Improve Code Quality – Integrate SonarLint with Visual Studio 2019
What is SonarLint? SonarLint is a product from SonarSource. SonarSource is one of the leading companies that builds product for code quality and security.SonarLint is an IDE extension that helps detect and fix code quality issues at runtime. It can also be used to...
Tutorial: EF Core: Building an ASP.NET MVC Application using the Code-First Approach
Entity Framework Core (EF Core): Code-First over Database-First
What is Entity Framework Core (EF Core)? You probably have already heard of Entity Framework before, perhaps in the context of plain ASP.NET MVC where it was also often used. Entity Framework Core is really the core, let's say the next version of Entity Framework, the...
.NET Core: Time to Move On from .NET Framework
The question is not 'why' but 'when'somebody smart .NET Core is the future of .NET. Its not me who is saying this, its Microsoft, I just completely agree with it! There's no point in pondering ".NET core vs .NET Framework" anymore, that time has long gone. It's high...
Getting and Using .gitignore
One of the most useful thing in the world of source control is .gitignore file. It might seem to be trivial to a lot of seasoned developers but try explaining the concept to a new developer or someone who is new to git, github or TFVC. I wanted to share a few links...
Using Blockchain in Online Gaming
Blockchain technology is rapidly and creatively upending the world of online gaming. In a nutshell, a blockchain is a public database of cryptographically secured information.All the information recorded on a blockchain are continuously shared and reconciled across...
Understanding Azure DevOps Deployment Patterns
The need of different Deployment Patterns How do we deploy a software into a production environment? What are the different ways to deploy? How do I continuously deploy and meet the various deployment requirements? What are the different deployment patterns? These are...
Tutorial: AZURE DEVOPS PIPELINE: Accessing SECRETS from AZURE KEY VAULT
Continuing from my last post, I am going to describe how a pipeline can access secrets from Azure Key Vault. I am going to explain the process through a demo. We would be covering the following points in this post - Create an ASP.NET Core web application and display...
Managing Secrets Through AZURE KEY VAULT And Azure DevOps Pipeline
In this post, I am going to talk about how can you manage secrets in an Azure environment. In other words, managing secrets with Azure Key Vault and accessing them through DevOps pipeline. Secrets and DevOps Pipeline When you use Azure DevOps Pipelines to deploy aps,...
Open Source Security: Integrating WhiteSource Bolt with Azure DevOps Pipeline
Open Source and Relevance of Open Source Security Open-source refers to any software or libraries with publicly accessible source code. It is generally free to use and developed and maintained through community collaboration. By having access to a program’s source...
Continuous Code Quality: Integrating SonarCloud with Azure DevOps Pipeline
Continuous Code Quality refers to incorporating code quality and code security analysis as part of your continuous integration process. Steps like this play a significant role in "shifting security left" in your software development process and creating a robust...
Add Twitter Feed to Your WordPress Site
Recently I added a twitter feed to this website. You can see it on the right side of this page! I had to do some digging to find the configuration items to achieve it. I am going to describe what those things were and how can we find the required information.Though I...
Azure DevOps: Azure DevOps Demo Generator
Today I am going to talk about a very cool thing about Azure DevOps - The Azure DevOps Demo Generator. This is especially going to help people who are starting up with Azure DevOps! Let's say you are working on a demo or you are trying to educate yourself or others or...
DevSecOps Quick Bytes: Software Composition Analysis (SCA)
Let me start by saying that the name Software Composition Analysis is very misleading in terms of what it actually is, at least from my perspective. Although the name might sound like Software Composition Analysis (SCA) covers all aspect of source code, it in fact...
DevSecOps Quick Bytes: Security Vulnerabilities
Of course security is one of the most important aspects of DevSecOps, it takes 1/3rd of the term 'DevSecOps'! Today we are going to talk about security vulnerabilities. The question that immediately comes to mind is what are the different types of security...
