Contact Us
SaaS Log InXRay Login
devops

DevOps is getting code released faster than ever. But security is lagging behind

Nastel Technologies®
May 11, 2021

DevSecOps tools are enabling developers to release new code faster than ever – yet testing, code review and disagreements over who is in charge of security remain sticking points within organizational teams, according to GitLab’s latest industry survey.

GitLab’s fifth annual DevSecOps survey quizzed 4,300 software professionals on their use of DevOps tools and to uncover how software teams had changed as the industry matured.

It found that the forced adoption of remote work in 2020 had been a “catalyst” for the uptake of DevOps technologies, with teams increasingly integrating automation into their software development cycles to speed up software releases and give precious time back to developers.

Just over 84% of developers reported they were releasing code faster than before, with 57% reporting that code was being released twice as fast – a significant jump from last year’s 35%.

Nearly one in five (19%) said code was going out the door 10x faster. When quizzed on what had changed in their processes to speed things up, 21% of survey respondents said they’ve added source code management to their DevOps practices (up from 15% last year), while almost 18% added continuous integration (CI) and 13% added continuous delivery (CD). Nearly 12% said adding a DevOps platform had sped up the process, while just over 10% had started using automated testing.

Almost 25% of teams reported using full test automation – more than double 2020’s figure – while  28% of respondents felt they were “at least half-way” to full automation. Around 34% of survey takers said developers test some of their own code (up from 31% last year) and 32% said automated testing happened as code was written, up from 25% in 2020.

When it came to deployment frequency, almost 59% of survey respondents said their teams deployed code multiple times a day, once a day, or once every few days. This was almost identical to the response to GitLab’s 2020 survey. All told, 28% of developers deployed ‘continuously’ – defined as multiple times per day – while 15% deployed once a week, 10% once a month, and under seven percent once every few months.

It found that the forced adoption of remote work in 2020 had been a “catalyst” for the uptake of DevOps technologies, with teams increasingly integrating automation into their software development cycles to speed up software releases and give precious time back to developers.

Just over 84% of developers reported they were releasing code faster than before, with 57% reporting that code was being released twice as fast – a significant jump from last year’s 35%.

Nearly one in five (19%) said code was going out the door 10x faster. When quizzed on what had changed in their processes to speed things up, 21% of survey respondents said they’ve added source code management to their DevOps practices (up from 15% last year), while almost 18% added continuous integration (CI) and 13% added continuous delivery (CD). Nearly 12% said adding a DevOps platform had sped up the process, while just over 10% had started using automated testing.

Almost 25% of teams reported using full test automation – more than double 2020’s figure – while  28% of respondents felt they were “at least half-way” to full automation. Around 34% of survey takers said developers test some of their own code (up from 31% last year) and 32% said automated testing happened as code was written, up from 25% in 2020.

When it came to deployment frequency, almost 59% of survey respondents said their teams deployed code multiple times a day, once a day, or once every few days. This was almost identical to the response to GitLab’s 2020 survey. All told, 28% of developers deployed ‘continuously’ – defined as multiple times per day – while 15% deployed once a week, 10% once a month, and under seven percent once every few months.

It found that the forced adoption of remote work in 2020 had been a “catalyst” for the uptake of DevOps technologies, with teams increasingly integrating automation into their software development cycles to speed up software releases and give precious time back to developers.

Just over 84% of developers reported they were releasing code faster than before, with 57% reporting that code was being released twice as fast – a significant jump from last year’s 35%.

Nearly one in five (19%) said code was going out the door 10x faster. When quizzed on what had changed in their processes to speed things up, 21% of survey respondents said they’ve added source code management to their DevOps practices (up from 15% last year), while almost 18% added continuous integration (CI) and 13% added continuous delivery (CD). Nearly 12% said adding a DevOps platform had sped up the process, while just over 10% had started using automated testing.

Almost 25% of teams reported using full test automation – more than double 2020’s figure – while  28% of respondents felt they were “at least half-way” to full automation. Around 34% of survey takers said developers test some of their own code (up from 31% last year) and 32% said automated testing happened as code was written, up from 25% in 2020.

When it came to deployment frequency, almost 59% of survey respondents said their teams deployed code multiple times a day, once a day, or once every few days. This was almost identical to the response to GitLab’s 2020 survey. All told, 28% of developers deployed ‘continuously’ – defined as multiple times per day – while 15% deployed once a week, 10% once a month, and under seven percent once every few months.

Johnathan Hunt, vice president of security at GitLab, said the results indicated that more work was needed to organize and coordinate responsibility between security, developer and operations teams.

“While the industry has continued integrating security into development, and organizations are beginning to improve security overall, our research shows that a more clear delineation of responsibilities and adoption of new tools is required to completely shift security left,” said Hunt.

“In the future, we hope to see security teams find more ways to lay out clear expectations for the other members of their organization, and continue to adopt innovative technologies for scanning and code reviews to improve speed and quality of development cycles.”

GitLabs’ 2021 survey also assessed the uptake of DevOps technologies amid the shift to remote work, and how this had impacted the skills and tools they deemed important for the future.

Thirty percent of developers said understanding of AI and machine learning would be crucial to their future careers, compared to 22% in 2020. Soft skills like communication and collaboration were deemed important and were cited by 18% of respondents, along with “cutting-edge” programming languages. This was followed by GitOps at 14%, and IoT/blockchain at 11%.

Respondents also said they wanted to know more about cloud/cloud native, cross-platform development, low-code, data science, Python, and cryptography.

“This year’s Global DevSecOps Survey shows that 2020 was a catalyst for DevOps maturation,” said Eric Johnson, CTO at GitLab.

“Teams worldwide worked to streamline development cycles and deliver faster release time than ever before, all while adjusting to remote work and shifting priorities to meet the high demands of last year. We believe we will see improvements in testing as more teams adopt tools to automate the parts of DevSecOps that have continuously caused cycles to slow down.”

This article originally appeared on msn.com, to read the full article and see the images, click here.

Nastel Technologies helps companies achieve flawless delivery of digital services powered by middleware. Nastel delivers Middleware Management, Monitoring, Tracking, and Analytics to detect anomalies, accelerate decisions, and enable customers to constantly innovate. To answer business-centric questions and provide actionable guidance for decision-makers, Nastel’s Navigator X fuses:

  • Advanced predictive anomaly detection, Bayesian Classification, and other machine learning algorithms
  • Raw information handling and analytics speed
  • End-to-end business transaction tracking that spans technologies, tiers, and organizations
  • Intuitive, easy-to-use data visualizations and dashboards

Nastel Technologies is the global leader in Integration Infrastructure Management (i2M). It helps companies achieve flawless delivery of digital services powered by integration infrastructure by delivering tools for Middleware Management, Monitoring, Tracking, and Analytics to detect anomalies, accelerate decisions, and enable customers to constantly innovate, to answer business-centric questions, and provide actionable guidance for decision-makers. It is particularly focused on IBM MQ, Apache Kafka, Solace, TIBCO EMS, ACE/IIB and also supports RabbitMQ, ActiveMQ, Blockchain, IOT, DataPower, MFT, IBM Cloud Pak for Integration and many more.

 

The Nastel i2M Platform provides:

Comments

Write a comment
Leave a Reply
Your email address will not be published. Required fields are marked *
Comment * This field is required!
First name * This field is required!
Email * Please, enter valid email address!

Schedule your Meeting

 


Schedule your Meeting


Subscribe

Schedule a Meeting to Learn More