How-To 2 min read

No Secret Left Behind: Detecting Custom Secrets on GitHub

Your custom secrets are likely some of the most critical to protect. This post outlines how you can up-level your scanning with a simple regular expression pattern added to the Secret Scanner skill, which is not covered by your Git provider scans, like GitHub's secret scanning.

No Secret Left Behind: Detecting Custom Secrets on GitHub

Your custom secrets are likely some of the most critical to protect. This post outlines how you can up-level your scanning with a simple regular expression pattern added to the Secret Scanner skill, which is not covered by your Git provider scans, like GitHub's secret scanning.
DevOps 13 min read

Comparing GitHub Actions and Atomist Skills

We compare and contrast GitHub Actions with Atomist Skills, showing how Atomist Skills are a quicker, easier, and more convenient way to automate a larger variety of development tasks.

Comparing GitHub Actions and Atomist Skills

We compare and contrast GitHub Actions with Atomist Skills, showing how Atomist Skills are a quicker, easier, and more convenient way to automate a larger variety of development tasks.
DevOps 3 min read

Continuous npm-audit: Keep your code safe and stay sane

Security starts at home, and using `npm audit` as part of your local development process is highly recommended. This post will address the importance of making your audits automatic and how to package up the fixes in tidy pull requests — you'll keep your codebase safer while staying sane.

Continuous npm-audit: Keep your code safe and stay sane

Security starts at home, and using `npm audit` as part of your local development process is highly recommended. This post will address the importance of making your audits automatic and how to package up the fixes in tidy pull requests — you'll keep your codebase safer while staying sane.
Skills 3 min read

Don't leak 'em (your secrets)

Don't risk letting credentials and sensitive information sit in your codebase for the taking. You need an in-depth defense strategy to keep all your secrets under wraps. In this post, we outline a few ideas and examples.

Don't leak 'em (your secrets)

Don't risk letting credentials and sensitive information sit in your codebase for the taking. You need an in-depth defense strategy to keep all your secrets under wraps. In this post, we outline a few ideas and examples.
DevOps 12 min read

Kubernetes, ingress-nginx, cert-manager & external-dns

Learn how to combine Kubernetes pods, services, and ingresses with ingress-nginx, cert-manager, and external-dns to provide a complete solution for securely making your services available on the Internet.

Kubernetes, ingress-nginx, cert-manager & external-dns

Learn how to combine Kubernetes pods, services, and ingresses with ingress-nginx, cert-manager, and external-dns to provide a complete solution for securely making your services available on the Internet.
Skills 4 min read

Consistent Clojure Formatting

We're big supporters of cljfmt; it's our go-to Clojure formatting tool. Every so often, an unformatted commit manages to slip through. For an additional layer of formatting support, we've built an automation that will catch any unformatted commits and fix them. Read this post to see how it works.

Consistent Clojure Formatting

We're big supporters of cljfmt; it's our go-to Clojure formatting tool. Every so often, an unformatted commit manages to slip through. For an additional layer of formatting support, we've built an automation that will catch any unformatted commits and fix them. Read this post to see how it works.