The first newsletter of the year, with posts on the evolution of DAST, the struggles with adopting automated testing and team topologies, as well as technical posts on the new version of Go, Tekton pipelines and PostgreSQL.

StackHawk sponsors Devops Weekly

DAST is Dead! Long Live DAST! Dynamic API Security Testing is evolving.
https://www.stackhawk.com/blog/long-live-dast-evolution-of-dynamic-api-security-testing/

News

A thorough post on the challenges of adopting automated testing practices.
https://vaidik.in/engineering-transformations-adopting-automated-testing/

A good opinion piece on security not being special, when compared to other disciplines - and the problems caused by security teams assuming it is.
https://kellyshortridge.com/blog/posts/cybersecurity-isnt-special/

If you’ve ever run into a problem that’s come down to time in computer systems then this is a good post for you.
https://brooker.co.za/blog/2023/11/27/about-time.html

Speeding up steps in a build process typically has a compounding effect on productivity. This post covers speeding up container builds in Tekton pipelines.
https://cd.foundation/blog/2023/10/12/speed-up-container-image-builds-tekton-pipelines/

A recap of the four team types from the Team Topologies book and why it’s a useful model for designing and building software organisations.
https://itrevolution.com/articles/four-team-types/

PostgreSQL has a huge range of extensions, allowing it to support a wide range of related use cases. pg_bm25 provides a real time search engine akin to ElasticSearch, all running within PostgreSQL.
https://www.i-programmer.info/news/84-database/16836-elasticsearch-search-capabilities-baked-into-postgresql.html

A useful run down of the changes in the upcoming Go 1.22 release, including interactive examples.
https://antonz.org/go-1-22/

Tools

Loco is a new framework for building applications in Rust, heavily inspired by Ruby on Rails.
https://loco.rs/
https://github.com/loco-rs/loco