A study from the North Carolina State University discovered that projects which are using open source libraries are updated 60% more often when using automatic updates via pull requests. The base of the study are 7,470 repositories on GitHub. This blog post is a summary of the most important facts and highlights of the methods, challenges and tools when it comes to use of automation for reaching a higher security level while using open source libraries.
There are 3 main facts why open source updates are a pain for developers
Developers are always busy and doing updates is no fun
Our CEO Manuel spoke at the IPC 2017 in Munich about DevSecOps automation. We took a look around and picked the two other security related sessions which struck our eyes.
Dip Your Toes in the Sea of Security - by James Titcumb
Automatic updates have been discussed since years already. The pro and con of letting Drupal update itself are discussed in different Drupal.org issues queues. It was not a big surprise that Dries mentioned automatic Drupal core updates as part of the strategic roadmap of Drupal in his Driesnote at DrupalCon Vienna 2017.
With the end of September, DrupalCon Vienna is also coming closer and we can't wait to welcome you to our booth #S08. As a Silver sponsor of the event, we'll have the chance to present continuous update management to you on site. But - we also can't wait to learn a lot from other agencies and attendees! At DrupalCon there's always a chance to learn something new, be it a whole new approach or a connecting piece of unidentified issues - by asking but most of all by listening.
Manuel, our CEO, and I spent our last Thursday and Friday on the European Drupal Business Days in Frankfurt, Germany. The event was the third of its sort, attracting CEOs, Marketing Managers and other influencer. As the event title might tell in advance, it was a business and marketing tailored session schedule throughout.
After a kicking Keynote from Jeffrey aka Jam, Manuel just jumped on the “sell value, not Drupal code” train with his session “recurring revenue in the Drupal business”. Sure, we all know the power of "content first" but do we really adjust our thoughts and steps to this mantra? I don't think so. Value entails revenue. Not the other way around.
Let’s see where to start first. There will be a lot of “first” today in this post, that’s really exciting and shows that 2017 started quite encouraging. The Splash Awards took place yesterday in Hamburg - it’s the first time that Germany hosted this Drupal event. The first Splash Awards ever were organized by the Dutch Drupal Foundation in the Netherlands back in 2014 (thank you for encouraging all other countries!).
Our CEO Manuel and Joe, Marcel and Serkan from our team visited the last Drupal event of this year in our calendar: DrupalCamp Munich alias #dugmuc. It's been a pleasure to support this event as Silver Sponsor! With the 4th of December, we closed the Drupal season with great “Days”, “Camps” and “Cons” in 2016.
Dublin, 27. Sept. 2016. “Describe the DrupalCon in just one word!” - “EXCITING!”
First of all, I want to thank everyone who made my first DrupalCon this awesome and extra special!
Our whole team enjoyed a week full of new experiences, great sessions and - of course - old and new friends! The place, Dublin, was perfect to “seal” a new friendship or strengthen an old one with a good morning coffee (thanks to Commerce Guys by actualys and Mailchimp, the two coffee break sponsors!) or a good cold Guinness (I tried to remember the bar names, but actually I guess I sealed a lot of new friendships..).