ansible
byRobert Reiz
 
Dependencies and Licenses
byRobert Reiz
 
Docker Introduction
byRobert Reiz
 
Gruenden indercloud
byRobert Reiz
 
Silicon Valley
byRobert Reiz
 
Software Libraries And Numbers
byRobert Reiz
 
Ruby for Java Developers
byRobert Reiz
 

Recently uploaded

PPTX
Invisible protection against AI training - Poison Pill
byPoison Pill
 
PDF
A new Vision of Software Sustainability and its Engineering: Reflections and ...
byPatricia Lago
 
DOCX
Tableau Alternative Offers the Best Data Visualization Experience.docx
byVarsha Nayak
 
PDF
Combinatorial Interview Problems with Backtracking Solutions - From Imperativ...
byPhilip Schwarz
 
PDF
Comprehensive Windows protection with SiyanoAV Total Security — fast, smart, ...
byyogeshchauhanoffice
 
PDF
How Integrating Copilot and AI Agents in Microsoft Dynamics 365
byTechWize
 
PPTX
Performance Testing Transformation - LTB 2024
byAlexander Podelko
 
PDF
SWEBOK: the software engineering body of knowledge (SC25 Workshop Research So...
byHironori Washizaki
 
PDF
6 Hotel Booking Trends You Can’t Ignore in 2025.pdf
byHotelogix
 
PDF
DSD-INT 2025 Transport and Fate of Microplastics in Fluvial System (Rhine Riv...
byDeltares
 
DOCX
Top Cloud Migration Services for Digital Growth
byAppSquadz Software Pvt.ltd.
 
PDF
How to Pick the Perfect POS System for Your Hotel.pdf
byaxisrooms1
 
PDF
AI/ML Infra Meetup | SkyPilot: Open-source System to Scale AI across Clusters...
byAlluxio, Inc.
 
PDF
A Complete Guide to Salesforce for Education.pdf
byVALiNTRY360
 
PDF
2025_11_19 - OpenMetadata Community Meeting.pdf
byOpenMetadata
 
PDF
Connecting Strategy to Delivery Teams Using OnePlan.pdf
byOnePlan Solutions
 
PDF
The Ultimate Serial Port Detective – Baudowl
byCysinfo Cyber Security Community
 
PDF
Threat Hunting with Garuda: From Manual Analysis to AI-Driven Hunting By Monn...
byCysinfo Cyber Security Community
 
PDF
AI/ML Infra Meetup | Unlock the Future of Generative AI: TorchTitan's Latest ...
byAlluxio, Inc.
 
PPTX
Harnessing BUSY Software for Smart Business Management.pptx
byMoving Cloud
 
Invisible protection against AI training - Poison Pill
byPoison Pill
 
A new Vision of Software Sustainability and its Engineering: Reflections and ...
byPatricia Lago
 
Tableau Alternative Offers the Best Data Visualization Experience.docx
byVarsha Nayak
 
Combinatorial Interview Problems with Backtracking Solutions - From Imperativ...
byPhilip Schwarz
 
Comprehensive Windows protection with SiyanoAV Total Security — fast, smart, ...
byyogeshchauhanoffice
 
How Integrating Copilot and AI Agents in Microsoft Dynamics 365
byTechWize
 
Performance Testing Transformation - LTB 2024
byAlexander Podelko
 
SWEBOK: the software engineering body of knowledge (SC25 Workshop Research So...
byHironori Washizaki
 
6 Hotel Booking Trends You Can’t Ignore in 2025.pdf
byHotelogix
 
DSD-INT 2025 Transport and Fate of Microplastics in Fluvial System (Rhine Riv...
byDeltares
 
Top Cloud Migration Services for Digital Growth
byAppSquadz Software Pvt.ltd.
 
How to Pick the Perfect POS System for Your Hotel.pdf
byaxisrooms1
 
AI/ML Infra Meetup | SkyPilot: Open-source System to Scale AI across Clusters...
byAlluxio, Inc.
 
A Complete Guide to Salesforce for Education.pdf
byVALiNTRY360
 
2025_11_19 - OpenMetadata Community Meeting.pdf
byOpenMetadata
 
Connecting Strategy to Delivery Teams Using OnePlan.pdf
byOnePlan Solutions
 
The Ultimate Serial Port Detective – Baudowl
byCysinfo Cyber Security Community
 
Threat Hunting with Garuda: From Manual Analysis to AI-Driven Hunting By Monn...
byCysinfo Cyber Security Community
 
AI/ML Infra Meetup | Unlock the Future of Generative AI: TorchTitan's Latest ...
byAlluxio, Inc.
 
Harnessing BUSY Software for Smart Business Management.pptx
byMoving Cloud
 

Continuous Updating with VersionEye at code.talks 2014