Software Engineering Daily

Java is a write once run anywhere programming language. The way you do that is you use the javac compiler and compile the source files down to the class files. Those class files can run on any system in interpreted mode. But those class files that are run in interpreted mode, they are not machine code specific. To get that code to run fast you need to turn that into optimized machine code and that’s what the JIT compiler does. The open JDK contains its JIT compiler called Hotspot. Azul is a company that specializes in Java for the enterprise. It has the largest Java engineering team after Oracle. John Ceccarelli is the Senior Director of Product Management at Azul Systems responsible for Azul Platform Prime which is their hyper optimized build of OpenJDK. In this episode we explore the fundamentals of compilers. We also discuss Azul's Cloud Native Compiler, the programs that are suitable for the Cloud Native Compiler and the Deployment model of CNC. Sponsorship inquiries: [email protected] Nissan: Visit https://NissanUSA.com to learn more. Privacy Dynamics: Sign up for a free account today at https://privacydynamics.io/sedaily.

Although we like to think about ML workflows as straight line narratives from experiment to training to production, and then monitoring, the reality for large companies is that all the steps are happening at one time in concert with other models, with shifting data and sometimes misaligned key feature inputs. Moreover regulated firms are required to track all the models, the changes, and the impacts of those changes For compliance. Enter explainability supported by model monitoring, far from sleepy monitoring of changes and anomalies. Today's ML monitoring and performance management requires the ability to identify changes and alert the right people, the ability to assist in diagnosing issues, to create what if scenarios, and the ability to pop models back into production in real time with proper governance. Fiddler is a startup focused on enterprise model performance management. They are tackling the unique challenges of building in-house stable and secure MLOps systems at scale. Today we are interviewing Krishna Gade about trusting AI, the technical challenges of ML monitoring and the real world problem statements beyond compliance that explainability can address. Sponsorship inquiries: [email protected] AZUL:Say goodbye to latency lag: https://download Azul Platform Prime for free. Nissan: Visit https://NissanUSA.com to learn more. Privacy Dynamics: Sign up for a free account today at https://privacydynamics.io/sedaily.

In this episode we talk with Varun Badhwar, Founder and CEO of Endor Labs.

Show Host: Jordi Mon Companys Guest: Sam Alba

As applications grow in size and complexity, and as they increasingly move to microservice architectures, it becomes harder for individual developers to perform end-to-end tests of an entire application stack. Connecting development services to production services is off limits. Test environments are limited to automated tests. Staging environments are woefully inadequate with the amount of data available for their use. Testing large and complex applications is becoming harder and harder. Speedscale provides developers a solution to this problem. Speedscale assists in developing and testing applications by recreating real world traffic loads in test and development environments, essentially bringing the data quality of production into the exploratory world of development. Matthew LeRay is the CTO and co-founder of Speedscale, and he's our guest today. Sponsorship inquiries: [email protected]

Silicon Valley has many investors and Venture Capital firms, but most are not trying to solve hard technical problems. Engineering Capital partners with companies that are taking a technical risk. These are the companies who have some innovation where there is a doubt on whether it can even be built. Ideally, the market for this innovation exists, but nobody has bothered to build it yet, or nobody has been able to build it yet. In this episode, We sat down with Ashmeet Sidana, Founder and Chief Engineer of Engineering Capital. Sponsorship inquiries: [email protected] Masterworks: Sign up at https://masterworks.com/sedaily Privacy Dynamics: Sign up for a free account today at https://privacydynamics.io/sedaily. Datadog: Visit https://softwareengineeringdaily.com/datadog to get started.

We do it every day. We search on the internet for some information. Many ask, why is that easy? And yet doing the same thing at my company is hard sometimes, not even possible. And when you do get the data, it's unclear where it's from or the degree you can trust it or use it. In a highly regulated firm, there's even more pressure to select the best approved version of the information. Enter the data catalog. Enterprise Data Catalogs are essential for searching for data in an organization. Moreover, their creation, maintenance, and design tap into the most fundamental theories of the philosophy of language and the nature of creating knowledge. Today we are interviewing architect and author. Ole Olesen-Bagneux, who is finishing his first O'Reilly published book called Enterprise Data Catalogs. Today, he will explain what a data catalog is, the different ways computer scientists and information scientists think about searching for data versus searching in data, and how thinking about archiving data for a hundred years can help you create the best data catalog for your business today. Sponsorship inquiries: [email protected]

Data anonymisation is an ever more important problem with many pitfalls, and the legal context requires more and more companies to find a solution to it. In this episode, we talk to John Craft from Privacy Dynamics, who offer data anonymisation as a service. Privacy Dynamics is powering a world where ethics, data insights and personalized technology can all co-exist to support business growth and customer privacy simultaneously. John talks about the different use-cases, technologies, requirements, and challenges he and his team faced throughout Privacy Dynamics' journey so far, and what might be to come. Sponsorship inquiries: [email protected]

Fintechs and traditional finance firms want to help their small business customers replace disorganized competing manual processes and multiple data sources with a single unified set of services and data. They could do that. They could more easily offer quicker decisions, better customer experience, and even get more first time customers founded in 2017. Codat wants to be that universal API that can connect financial firms to the platforms their small business customers use. Codat seeks to create a single flow and view for the bus. Small businesses, many accounting, banking, and commerce systems. That goal requires specialized approaches to authorization, data normalization, and availability. It also unlocks capabilities that small businesses can't usually access, like real time risk scoring and predictive analytics. Today we are interviewing Jason Dryhurst-Smith, head of engineering and employee one at Codat, he's an engineer who started in firmware and embedded systems. He has, uh, years of general development experiences, but now focuses primarily on platform engineering and building codat's full engineering team. Sponsorship inquiries: [email protected] AWS Insiders: Click on https://link.chtbl.com/awsinsiders?sid=podcast.cloudengineering to get in on the fun. Privacy Dynamics: Sign up for a free account today at https://privacydynamics.io/sedaily. Merge: check out Merge today at https://www.merge.dev/daily Redhat: check them out by clicking the link: https://link.chtbl.com/codecomments?sid=podcast.cloudengineering Nissan: Visit https://NissanUSA.com to learn more.

OpenSSL is a free, open-source cryptographic library that provides secure communications over computer networks. It is widely used to implement the secure socket layer (SSL) and transport layer security (TLS) protocols, which are the basis for secure, encrypted connections on the internet. On Oct 25th, the OpenSSL project informed its users of a critical vulnerability that affects the 3.0 and later versions of the OpenSSL component. In this episode we sat down with Ilkka Turunen, Ilkka is Sonatype’s Field CTO, we discussed a wide range of topics including Shodan, SBOMs, Software Supply Chain and others. Sponsorship inquiries: [email protected] Privacy Dynamics: Sign up for a free account today at https://privacydynamics.io/sedaily. AWS Insiders: Click on https://link.chtbl.com/awsinsiders?sid=podcast.cloudengineering to get in on the fun. Redhat: Check them out by clicking the link: https://link.chtbl.com/codecomments?sid=podcast.cloudengineering

Comma is a startup aimed at solving self-driving cars. A lot of the new cars in the market have built-in stock Advanced driver assistance systems. Comma takes this system to the next level with Openpilot. Openpilot is an open-source driver assistance system. Currently, with features like Adaptive Cruise Control (ACC), Automated Lane Centering (ALC), Forward Collision Warning (FCW), and Lane Departure Warning (LDW), openpilot is one of the most state-of-the-art solutions in the self-driving space. The Comma Three device is designed to live in your car, and purpose built to run openpilot. In this episode we speak to George Hotz, President of Comma and now an intern at Twitter. Sponsorship inquiries: [email protected] Flatiron School: Start today for free at https://flatironsdevelopment.com/products/fuse Redhat: check them out by clicking the link: https://link.chtbl.com/codecomments?sid=podcast.cloudengineering Merge: check out Merge today at https://www.merge.dev/daily AWS Insiders: Click on https://link.chtbl.com/awsinsiders?sid=podcast.cloudengineering to get in on the fun Wix: Head over to https://Wix.com/Partners and reimagine what your agency can accomplish.

Monolithic relational databases are the traditional foundation of financial core ledger systems. Nevertheless, the process of building and operating mission critical financial ledgers on these databases, and implementing homegrown accounting models, is a journey fraught with engineering challenges. Twisp has set out to rethink the underlying technology for financial ledger systems by combining the operational and scaling characteristics of a distributed database, the correctness guarantees offered by relational databases, with pre-built accounting primitives, while fully leveraging the modern cloud. Twisp systems are repeatable, autoscaling, fully managed, and a boon to developer productivity. In this episode, we speak to Michael Parsons, co-founder & CTO of Twisp. To learn more about Twisp and get access to a sandbox ledger, go to: www.twisp.com/

Java Applications became the go-to preference of most developers because of the write-once-run-anywhere advantage it gave over other languages. And it didn't take much time for Java to become the language for the enterprise. Consequently, most enterprises are still running legacy Java Monoliths on their infrastructure. Breaking up a monolith is not an easy process–nor is it something that every company should do just because they have a monolith. In some cases, a monolith is just fine. But sometimes, you do need to decompose a monolith as the complexity of the monolith grows and leads to longer release cycles or scalability issues. Breaking down into microservices is a natural way to shift legacy applications to the cloud. vFunction is an artificial intelligence platform that assesses, analyzes, helps you design microservices and then automatically creates those microservices for you. So it's an end-to-end platform from analysis to the actual creation of the code of those microservices with their respective APIs. While vFunction started with Java, they are expanding these capabilities to other platforms as well. Moti Rafalin who is the CEO of vFunction and Amir Rapson who is the CTO of vFunction join us today. Sponsorship inquiries: [email protected] AWS Insiders: Click on https://link.chtbl.com/awsinsiders?sid=podcast.cloudengineering to get in on the fun. Redhat: check them out by clicking the link: https://link.chtbl.com/codecomments?sid=podcast.cloudengineering Privacy Dynamics: Sign up for a free account today at https://privacydynamics.io/sedaily.

When Web Assembly was created it was supposed to be a compile target, where you could compile your favorite programming language and then execute it inside of a web browser. This made it possible for developers to choose a programming language like C++ for compute intensive applications. Fermyon is taking Web Assembly to the cloud. With Fermyon Cloud deploying and managing cloud-native WebAssembly applications becomes a breeze. Matt Butcher is the CEO at Fermyon Technologies and he joins us today. Sponsorship inquiries: [email protected] Privacy Dynamics: Sign up for a free account today at https://privacydynamics.io/sedaily. DataSet: Start today at https://www.dataset.com/sed/ Work OS: To learn more and get started, go to https://softwareengineeringdaily.com/workos

If you are a company with a large pool of physical servers, and compute resources sitting in the data center, and you want to use them efficiently, one way to do that would be to virtualize them. Then you can use those smaller virtual compute resources to run whatever workloads you need. VMware is a company that's known for virtualization. It's also the creator of Software Defined Data Center. In 2019, VMware acquired Heptio, this acquisition gave VMware the know-how to go full-scale on Kubernetes. Joe Beda and Craig McLuckie, one of the original creators of Kubernetes working at Heptio, also joined VMware as part of this acquisition. What followed this was VMware Tanzu, a division within VMware tasked to work on modern applications. VMware Tanzu is a modular, cloud-native application platform. It allows you to build, deliver, and operate cloud-native apps in a multi-cloud world, it also protects you from Vendor lock-in. Betty Junod is VP of Product Marketing at VMware and joins us today. Get 25% on all Linux Foundation Trainings and Certifications https://training.linuxfoundation.org/ use code "SDT2022NovThx" valid only till November Sponsorship inquiries: [email protected] Redhat: check them out by clicking the link: https://link.chtbl.com/codecomments?sid=podcast.cloudengineering Work OS: To learn more and get started, go to https://softwareengineeringdaily.com/workos Flatiron School: Start today for free at https://flatironsdevelopment.com/products/fuse

With an increasing number of data breaches impacting customer trust, prioritizing data privacy and security is more important than ever. However, as you layer on security and privacy, the overall complexity of a system grows and the data gets harder to use. There’s a constant push and pull between securing and locking down the data but still being able to use it. Skyflow Data Privacy Vault isolates, secures, stores, and tightly controls access to manage and use sensitive data. With secure workflow support, developers are able to securely execute custom code, de-identity and transform data, and securely share data all within the secure compliant environment of the vault balancing data security and usability. Amruta Moktali, the Chief Product Officer of Skyflow, joins the show to discuss Skyflow’s Data Privacy Vault APIs, running secure workflows, and the engineering behind the technology. Sponsorship inquiries: [email protected] Work OS: To learn more and get started, go to https://softwareengineeringdaily.com/workos DataSet: Start today at https://www.dataset.com/sed/ Wix: Head over to https://Wix.com/Partners and reimagine what your agency can accomplish. AWS Insiders: Click on https://link.chtbl.com/awsinsiders?sid=podcast.cloudengineering to get in on the fun AZUL:Say goodbye to latency lag: https://download Azul Platform Prime for free.

The complexity of the software infrastructure has been increasing as companies have migrated towards kubernetes, containers, microservices and other distributed systems. However the tools around observability and monitoring have not seen much improvement. These tools are usually managed by teams distributed across different locations and time zones, which results in siloing of knowledge of your infrastructure across individuals. Reasoning about downtime involves bringing together all the pieces. While the teams can communicate through slack, screenshots and google docs, this has been still far from the kind of collaboration tools that other teams have enjoyed for example Figma is used by Design teams and Notion is used by product teams. Fiberplane is a collaborative notebook platform for DevOps and SRE. It puts a programmable SRE environment at the fingertips of engineers, redefining collaboration for infrastructure teams. Fiberplane offers collaborative investigation and documentation tools with real data, all hosted within a technical open-source notebook format. Micha Hernandez van Leuffen is the founder and CEO of Fiberplane and he joins us today. Sponsorship inquiries: [email protected] Flatiron School: Start today for free at https://flatironsdevelopment.com/products/fuse Privacy Dynamics: Sign up for a free account today at https://privacydynamics.io/sedaily. DataSet: Start today at https://www.dataset.com/sed/ Apple Card: https://www.apple.com/apple-card/ Work OS: To learn more and get started, go to https://softwareengineeringdaily.com/workos

The Presto/Trino project makes distributed querying easier across a variety of data sources. As the need for machine learning and other high volume data applications has increased, the need for support, tooling, and cloud infrastructure for Presto/Trino has increased with it. Starburst helps your teams run fast queries on any data source. With Starburst you get a single point of access to your data, no matter where it's stored and it supports high concurrency. Whether it's fast SQL queries on your data lake or faster queries across multiple datasets, Starburst helps your teams run analytics anywhere. Justin Borgman is the CEO of Starburst, and he joins us today. Sponsorship inquiries: [email protected] DataSet: Start today at https://www.dataset.com/sed/ Privacy Dynamics: Sign up for a free account today at https://privacydynamics.io/sedaily. AZUL:Say goodbye to latency lag: https://download Azul Platform Prime for free. Merge: check out Merge today at https://www.merge.dev/daily Flatiron School: Start today for free at https://flatironsdevelopment.com/products/fuse

Building and managing data-intensive applications has traditionally been costly and complex, and has placed an operational burden on developers to maintain as their organization scales. Todays’ developers, data scientists, and data engineers need a streamlined, single cloud data platform for building applications, pipelines, and machine learning models — without having to move or copy their data. Platforms like the Snowflake Data Cloud provides a unified tool for developers to easily build data applications with Python using Streamlit’s open source framework and Snowflake’s Native Application Framework, gain a streamlined architecture that natively supports users’ programming languages of choice including Java, Scala, SQL, and now Python with Snowpark, store and use transactional and analytical data together with Unistore, and more. Torsten Grabs is the Director of Product Management at Snowflake focused on Data Lake, Data Pipelines, and Data Science. He joins the show to dive into how Snowflake is disrupting application development, and how developers today can eliminate complexity with the Data Cloud. Sponsorship inquiries: [email protected] Privacy Dynamics: Sign up for a free account today at https://privacydynamics.io/sedaily. Work OS: To learn more and get started, go to https://softwareengineeringdaily.com/workos NORD VPN: Grab your EXCLUSIVE NordVPN deal by going to https://nordvpn.com/sed . Merge: check out Merge today at https://www.merge.dev/daily Flatiron School: Start today for free at https://flatironsdevelopment.com/products/fuse

Companies are rapidly moving to the cloud, and modern businesses are operating faster with a myriad of SaaS tools in their day-to-day operations. Provisioning resources has been easier than ever. WIth a few clicks you can spin up resources in any part of the world. While we all love the cloud because of the scalability it offers, assets can quickly pile up with every user, bucket, repository and resource. Keeping resources secure and compliant grows in complexity with every cloud service and SaaS application utilized. Resmo is a continuous cloud and SaaS asset visibility, security and compliance solution. DevOps, DevSecOps, and security teams can leverage Resmo to automatically audit resources, mitigate risks and answer security and compliance questions in minutes. Serhat Can is the co-founder at Resmo and he joins us today. Sponsorship inquiries: [email protected] AZUL:Say goodbye to latency lag: https://download Azul Platform Prime for free. Flatiron School: Start today for free at https://flatironsdevelopment.com/products/fuse Interval: Start building for free at https://Interval.com today University of Cincinnati: Go to https://Online.UC.edu to learn more about the MSIT program.

Mikko Hypponen is the CRO of WithSecure and a principal research Officer at F-Secure. In this interview with our host, Jordi Monn, he discusses the eventful and rocky early start of his software engineering career, hybrid warfare, reverse engineering, recent exploits like Log for Shell and heart bleed and more. This episode is packed with valuable career and life lessons on dealing with the unexpected. As well as fascinating stories from the frontiers of cyber security and geopolitics, many of which are discussed in more depth in Mikko's recent book. If it's smart, it's vulnerable. Sponsorship inquiries: [email protected]

React is the most widely used front-end framework. It pioneered the component model and influenced the software design of all modern web applications. React is not an opinionated tool, allowing engineers to shape their applications in a way that fits the problems at hand. However, this freedom of expression can be very confusing to newcomers. Alex Kondov is a principal engineer who has worked with React ever since its inception. In his book, Tao of React, he shares a collection of fundamental architectural principles that aim to help front-end engineers build better web applications. Sponsorship inquiries: [email protected] University of Cincinnati: Go to https://Online.UC.edu to learn more about the MSIT program. Flatiron School: Start today for free at https://flatironsdevelopment.com/products/fuse Work OS: To learn more and get started, go to https://softwareengineeringdaily.com/workos Monte Carlo: Block off your calendar and register for the virtual conference today at https://ImpactSummit.com/2022

Observability is a critical aspect of modern digital applications. You can't operate an application at scale that satisfies your customer needs without understanding how the application is currently performing, whether it's understanding the current operating needs of the application, adjusting resource usage, detecting issues before they become serious or solving an ongoing technical issue as it's going on. Thundra is a performance monitoring company that specializes in application, performance monitoring, infrastructure monitoring, and most notably serverless monitoring. Berkay Mollamustafaoglu is the CEO of Thundra and he's our guest. AZUL:Say goodbye to latency lag: https://download Azul Platform Prime for free. INTERVAL: Start building for free at https://Interval.com today Monte Carlo: Block off your calendar and register for the virtual conference today at https://ImpactSummit.com/2022 Work OS: To learn more and get started, go to https://softwareengineeringdaily.com/workos

The classical computing power has doubled every two years - a pattern known as Moore’s law. However, the ability to fabricate more and more transistors in a computer chip is approaching saturation as we are approaching atomic dimensions. Quantum Computing is a promising technology to take us beyond this. A quantum Computer uses qubits to run multi-dimensional quantum algorithms. Quantum Computers are faster and can solve problems that are beyond the reach of even the most powerful classical supercomputers. Dmitri Maslov is the Chief Software Architect at IBM’s Quantum Computing Division. He joins the show to discuss how Quantum Computing is different from Classical Computing. How to get started in this space, How would Quantum Computing impact current encryption standards, we also went through practical applications, quantum supremacy and quantum algorithms. Sponsorship inquiries: [email protected] AZUL:Say goodbye to latency lag: https://download Azul Platform Prime for free. Work OS: To learn more and get started, go to https://softwareengineeringdaily.com/workos NORD VPN: Grab your EXCLUSIVE NordVPN deal by going to https://nordvpn.com/sed . Flatiron School: Start today for free at https://flatironsdevelopment.com/products/fuse

The Java Virtual Machine is an abstract machine that makes it possible for you to write Java code once and run it across multiple devices and operating system types. While you can use the OpenJDK it comes with various issues like Security Vulnerabilities and compliance. Azul is a company that specializes in Java for the enterprise. It has the largest Java engineering team after Oracle. John Ceccarelli is the Senior Director of Product Management at Azul Systems responsible for Azul Platform Prime which is their hyper optimized build of OpenJDK.He joins the show to discuss Azul's optimization of OpenJDK, specifically the JIT compiler and the garbage collector. We also discussed the different use cases like the financial sector and other infrastructure areas like Cassandra and Kafka. Sponsorship inquiries: [email protected] Datadog: Start monitoring your applications with a free trial and Datadog will send you a free Tshirt! softwareengineeringdily.com/datadog Work OS: To learn more and get started, go to https://softwareengineeringdaily.com/workos Monte Carlo: Block off your calendar and register for the virtual conference today at https://ImpactSummit.com/2022 Apple Card: https://www.apple.com/apple-card/

Passwordless Authentication is a technique in which users are given access to an environment without entering a password or answering a security question. This allows users to access an environment securely and protects organizations against attack vectors like Keylogging, Brute force methods, and phishing. The company SuperTokens provides secure login and session management for your apps in an open-core model. In this episode, we interviewed Advait Ruia and Rishabh Poddar from SuperTokens. We discussed Open source authentication, security considerations for Authentication, recipes for Authentication, and the future of passwords. Sponsorship inquiries: [email protected] AZUL:Say goodbye to latency lag: https://download Azul Platform Prime for free. Work OS: To learn more and get started, go to https://softwareengineeringdaily.com/workos Monte Carlo: Block off your calendar and register for the virtual conference today at https://ImpactSummit.com/2022 Flatiron School: Start today for free at https://flatironsdevelopment.com/products/fuse

Monolithic relational databases are the traditional foundation of financial core ledger systems. Nevertheless, the process of building and operating mission-critical ledgers to track and reconcile payments and money movement is complex. Twisp is rethinking core accounting and financial orchestration on a cloud-native ledger system, so developers can stop re-invented the ledger and focus on building products their customer’s love. When you provision an instance of the Twisp accounting core, you get a transactions ledger for double-entry accounting, a chart of accounts to represent any economic activity, and layered balances for tracking settled, pending, and planned funds flows. All of this is accessible via a straightforward GraphQL API. In this episode, we speak with Jarred Ward, Co-founder & CEO of Twisp. Previously, Jarred was principal engineer at Simple, the first neobank, and later led the team building Open Platform at BBVA, one of the first banking-as-a-service products. To learn more about Twisp and get access to a sandbox ledger, go to: https://www.twisp.com/ Sponsorship inquiries: [email protected] AZUL:Say goodbye to latency lag: download Azul Platform Prime for free. Work OS: To learn more and get started, go to https://softwareengineeringdaily.com/workos Monte Carlo: Block off your calendar and register for the virtual conference today at https://ImpactSummit.com/2022 Apple Card: https://www.apple.com/apple-card/ University of Cincinnati: Go to https://Online.UC.edu to learn more about the MSIT program.

PostgreSQL is a free and open-source relational database management system. Postgres-based databases are widespread and are used by a variety of organizations, from Reddit to the International Space Station, and Postgres databases are a common offering from cloud providers such as AWS, Alibaba Cloud, and Heroku. Neon is a serverless open-source alternative to AWS Aurora Postgres. It separates storage and compute and substitutes the PostgreSQL storage layer by redistributing data across a cluster of nodes. Today, we spoke with Nikita Shamgunov of Neon. We discuss how Neon scales Postgres, how it saves cost and the engineering that makes it possible. Sponsorship inquiries: [email protected] University of Cincinnati: Go to https://Online.UC.edu to learn more about the MSIT program. Datadog: Visit https://softwareengineeringdaily.com/datadog to get started. Monte Carlo: Block off your calendar and register for the virtual conference today at https://ImpactSummit.com/2022 Apple Card: https://www.apple.com/apple-card/ Keeper Security: Get started by visiting https://www.keepersecurity.com/

Today, we spoke with Daniel Situnayake of Edge Impulse. We discussed AI, machine learning, edge devices, TinyML and AI tool chain. Sponsorship inquiries: [email protected] Merge: check out Merge today at https://www.merge.dev/daily Apple Card: https://www.apple.com/apple-card/ Keeper Security: Get started by visiting https://www.keepersecurity.com/ Wix: Head over to https://Wix.com/Partners and reimagine what your agency can accomplish. Work OS: To learn more and get started, go to https://softwareengineeringdaily.com/workos

Today, we spoke with Toma Pujlak and Vedran Jukic of Codeanywhere. We discussed Cloud-based dev environments, Cloud-based IDEs, Infrastructure as code, Dev containers and Live collaboration. Sponsorship inquiries: [email protected] Apple Card: https://www.apple.com/apple-card/ Work OS: To learn more and get started, go to https://softwareengineeringdaily.com/workos AZUL:Say goodbye to latency lag: download Azul Platform Prime for free. Monte Carlo: Visit https://softwareengineeringdaily.com/montecarlodata to learn more. Cox Automotive: Visit https://coxautotech.com/ to find career opportunities at Cox.

The default configuration in most databases is meant for broad compatibility rather than performance. Database tuning is a process in which the configurations of a database are modified to achieve optimal performance. Databases have hundreds of configuration knobs that control various factors, such as the amount of memory to use for caches or how often the data is written to the storage. The problem with these knobs is that they are not standardized (i.e., two databases may have a different name for the same knob), not independent (i.e., changing one knob can impact others), and not universal (i.e., what works for one application may be suboptimal for another). In reality, information about the effects of the knobs typically comes only from (expensive) experience. OtterTune is automatic database tuning software that promises to overcome these problems. It uses machine learning to tune the configuration knobs of your database automatically to improve performance. In this episode, we interview Andy Pavlo. Andy is a Database Professor at Carnegie Mellon and Co-Founder of OtterTune. Sponsorship inquiries: [email protected] Work OS: To learn more and get started, go to https://softwareengineeringdaily.com/workos Apple Card: https://www.apple.com/apple-card/ Keeper Security: Get started by visiting https://www.keepersecurity.com/ Monte Carlo: Visit https://softwareengineeringdaily.com/montecarlodata to learn more.

Cloud computing provides tools, storage, servers, and software products through the internet. Securing these resources is a constant process for companies deploying new code to their cloud environments. It’s easy to overlook security flaws because company applications are very complex and many people work together to develop them. Wyze Labs, for example, had millions of users’ data stolen due to a mistake by a single employee. The company Bridgecrew is a cloud security platform helping to prevent mistakes like that from happening. Bridgecrew integrates into developer workloads to automatically find infrastructure errors in cloud accounts, workloads, and infrastructure as code. Their platform also monitors code reviews and build pipelines to prevent errors from being deployed into production. If an error is found then Bridgecrew’s software reverts that code back to its last known correct state. In today’s episode we talk with Guy Eisenkot, VP Product & Co-founder at Bridgecrew. Guy previously worked as a Principal Product Manager at RSA Security and as a Product Manager at Fortscale before that. We discuss Infrastructure as code, devsecops, cloud security, software supply chain and composition analysis. Sponsorship inquiries: [email protected] Work OS: To learn more and get started, go to https://softwareengineeringdaily.com/workos Snyk: Sign up for free today at https://snyk.co/sedaily Monte Carlo: Visit https://softwareengineeringdaily.com/montecarlodata to learn more. Rookout: Try it at https://rookout.com

Originally published on January 1, 2022. Charlie Gerard is an incredibly productive developer. In addition to being the author of Practical Machine Learning in JavaScript, her website charliegerard.dev has a long list of really interesting side projects exploring the intersection of human computer interaction, computer vision, interactivity, and art. In this episode we touch on some of these projects and broadly explore how practical it is to bring interesting HCI concepts into one’s work. Sponsorship inquiries: [email protected]

Software engineering can be a surprisingly grueling career. It is both physically and mentally demanding to sit in front of a screen for hours on end producing code. Andy Johns is our guest in this episode. Andy previously worked on growth at Facebook, Twitter, and Quora as an early employee. He’s also an investor in Robinhood, Webflow, and Reforge. Andy joins the show to discuss Mental health in tech, burnout and work/life balance. Check out the show notes to learn more about Andy’s work, specifically his substack blog on Mental Health. Show Notes Andy’s Substack Andy’s Linkedin Sponsorship inquiries: [email protected] Work OS: To learn more and get started, go to https://softwareengineeringdaily.com/workos Monte Carlo: Visit https://softwareengineeringdaily.com/montecarlodata to learn more. Apple Card: https://www.apple.com/apple-card/

Data analytics technology and tools have seen significant improvements in the past decade. But, it can still take weeks to prototype, build and deploy new transformations and deployments, usually requiring considerable engineering resources. Plus, most data isn't real-time. Instead, most of it is still batch-processed. Tinybird Analytics provides an easy way to ingest and query large amounts of data in real-time, as well as to automatically create an API to consume those queries. This makes it easy to build fast and scalable applications that query your data; no backend needed! In this episode, we interview Jorge Sancha, Founder and CEO of Tinybird. Sponsorship inquiries: [email protected] Rookout: Try it at https://rookout.com Work OS: To learn more and get started, go to https://softwareengineeringdaily.com/workos Monte Carlo: Visit https://softwareengineeringdaily.com/montecarlodata to learn more. Keeper Security: Get started by visiting https://www.keepersecurity.com/

Application security is usually done with a set of tools and services known as SIEM - Security Information and Event Management. SIEM tools usually try to provide visibility into an organization’s security systems, as well as event log management and security event notifications. The company Panther takes traditional SIEM security a step further. Panther processes and retains all of your security data with cloud-first workflows, identifies and alerts in real-time suspicious activity, enables building a high-fidelity alerting pipeline with Python, version control, unit tests, and CI/CD, and provides a security data lake where raw logs are structured for security at scale. In this episode we talk with Jack Naglieri, Founder and CEO at Panther Labs. Sponsorship inquiries: [email protected]

Maintaining availability in a modern digital application is critical to keeping your application operating and available and to keep meeting your customers growing demands. There are many observability platforms out there and certainly Prometheus is a popular open source solution for cloud native companies yet operating an observability platform, costs money, and all of the platforms are highly data intensive. Managing costs and data retention policies is critical to keeping your application operating healthy and operating available. Chronosphere is the leading observability platform for scaling cloud native applications. Focusing on managing costs by managing data. Martin Mao is the co-founder and CEO of Chronosphere and he is my guest today . Sponsorship inquiries: [email protected] Google DORA: Take the survey at https://cloud.google.com/devops LINKERD: Visit https://softwareengineeringdaily.com/linkerd Permit.io: Get started at https://Permit.io Datadog: Get started today with a free trial at https://softwareengineeringdaily.com/datadog

As software engineering teams start to build products that become more and more mature. It becomes necessary to be able to debug complex issues with tooling that enables understanding of the full scenario. This can come from application scenarios where APIs are running multiple versions, where users are using your app from multiple devices, device types, OS versions, browser versions, things like that. You may also run into issues with network connectivity or a functionality that is intermittent based on sort of use cases and user interactions. And for this sort of scenario, we've come to start to use a class of tools for debugging called observability tools, observability tools, help developers to understand the full scenario of an application by digging into the data that is being used and recorded and can help to pipe data across various , solutions that are used within enterprises to read and discover what's going on from analytics. One such tool, one product used for this is Rookout . And we are here today, chatting with Liran Haimovitch . We'll talk a little bit about the product and his history, as well as the use case for out and sort of where the team is headed. Sponsorship inquiries: [email protected] Work OS: To learn more and get started, go to https://softwareengineeringdaily.com/workos Google DORA: Take the survey at https://cloud.google.com/devops Permit.io: Get started at https://Permit.io Snyk: Sign up for free today at https://snyk.co/sedaily Keeper Security: Get started by visiting https://www.keepersecurity.com/

Web infrastructure has evolved from individual servers to shared hosting services to virtual machines and virtual functions. The future of the internet however is looking toward a much more distributed computation model blockchain technology is central to the future of this modern internet of blockchains are still in their infancy and the most people blockchains are intimately tied to crypto currencies but the use of blockchain is substantially larger than that of crypto. Auctions provide a model for distributed computation that allows no centralized ownership and no centralized control of large scale applications. Celestia is developing blockchain technology that enables these modern distributed applications. Nader dabit is it in developer relations at Celestia and is an expert in blockchain technology ,and he joins us today. Sponsorship inquiries: [email protected] Rookout: Try it at https://rookout.com Keeper Security: Get started by visiting https://www.keepersecurity.com/ Wix: Head over to https://Wix.com/Partners and reimagine what your agency can accomplish. Cox Automotive: Visit https://coxautotech.com/ to find career opportunities at Cox. Google DORA: Take the survey at https://cloud.google.com/devops

Lee Atchison spent seven years at Amazon working in retail, software distribution, and Amazon Web Services. He then moved to New Relic, where he has spent four years scaling the company’s internal architecture. From his decade of experience at fast-growing web technology companies, Lee has written the book Architecting for Scale, from O’Reilly. As an application scales, it becomes significantly more complicated while at the same time receiving more traffic. The intersection of these two problems leads to a variety of discussions around availability, risk management, and microservices. Sponsorship inquiries: [email protected]

Data is becoming a bank’s biggest asset. These complex enterprises have a huge opportunity ahead - to transform themselves to become a trusted hub of a much broader data ecosystem that goes beyond the financial industry and helps to form a new class of cross-industry experience architectures that are scalable and transparent. The data physics that is needed for such emerging systems runs on consent and privacy preservation rather than black-boxed data lakes. A foundation for making this happen lies in the ability to use distributed, heterogenous data effectively and transform it into experiences that are relevant to the customer. These new experience architectures are following design patterns that are more participatory and consent-based than blindly personalized. In this episode, we deep dive into the context-aware Flybits platform with founder & CEO, Hossein Rahnama, alongside their CTO, Petar Kramaric, and VP of Engineering, Justin Lam. Sponsorship inquiries: [email protected] Rookout: Try it at https://rookout.com Permit.io: Get started at https://Permit.io Google DORA: Take the survey at https://cloud.google.com/devops Datadog: Get started today with a free trial at https://softwareengineeringdaily.com/datadog

Enabling authorization policies across disparate cloud-native environments such as containers, microservices and modern application delivery infrastructure is complex and can be a roadblock for software engineering teams. Open Policy Agent, or OPA, is an open, declarative, policy-as-code approach to authorization that reduces security and compliance burden for engineering teams. Business context is translated into declarative policy statements. These policy statements are compiled into code and deployed as agents that can be injected into any process, such as an API gateway, Kubernetes provisioning service, public cloud access controls, or continuous delivery automation service. Styra created and contributed OPA to the Cloud Native Computing Foundation where it is a graduated project with over 130M downloads to date and is used by large companies. Styra's enterprise commercial offering, Declarative Authorization Service (DAS), is specifically designed for OPA and includes the ability to author policies, preview impacts of new policies, and document the history of old policies, all through a single view. Tim Hinricks, CTO and founder of Styra, joins the show today to discuss how to make authorization policies easier to author, distribute, and monitor. One note of disclosure to be aware of: Styra is a portfolio company of Capital One Ventures, the strategic investing arm of Capital One. Views and questions expressed in this podcast and related material are my own, or those of my guest, and do not reflect the views of Capital One Ventures or its respective affiliates. Sponsorship inquiries: [email protected] Google DORA: Take the survey at https://cloud.google.com/devops LINKERD: Visit https://softwareengineeringdaily.com/linkerd Permit.io: Get started at https://Permit.io Datadog: Get started today with a free trial at https://softwareengineeringdaily.com/datadog

Cloud native applications utilizing microservice architectures has grown into one of the most popular application architectural patterns in recent years. The value of leveraging dynamic cloud resources, along with the flexibility and scalability of microservice architectures, creates a strong paradigm that's hard to miss. The strong adoption of Kubernetes has strengthened the pattern enormously. The unique structure and requirements of Kubernetes has led to an increased need for Kubernetes specific monitoring and diagnostics tools. There has been a large number of companies who have jumped at this opportunity. One of those companies is Komodor, a Kubernetes diagnostics platform that focuses on Kubernetes troubleshooting for the entire Kubernetes stack. Itiel Shwartz is the co-founder and CTO of Komodor, and he joins us today. Sponsorship inquiries: [email protected] Datadog: Visit https:// softwareengineeringdaily.com/datadog to get started. Permit.io: Get started at https://Permit.io Google DORA: Take the survey at https://cloud.google.com/devops LINKERD: Visit https://softwareengineeringdaily.com/linkerd Keeper Security: Get started by visiting https://www.keepersecurity.com/

Permissions are Hard! And they are becoming harder as we move more into the Cloud-native ecosystem. If we go back in time to the point where it was just a single monolith that you were building on your own. You'll probably have a framework to manage the permissions for you. But when you are working with distributed microservices, especially if you are a polyglot, you can't use those solutions anymore. So you end up having to sprinkle a bit of access control into every little microservice and component that you build. In addition, with the scale of modern applications, it's no longer just your services, there are a lot of third-party services that you have to connect to. Think about things like authentication, billing, analytics and other stuff that you combine from eternal services into what you are building. Permit.io empowers developers to bake in permissions and access control into any product in minutes and takes away the pain of constantly rebuilding them. Or Weis is the co-founder and CEO of Permit.io and joins us today. Sponsorship inquiries: [email protected] Cloud Bees: Visit https://www.cloudbees.com/ Wix: Head over to https://Wix.com/Partners and reimagine what your agency can accomplish. Google DORA: Take the survey at https://cloud.google.com/devops Datadog: Visit https://softwareengineeringdaily.com/datadog to get started. Keeper Security: Get started by visiting https://www.keepersecurity.com/

Companies that gather data about their users have an ethical obligation and legal responsibility to protect the personally identifiable information in their dataset. Ideally, developers working on a software application wouldn’t need access to production data. Yet without high-quality example data, many technology groups stumble on avoidable problems. Organizations need a solution to protect privacy while simultaneously preserving aspects of the data which are important. Tonic is automating data synthesis to advance data privacy. Their solution gives your production-like data for development and analytical purposes without compromising on data quality or privacy. In this episode, We interview Tonic’s CEO Ian Coe, and Head of Engineering Adam Kamor. Sponsorship inquiries: [email protected] Keeper Security: Get started by visiting https://www.keepersecurity.com/ Google DORA: Take the survey at https://cloud.google.com/devops Rookout: Try it at https://rookout.com LINKERD: Visit https://softwareengineeringdaily.com/linkerd Merge: check out Merge today at https://www.merge.dev/daily

Couchbase is a distributed NoSQL cloud database. Since its creation, Couchbase has expanded into edge computing, application services, and most recently, a database-as-a-service called Capella. Couchbase started as an in-memory cache and needed to be rearchitected to be a persistent storage system. In this episode, We interviewed Ravi Mayuram, SVP Products, and Engineering at Couchbase. To learn more about Couchbase, check out couchbase.com/sedaily. Sponsorship inquiries: [email protected] Datadog: Visit https://softwareengineeringdaily.com/datadog to get started. New Relic: Sign up at https://newrelic.com/sedaily Wix: Head over to https://Wix.com/Partners and reimagine what your agency can accomplish. Merge: check out Merge today at https://www.merge.dev/daily Google DORA: Take the survey at https://cloud.google.com/devops .