Software Engineering Daily

Fintechs and traditional finance firms want to help their small business customers replace disorganized competing manual processes and multiple data sources with a single unified set of services and data. They could do that. They could more easily offer quicker decisions, better customer experience, and even get more first time customers founded in 2017. Codat wants to be that universal API that can connect financial firms to the platforms their small business customers use. Codat seeks to create a single flow and view for the bus. Small businesses, many accounting, banking, and commerce systems. That goal requires specialized approaches to authorization, data normalization, and availability. It also unlocks capabilities that small businesses can't usually access, like real time risk scoring and predictive analytics. Today we are interviewing Jason Dryhurst-Smith, head of engineering and employee one at Codat, he's an engineer who started in firmware and embedded systems. He has, uh, years of general development experiences, but now focuses primarily on platform engineering and building codat's full engineering team. Sponsorship inquiries: [email protected] AWS Insiders: Click on https://link.chtbl.com/awsinsiders?sid=podcast.cloudengineering to get in on the fun. Privacy Dynamics: Sign up for a free account today at https://privacydynamics.io/sedaily. Merge: check out Merge today at https://www.merge.dev/daily Redhat: check them out by clicking the link: https://link.chtbl.com/codecomments?sid=podcast.cloudengineering Nissan: Visit https://NissanUSA.com to learn more.

OpenSSL is a free, open-source cryptographic library that provides secure communications over computer networks. It is widely used to implement the secure socket layer (SSL) and transport layer security (TLS) protocols, which are the basis for secure, encrypted connections on the internet. On Oct 25th, the OpenSSL project informed its users of a critical vulnerability that affects the 3.0 and later versions of the OpenSSL component. In this episode we sat down with Ilkka Turunen, Ilkka is Sonatype’s Field CTO, we discussed a wide range of topics including Shodan, SBOMs, Software Supply Chain and others. Sponsorship inquiries: [email protected] Privacy Dynamics: Sign up for a free account today at https://privacydynamics.io/sedaily. AWS Insiders: Click on https://link.chtbl.com/awsinsiders?sid=podcast.cloudengineering to get in on the fun. Redhat: Check them out by clicking the link: https://link.chtbl.com/codecomments?sid=podcast.cloudengineering

Comma is a startup aimed at solving self-driving cars. A lot of the new cars in the market have built-in stock Advanced driver assistance systems. Comma takes this system to the next level with Openpilot. Openpilot is an open-source driver assistance system. Currently, with features like Adaptive Cruise Control (ACC), Automated Lane Centering (ALC), Forward Collision Warning (FCW), and Lane Departure Warning (LDW), openpilot is one of the most state-of-the-art solutions in the self-driving space. The Comma Three device is designed to live in your car, and purpose built to run openpilot. In this episode we speak to George Hotz, President of Comma and now an intern at Twitter. Sponsorship inquiries: [email protected] Flatiron School: Start today for free at https://flatironsdevelopment.com/products/fuse Redhat: check them out by clicking the link: https://link.chtbl.com/codecomments?sid=podcast.cloudengineering Merge: check out Merge today at https://www.merge.dev/daily AWS Insiders: Click on https://link.chtbl.com/awsinsiders?sid=podcast.cloudengineering to get in on the fun Wix: Head over to https://Wix.com/Partners and reimagine what your agency can accomplish.

Monolithic relational databases are the traditional foundation of financial core ledger systems. Nevertheless, the process of building and operating mission critical financial ledgers on these databases, and implementing homegrown accounting models, is a journey fraught with engineering challenges. Twisp has set out to rethink the underlying technology for financial ledger systems by combining the operational and scaling characteristics of a distributed database, the correctness guarantees offered by relational databases, with pre-built accounting primitives, while fully leveraging the modern cloud. Twisp systems are repeatable, autoscaling, fully managed, and a boon to developer productivity. In this episode, we speak to Michael Parsons, co-founder & CTO of Twisp. To learn more about Twisp and get access to a sandbox ledger, go to: www.twisp.com/

Java Applications became the go-to preference of most developers because of the write-once-run-anywhere advantage it gave over other languages. And it didn't take much time for Java to become the language for the enterprise. Consequently, most enterprises are still running legacy Java Monoliths on their infrastructure. Breaking up a monolith is not an easy process–nor is it something that every company should do just because they have a monolith. In some cases, a monolith is just fine. But sometimes, you do need to decompose a monolith as the complexity of the monolith grows and leads to longer release cycles or scalability issues. Breaking down into microservices is a natural way to shift legacy applications to the cloud. vFunction is an artificial intelligence platform that assesses, analyzes, helps you design microservices and then automatically creates those microservices for you. So it's an end-to-end platform from analysis to the actual creation of the code of those microservices with their respective APIs. While vFunction started with Java, they are expanding these capabilities to other platforms as well. Moti Rafalin who is the CEO of vFunction and Amir Rapson who is the CTO of vFunction join us today. Sponsorship inquiries: [email protected] AWS Insiders: Click on https://link.chtbl.com/awsinsiders?sid=podcast.cloudengineering to get in on the fun. Redhat: check them out by clicking the link: https://link.chtbl.com/codecomments?sid=podcast.cloudengineering Privacy Dynamics: Sign up for a free account today at https://privacydynamics.io/sedaily.

When Web Assembly was created it was supposed to be a compile target, where you could compile your favorite programming language and then execute it inside of a web browser. This made it possible for developers to choose a programming language like C++ for compute intensive applications. Fermyon is taking Web Assembly to the cloud. With Fermyon Cloud deploying and managing cloud-native WebAssembly applications becomes a breeze. Matt Butcher is the CEO at Fermyon Technologies and he joins us today. Sponsorship inquiries: [email protected] Privacy Dynamics: Sign up for a free account today at https://privacydynamics.io/sedaily. DataSet: Start today at https://www.dataset.com/sed/ Work OS: To learn more and get started, go to https://softwareengineeringdaily.com/workos

If you are a company with a large pool of physical servers, and compute resources sitting in the data center, and you want to use them efficiently, one way to do that would be to virtualize them. Then you can use those smaller virtual compute resources to run whatever workloads you need. VMware is a company that's known for virtualization. It's also the creator of Software Defined Data Center. In 2019, VMware acquired Heptio, this acquisition gave VMware the know-how to go full-scale on Kubernetes. Joe Beda and Craig McLuckie, one of the original creators of Kubernetes working at Heptio, also joined VMware as part of this acquisition. What followed this was VMware Tanzu, a division within VMware tasked to work on modern applications. VMware Tanzu is a modular, cloud-native application platform. It allows you to build, deliver, and operate cloud-native apps in a multi-cloud world, it also protects you from Vendor lock-in. Betty Junod is VP of Product Marketing at VMware and joins us today. Get 25% on all Linux Foundation Trainings and Certifications https://training.linuxfoundation.org/ use code "SDT2022NovThx" valid only till November Sponsorship inquiries: [email protected] Redhat: check them out by clicking the link: https://link.chtbl.com/codecomments?sid=podcast.cloudengineering Work OS: To learn more and get started, go to https://softwareengineeringdaily.com/workos Flatiron School: Start today for free at https://flatironsdevelopment.com/products/fuse

With an increasing number of data breaches impacting customer trust, prioritizing data privacy and security is more important than ever. However, as you layer on security and privacy, the overall complexity of a system grows and the data gets harder to use. There’s a constant push and pull between securing and locking down the data but still being able to use it. Skyflow Data Privacy Vault isolates, secures, stores, and tightly controls access to manage and use sensitive data. With secure workflow support, developers are able to securely execute custom code, de-identity and transform data, and securely share data all within the secure compliant environment of the vault balancing data security and usability. Amruta Moktali, the Chief Product Officer of Skyflow, joins the show to discuss Skyflow’s Data Privacy Vault APIs, running secure workflows, and the engineering behind the technology. Sponsorship inquiries: [email protected] Work OS: To learn more and get started, go to https://softwareengineeringdaily.com/workos DataSet: Start today at https://www.dataset.com/sed/ Wix: Head over to https://Wix.com/Partners and reimagine what your agency can accomplish. AWS Insiders: Click on https://link.chtbl.com/awsinsiders?sid=podcast.cloudengineering to get in on the fun AZUL:Say goodbye to latency lag: https://download Azul Platform Prime for free.

The complexity of the software infrastructure has been increasing as companies have migrated towards kubernetes, containers, microservices and other distributed systems. However the tools around observability and monitoring have not seen much improvement. These tools are usually managed by teams distributed across different locations and time zones, which results in siloing of knowledge of your infrastructure across individuals. Reasoning about downtime involves bringing together all the pieces. While the teams can communicate through slack, screenshots and google docs, this has been still far from the kind of collaboration tools that other teams have enjoyed for example Figma is used by Design teams and Notion is used by product teams. Fiberplane is a collaborative notebook platform for DevOps and SRE. It puts a programmable SRE environment at the fingertips of engineers, redefining collaboration for infrastructure teams. Fiberplane offers collaborative investigation and documentation tools with real data, all hosted within a technical open-source notebook format. Micha Hernandez van Leuffen is the founder and CEO of Fiberplane and he joins us today. Sponsorship inquiries: [email protected] Flatiron School: Start today for free at https://flatironsdevelopment.com/products/fuse Privacy Dynamics: Sign up for a free account today at https://privacydynamics.io/sedaily. DataSet: Start today at https://www.dataset.com/sed/ Apple Card: https://www.apple.com/apple-card/ Work OS: To learn more and get started, go to https://softwareengineeringdaily.com/workos

The Presto/Trino project makes distributed querying easier across a variety of data sources. As the need for machine learning and other high volume data applications has increased, the need for support, tooling, and cloud infrastructure for Presto/Trino has increased with it. Starburst helps your teams run fast queries on any data source. With Starburst you get a single point of access to your data, no matter where it's stored and it supports high concurrency. Whether it's fast SQL queries on your data lake or faster queries across multiple datasets, Starburst helps your teams run analytics anywhere. Justin Borgman is the CEO of Starburst, and he joins us today. Sponsorship inquiries: [email protected] DataSet: Start today at https://www.dataset.com/sed/ Privacy Dynamics: Sign up for a free account today at https://privacydynamics.io/sedaily. AZUL:Say goodbye to latency lag: https://download Azul Platform Prime for free. Merge: check out Merge today at https://www.merge.dev/daily Flatiron School: Start today for free at https://flatironsdevelopment.com/products/fuse

Building and managing data-intensive applications has traditionally been costly and complex, and has placed an operational burden on developers to maintain as their organization scales. Todays’ developers, data scientists, and data engineers need a streamlined, single cloud data platform for building applications, pipelines, and machine learning models — without having to move or copy their data. Platforms like the Snowflake Data Cloud provides a unified tool for developers to easily build data applications with Python using Streamlit’s open source framework and Snowflake’s Native Application Framework, gain a streamlined architecture that natively supports users’ programming languages of choice including Java, Scala, SQL, and now Python with Snowpark, store and use transactional and analytical data together with Unistore, and more. Torsten Grabs is the Director of Product Management at Snowflake focused on Data Lake, Data Pipelines, and Data Science. He joins the show to dive into how Snowflake is disrupting application development, and how developers today can eliminate complexity with the Data Cloud. Sponsorship inquiries: [email protected] Privacy Dynamics: Sign up for a free account today at https://privacydynamics.io/sedaily. Work OS: To learn more and get started, go to https://softwareengineeringdaily.com/workos NORD VPN: Grab your EXCLUSIVE NordVPN deal by going to https://nordvpn.com/sed . Merge: check out Merge today at https://www.merge.dev/daily Flatiron School: Start today for free at https://flatironsdevelopment.com/products/fuse

Companies are rapidly moving to the cloud, and modern businesses are operating faster with a myriad of SaaS tools in their day-to-day operations. Provisioning resources has been easier than ever. WIth a few clicks you can spin up resources in any part of the world. While we all love the cloud because of the scalability it offers, assets can quickly pile up with every user, bucket, repository and resource. Keeping resources secure and compliant grows in complexity with every cloud service and SaaS application utilized. Resmo is a continuous cloud and SaaS asset visibility, security and compliance solution. DevOps, DevSecOps, and security teams can leverage Resmo to automatically audit resources, mitigate risks and answer security and compliance questions in minutes. Serhat Can is the co-founder at Resmo and he joins us today. Sponsorship inquiries: [email protected] AZUL:Say goodbye to latency lag: https://download Azul Platform Prime for free. Flatiron School: Start today for free at https://flatironsdevelopment.com/products/fuse Interval: Start building for free at https://Interval.com today University of Cincinnati: Go to https://Online.UC.edu to learn more about the MSIT program.

Mikko Hypponen is the CRO of WithSecure and a principal research Officer at F-Secure. In this interview with our host, Jordi Monn, he discusses the eventful and rocky early start of his software engineering career, hybrid warfare, reverse engineering, recent exploits like Log for Shell and heart bleed and more. This episode is packed with valuable career and life lessons on dealing with the unexpected. As well as fascinating stories from the frontiers of cyber security and geopolitics, many of which are discussed in more depth in Mikko's recent book. If it's smart, it's vulnerable. Sponsorship inquiries: [email protected]

React is the most widely used front-end framework. It pioneered the component model and influenced the software design of all modern web applications. React is not an opinionated tool, allowing engineers to shape their applications in a way that fits the problems at hand. However, this freedom of expression can be very confusing to newcomers. Alex Kondov is a principal engineer who has worked with React ever since its inception. In his book, Tao of React, he shares a collection of fundamental architectural principles that aim to help front-end engineers build better web applications. Sponsorship inquiries: [email protected] University of Cincinnati: Go to https://Online.UC.edu to learn more about the MSIT program. Flatiron School: Start today for free at https://flatironsdevelopment.com/products/fuse Work OS: To learn more and get started, go to https://softwareengineeringdaily.com/workos Monte Carlo: Block off your calendar and register for the virtual conference today at https://ImpactSummit.com/2022

Observability is a critical aspect of modern digital applications. You can't operate an application at scale that satisfies your customer needs without understanding how the application is currently performing, whether it's understanding the current operating needs of the application, adjusting resource usage, detecting issues before they become serious or solving an ongoing technical issue as it's going on. Thundra is a performance monitoring company that specializes in application, performance monitoring, infrastructure monitoring, and most notably serverless monitoring. Berkay Mollamustafaoglu is the CEO of Thundra and he's our guest. AZUL:Say goodbye to latency lag: https://download Azul Platform Prime for free. INTERVAL: Start building for free at https://Interval.com today Monte Carlo: Block off your calendar and register for the virtual conference today at https://ImpactSummit.com/2022 Work OS: To learn more and get started, go to https://softwareengineeringdaily.com/workos

The classical computing power has doubled every two years - a pattern known as Moore’s law. However, the ability to fabricate more and more transistors in a computer chip is approaching saturation as we are approaching atomic dimensions. Quantum Computing is a promising technology to take us beyond this. A quantum Computer uses qubits to run multi-dimensional quantum algorithms. Quantum Computers are faster and can solve problems that are beyond the reach of even the most powerful classical supercomputers. Dmitri Maslov is the Chief Software Architect at IBM’s Quantum Computing Division. He joins the show to discuss how Quantum Computing is different from Classical Computing. How to get started in this space, How would Quantum Computing impact current encryption standards, we also went through practical applications, quantum supremacy and quantum algorithms. Sponsorship inquiries: [email protected] AZUL:Say goodbye to latency lag: https://download Azul Platform Prime for free. Work OS: To learn more and get started, go to https://softwareengineeringdaily.com/workos NORD VPN: Grab your EXCLUSIVE NordVPN deal by going to https://nordvpn.com/sed . Flatiron School: Start today for free at https://flatironsdevelopment.com/products/fuse

The Java Virtual Machine is an abstract machine that makes it possible for you to write Java code once and run it across multiple devices and operating system types. While you can use the OpenJDK it comes with various issues like Security Vulnerabilities and compliance. Azul is a company that specializes in Java for the enterprise. It has the largest Java engineering team after Oracle. John Ceccarelli is the Senior Director of Product Management at Azul Systems responsible for Azul Platform Prime which is their hyper optimized build of OpenJDK.He joins the show to discuss Azul's optimization of OpenJDK, specifically the JIT compiler and the garbage collector. We also discussed the different use cases like the financial sector and other infrastructure areas like Cassandra and Kafka. Sponsorship inquiries: [email protected] Datadog: Start monitoring your applications with a free trial and Datadog will send you a free Tshirt! softwareengineeringdily.com/datadog Work OS: To learn more and get started, go to https://softwareengineeringdaily.com/workos Monte Carlo: Block off your calendar and register for the virtual conference today at https://ImpactSummit.com/2022 Apple Card: https://www.apple.com/apple-card/

Passwordless Authentication is a technique in which users are given access to an environment without entering a password or answering a security question. This allows users to access an environment securely and protects organizations against attack vectors like Keylogging, Brute force methods, and phishing. The company SuperTokens provides secure login and session management for your apps in an open-core model. In this episode, we interviewed Advait Ruia and Rishabh Poddar from SuperTokens. We discussed Open source authentication, security considerations for Authentication, recipes for Authentication, and the future of passwords. Sponsorship inquiries: [email protected] AZUL:Say goodbye to latency lag: https://download Azul Platform Prime for free. Work OS: To learn more and get started, go to https://softwareengineeringdaily.com/workos Monte Carlo: Block off your calendar and register for the virtual conference today at https://ImpactSummit.com/2022 Flatiron School: Start today for free at https://flatironsdevelopment.com/products/fuse

Monolithic relational databases are the traditional foundation of financial core ledger systems. Nevertheless, the process of building and operating mission-critical ledgers to track and reconcile payments and money movement is complex. Twisp is rethinking core accounting and financial orchestration on a cloud-native ledger system, so developers can stop re-invented the ledger and focus on building products their customer’s love. When you provision an instance of the Twisp accounting core, you get a transactions ledger for double-entry accounting, a chart of accounts to represent any economic activity, and layered balances for tracking settled, pending, and planned funds flows. All of this is accessible via a straightforward GraphQL API. In this episode, we speak with Jarred Ward, Co-founder & CEO of Twisp. Previously, Jarred was principal engineer at Simple, the first neobank, and later led the team building Open Platform at BBVA, one of the first banking-as-a-service products. To learn more about Twisp and get access to a sandbox ledger, go to: https://www.twisp.com/ Sponsorship inquiries: [email protected] AZUL:Say goodbye to latency lag: download Azul Platform Prime for free. Work OS: To learn more and get started, go to https://softwareengineeringdaily.com/workos Monte Carlo: Block off your calendar and register for the virtual conference today at https://ImpactSummit.com/2022 Apple Card: https://www.apple.com/apple-card/ University of Cincinnati: Go to https://Online.UC.edu to learn more about the MSIT program.

PostgreSQL is a free and open-source relational database management system. Postgres-based databases are widespread and are used by a variety of organizations, from Reddit to the International Space Station, and Postgres databases are a common offering from cloud providers such as AWS, Alibaba Cloud, and Heroku. Neon is a serverless open-source alternative to AWS Aurora Postgres. It separates storage and compute and substitutes the PostgreSQL storage layer by redistributing data across a cluster of nodes. Today, we spoke with Nikita Shamgunov of Neon. We discuss how Neon scales Postgres, how it saves cost and the engineering that makes it possible. Sponsorship inquiries: [email protected] University of Cincinnati: Go to https://Online.UC.edu to learn more about the MSIT program. Datadog: Visit https://softwareengineeringdaily.com/datadog to get started. Monte Carlo: Block off your calendar and register for the virtual conference today at https://ImpactSummit.com/2022 Apple Card: https://www.apple.com/apple-card/ Keeper Security: Get started by visiting https://www.keepersecurity.com/

Today, we spoke with Daniel Situnayake of Edge Impulse. We discussed AI, machine learning, edge devices, TinyML and AI tool chain. Sponsorship inquiries: [email protected] Merge: check out Merge today at https://www.merge.dev/daily Apple Card: https://www.apple.com/apple-card/ Keeper Security: Get started by visiting https://www.keepersecurity.com/ Wix: Head over to https://Wix.com/Partners and reimagine what your agency can accomplish. Work OS: To learn more and get started, go to https://softwareengineeringdaily.com/workos

Today, we spoke with Toma Pujlak and Vedran Jukic of Codeanywhere. We discussed Cloud-based dev environments, Cloud-based IDEs, Infrastructure as code, Dev containers and Live collaboration. Sponsorship inquiries: [email protected] Apple Card: https://www.apple.com/apple-card/ Work OS: To learn more and get started, go to https://softwareengineeringdaily.com/workos AZUL:Say goodbye to latency lag: download Azul Platform Prime for free. Monte Carlo: Visit https://softwareengineeringdaily.com/montecarlodata to learn more. Cox Automotive: Visit https://coxautotech.com/ to find career opportunities at Cox.

The default configuration in most databases is meant for broad compatibility rather than performance. Database tuning is a process in which the configurations of a database are modified to achieve optimal performance. Databases have hundreds of configuration knobs that control various factors, such as the amount of memory to use for caches or how often the data is written to the storage. The problem with these knobs is that they are not standardized (i.e., two databases may have a different name for the same knob), not independent (i.e., changing one knob can impact others), and not universal (i.e., what works for one application may be suboptimal for another). In reality, information about the effects of the knobs typically comes only from (expensive) experience. OtterTune is automatic database tuning software that promises to overcome these problems. It uses machine learning to tune the configuration knobs of your database automatically to improve performance. In this episode, we interview Andy Pavlo. Andy is a Database Professor at Carnegie Mellon and Co-Founder of OtterTune. Sponsorship inquiries: [email protected] Work OS: To learn more and get started, go to https://softwareengineeringdaily.com/workos Apple Card: https://www.apple.com/apple-card/ Keeper Security: Get started by visiting https://www.keepersecurity.com/ Monte Carlo: Visit https://softwareengineeringdaily.com/montecarlodata to learn more.

Cloud computing provides tools, storage, servers, and software products through the internet. Securing these resources is a constant process for companies deploying new code to their cloud environments. It’s easy to overlook security flaws because company applications are very complex and many people work together to develop them. Wyze Labs, for example, had millions of users’ data stolen due to a mistake by a single employee. The company Bridgecrew is a cloud security platform helping to prevent mistakes like that from happening. Bridgecrew integrates into developer workloads to automatically find infrastructure errors in cloud accounts, workloads, and infrastructure as code. Their platform also monitors code reviews and build pipelines to prevent errors from being deployed into production. If an error is found then Bridgecrew’s software reverts that code back to its last known correct state. In today’s episode we talk with Guy Eisenkot, VP Product & Co-founder at Bridgecrew. Guy previously worked as a Principal Product Manager at RSA Security and as a Product Manager at Fortscale before that. We discuss Infrastructure as code, devsecops, cloud security, software supply chain and composition analysis. Sponsorship inquiries: [email protected] Work OS: To learn more and get started, go to https://softwareengineeringdaily.com/workos Snyk: Sign up for free today at https://snyk.co/sedaily Monte Carlo: Visit https://softwareengineeringdaily.com/montecarlodata to learn more. Rookout: Try it at https://rookout.com

Originally published on January 1, 2022. Charlie Gerard is an incredibly productive developer. In addition to being the author of Practical Machine Learning in JavaScript, her website charliegerard.dev has a long list of really interesting side projects exploring the intersection of human computer interaction, computer vision, interactivity, and art. In this episode we touch on some of these projects and broadly explore how practical it is to bring interesting HCI concepts into one’s work. Sponsorship inquiries: [email protected]

Software engineering can be a surprisingly grueling career. It is both physically and mentally demanding to sit in front of a screen for hours on end producing code. Andy Johns is our guest in this episode. Andy previously worked on growth at Facebook, Twitter, and Quora as an early employee. He’s also an investor in Robinhood, Webflow, and Reforge. Andy joins the show to discuss Mental health in tech, burnout and work/life balance. Check out the show notes to learn more about Andy’s work, specifically his substack blog on Mental Health. Show Notes Andy’s Substack Andy’s Linkedin Sponsorship inquiries: [email protected] Work OS: To learn more and get started, go to https://softwareengineeringdaily.com/workos Monte Carlo: Visit https://softwareengineeringdaily.com/montecarlodata to learn more. Apple Card: https://www.apple.com/apple-card/

Data analytics technology and tools have seen significant improvements in the past decade. But, it can still take weeks to prototype, build and deploy new transformations and deployments, usually requiring considerable engineering resources. Plus, most data isn't real-time. Instead, most of it is still batch-processed. Tinybird Analytics provides an easy way to ingest and query large amounts of data in real-time, as well as to automatically create an API to consume those queries. This makes it easy to build fast and scalable applications that query your data; no backend needed! In this episode, we interview Jorge Sancha, Founder and CEO of Tinybird. Sponsorship inquiries: [email protected] Rookout: Try it at https://rookout.com Work OS: To learn more and get started, go to https://softwareengineeringdaily.com/workos Monte Carlo: Visit https://softwareengineeringdaily.com/montecarlodata to learn more. Keeper Security: Get started by visiting https://www.keepersecurity.com/

Application security is usually done with a set of tools and services known as SIEM - Security Information and Event Management. SIEM tools usually try to provide visibility into an organization’s security systems, as well as event log management and security event notifications. The company Panther takes traditional SIEM security a step further. Panther processes and retains all of your security data with cloud-first workflows, identifies and alerts in real-time suspicious activity, enables building a high-fidelity alerting pipeline with Python, version control, unit tests, and CI/CD, and provides a security data lake where raw logs are structured for security at scale. In this episode we talk with Jack Naglieri, Founder and CEO at Panther Labs. Sponsorship inquiries: [email protected]

Maintaining availability in a modern digital application is critical to keeping your application operating and available and to keep meeting your customers growing demands. There are many observability platforms out there and certainly Prometheus is a popular open source solution for cloud native companies yet operating an observability platform, costs money, and all of the platforms are highly data intensive. Managing costs and data retention policies is critical to keeping your application operating healthy and operating available. Chronosphere is the leading observability platform for scaling cloud native applications. Focusing on managing costs by managing data. Martin Mao is the co-founder and CEO of Chronosphere and he is my guest today . Sponsorship inquiries: [email protected] Google DORA: Take the survey at https://cloud.google.com/devops LINKERD: Visit https://softwareengineeringdaily.com/linkerd Permit.io: Get started at https://Permit.io Datadog: Get started today with a free trial at https://softwareengineeringdaily.com/datadog

As software engineering teams start to build products that become more and more mature. It becomes necessary to be able to debug complex issues with tooling that enables understanding of the full scenario. This can come from application scenarios where APIs are running multiple versions, where users are using your app from multiple devices, device types, OS versions, browser versions, things like that. You may also run into issues with network connectivity or a functionality that is intermittent based on sort of use cases and user interactions. And for this sort of scenario, we've come to start to use a class of tools for debugging called observability tools, observability tools, help developers to understand the full scenario of an application by digging into the data that is being used and recorded and can help to pipe data across various , solutions that are used within enterprises to read and discover what's going on from analytics. One such tool, one product used for this is Rookout . And we are here today, chatting with Liran Haimovitch . We'll talk a little bit about the product and his history, as well as the use case for out and sort of where the team is headed. Sponsorship inquiries: [email protected] Work OS: To learn more and get started, go to https://softwareengineeringdaily.com/workos Google DORA: Take the survey at https://cloud.google.com/devops Permit.io: Get started at https://Permit.io Snyk: Sign up for free today at https://snyk.co/sedaily Keeper Security: Get started by visiting https://www.keepersecurity.com/

Web infrastructure has evolved from individual servers to shared hosting services to virtual machines and virtual functions. The future of the internet however is looking toward a much more distributed computation model blockchain technology is central to the future of this modern internet of blockchains are still in their infancy and the most people blockchains are intimately tied to crypto currencies but the use of blockchain is substantially larger than that of crypto. Auctions provide a model for distributed computation that allows no centralized ownership and no centralized control of large scale applications. Celestia is developing blockchain technology that enables these modern distributed applications. Nader dabit is it in developer relations at Celestia and is an expert in blockchain technology ,and he joins us today. Sponsorship inquiries: [email protected] Rookout: Try it at https://rookout.com Keeper Security: Get started by visiting https://www.keepersecurity.com/ Wix: Head over to https://Wix.com/Partners and reimagine what your agency can accomplish. Cox Automotive: Visit https://coxautotech.com/ to find career opportunities at Cox. Google DORA: Take the survey at https://cloud.google.com/devops

Lee Atchison spent seven years at Amazon working in retail, software distribution, and Amazon Web Services. He then moved to New Relic, where he has spent four years scaling the company’s internal architecture. From his decade of experience at fast-growing web technology companies, Lee has written the book Architecting for Scale, from O’Reilly. As an application scales, it becomes significantly more complicated while at the same time receiving more traffic. The intersection of these two problems leads to a variety of discussions around availability, risk management, and microservices. Sponsorship inquiries: [email protected]

Data is becoming a bank’s biggest asset. These complex enterprises have a huge opportunity ahead - to transform themselves to become a trusted hub of a much broader data ecosystem that goes beyond the financial industry and helps to form a new class of cross-industry experience architectures that are scalable and transparent. The data physics that is needed for such emerging systems runs on consent and privacy preservation rather than black-boxed data lakes. A foundation for making this happen lies in the ability to use distributed, heterogenous data effectively and transform it into experiences that are relevant to the customer. These new experience architectures are following design patterns that are more participatory and consent-based than blindly personalized. In this episode, we deep dive into the context-aware Flybits platform with founder & CEO, Hossein Rahnama, alongside their CTO, Petar Kramaric, and VP of Engineering, Justin Lam. Sponsorship inquiries: [email protected] Rookout: Try it at https://rookout.com Permit.io: Get started at https://Permit.io Google DORA: Take the survey at https://cloud.google.com/devops Datadog: Get started today with a free trial at https://softwareengineeringdaily.com/datadog

Enabling authorization policies across disparate cloud-native environments such as containers, microservices and modern application delivery infrastructure is complex and can be a roadblock for software engineering teams. Open Policy Agent, or OPA, is an open, declarative, policy-as-code approach to authorization that reduces security and compliance burden for engineering teams. Business context is translated into declarative policy statements. These policy statements are compiled into code and deployed as agents that can be injected into any process, such as an API gateway, Kubernetes provisioning service, public cloud access controls, or continuous delivery automation service. Styra created and contributed OPA to the Cloud Native Computing Foundation where it is a graduated project with over 130M downloads to date and is used by large companies. Styra's enterprise commercial offering, Declarative Authorization Service (DAS), is specifically designed for OPA and includes the ability to author policies, preview impacts of new policies, and document the history of old policies, all through a single view. Tim Hinricks, CTO and founder of Styra, joins the show today to discuss how to make authorization policies easier to author, distribute, and monitor. One note of disclosure to be aware of: Styra is a portfolio company of Capital One Ventures, the strategic investing arm of Capital One. Views and questions expressed in this podcast and related material are my own, or those of my guest, and do not reflect the views of Capital One Ventures or its respective affiliates. Sponsorship inquiries: [email protected] Google DORA: Take the survey at https://cloud.google.com/devops LINKERD: Visit https://softwareengineeringdaily.com/linkerd Permit.io: Get started at https://Permit.io Datadog: Get started today with a free trial at https://softwareengineeringdaily.com/datadog

Cloud native applications utilizing microservice architectures has grown into one of the most popular application architectural patterns in recent years. The value of leveraging dynamic cloud resources, along with the flexibility and scalability of microservice architectures, creates a strong paradigm that's hard to miss. The strong adoption of Kubernetes has strengthened the pattern enormously. The unique structure and requirements of Kubernetes has led to an increased need for Kubernetes specific monitoring and diagnostics tools. There has been a large number of companies who have jumped at this opportunity. One of those companies is Komodor, a Kubernetes diagnostics platform that focuses on Kubernetes troubleshooting for the entire Kubernetes stack. Itiel Shwartz is the co-founder and CTO of Komodor, and he joins us today. Sponsorship inquiries: [email protected] Datadog: Visit https:// softwareengineeringdaily.com/datadog to get started. Permit.io: Get started at https://Permit.io Google DORA: Take the survey at https://cloud.google.com/devops LINKERD: Visit https://softwareengineeringdaily.com/linkerd Keeper Security: Get started by visiting https://www.keepersecurity.com/

Permissions are Hard! And they are becoming harder as we move more into the Cloud-native ecosystem. If we go back in time to the point where it was just a single monolith that you were building on your own. You'll probably have a framework to manage the permissions for you. But when you are working with distributed microservices, especially if you are a polyglot, you can't use those solutions anymore. So you end up having to sprinkle a bit of access control into every little microservice and component that you build. In addition, with the scale of modern applications, it's no longer just your services, there are a lot of third-party services that you have to connect to. Think about things like authentication, billing, analytics and other stuff that you combine from eternal services into what you are building. Permit.io empowers developers to bake in permissions and access control into any product in minutes and takes away the pain of constantly rebuilding them. Or Weis is the co-founder and CEO of Permit.io and joins us today. Sponsorship inquiries: [email protected] Cloud Bees: Visit https://www.cloudbees.com/ Wix: Head over to https://Wix.com/Partners and reimagine what your agency can accomplish. Google DORA: Take the survey at https://cloud.google.com/devops Datadog: Visit https://softwareengineeringdaily.com/datadog to get started. Keeper Security: Get started by visiting https://www.keepersecurity.com/

Companies that gather data about their users have an ethical obligation and legal responsibility to protect the personally identifiable information in their dataset. Ideally, developers working on a software application wouldn’t need access to production data. Yet without high-quality example data, many technology groups stumble on avoidable problems. Organizations need a solution to protect privacy while simultaneously preserving aspects of the data which are important. Tonic is automating data synthesis to advance data privacy. Their solution gives your production-like data for development and analytical purposes without compromising on data quality or privacy. In this episode, We interview Tonic’s CEO Ian Coe, and Head of Engineering Adam Kamor. Sponsorship inquiries: [email protected] Keeper Security: Get started by visiting https://www.keepersecurity.com/ Google DORA: Take the survey at https://cloud.google.com/devops Rookout: Try it at https://rookout.com LINKERD: Visit https://softwareengineeringdaily.com/linkerd Merge: check out Merge today at https://www.merge.dev/daily

Couchbase is a distributed NoSQL cloud database. Since its creation, Couchbase has expanded into edge computing, application services, and most recently, a database-as-a-service called Capella. Couchbase started as an in-memory cache and needed to be rearchitected to be a persistent storage system. In this episode, We interviewed Ravi Mayuram, SVP Products, and Engineering at Couchbase. To learn more about Couchbase, check out couchbase.com/sedaily. Sponsorship inquiries: [email protected] Datadog: Visit https://softwareengineeringdaily.com/datadog to get started. New Relic: Sign up at https://newrelic.com/sedaily Wix: Head over to https://Wix.com/Partners and reimagine what your agency can accomplish. Merge: check out Merge today at https://www.merge.dev/daily Google DORA: Take the survey at https://cloud.google.com/devops .

Remix is a full stack web framework that lets you focus on the user interface and work back through web fundamentals to deliver a fast, slick, and resilient user experience that deploys to any Node.js server and even non-Node.js environments at the edge like Cloudflare Workers. In this episode, we interviewed Ryan Florence, co-founder at Remix Software. Sponsorship inquiries: [email protected] Snyk: Sign up for free today at https://snyk.co/sedaily LINKERD: Visit https://softwareengineeringdaily.com/linkerd Merge: check out Merge today at https://www.merge.dev/daily Google DORA: Take the survey at https://cloud.google.com/devops Wix: Head over to https://Wix.com/Partners and reimagine what your agency can accomplish.

Profiling has been a part of the software engineering toolbox since the 1970s, but it was long regarded to be too high in overhead, so it was only done ad hoc. The problem with profiling that way is that you never catch the moment in time where for example an incident happened. Continuous profiling is the systematic capturing of profiling at all times, Google has been doing it for over a decade, but it comes both with challenges of how to capture the data at low overhead and also storing and querying the enormous amount of data that continuous profiling brings with it. Polar Signals created the open-source project Parca to bring continuous profiling to the masses. Frederic Braczyk, Founder and CEO of Polar Signals joins the show to discuss the uses of continuous profiling as well as the challenges in building everything from the low overhead profilers using eBPF to purpose-built storage engines for the high volume data it entails. Sponsorship inquiries: [email protected] LINKERD: Visit http://softwareengineeringdaily.com/linkerd Keeper Security: Get started by visiting https://www.keepersecurity.com/ Cloud Bees: Visit https://www.cloudbees.com/ Snyk: Sign up for free today at snyk.co/sedaily Wix: Head over to https://Wix.com/Partners and reimagine what your agency can accomplish.

Enterprise-grade authentication is often an essential ingredient to virtually all applications in today's world. However, companies often have a hard time understanding the value of that authentication especially during the early stages of product development. And hardening of an application is often left as an afterthought. Add enterprise-level requirements such as single sign-on and two-factor authentication and other requirements that the once afterthought becomes are now major issues. Delaying launch schedules and new feature launches. WorkOS is dramatically shortening this development time by providing tools to allow in integrating complex enterprise standards with just a few lines of code, allowing developers to focus on core products and features. Michael Grinich is the CEO of WorkOS and is my guest today. Sponsorship inquiries: [email protected] Cox Automotive: Visit https://coxautotech.com/ to find career opportunities at Cox. Merge: check out Merge today at https://www.merge.dev/daily Keeper Security: Get started by visiting https://www.keepersecurity.com/ Capital one: Visit https://capitalone.com/ML Netapp: Check them out at https://spot.io/sedaily

Build automation tools automate the process of building code, including steps such as compiling, packaging binary code, and running automated tests. Because of this, build automation tools are considered a key part of a continuous delivery pipeline. Build automation tools read build scripts to define how they should perform a build. Common build scripts include Makefile, Dockerfile, and bash. Earthly is a build automation tool that allows you to execute all your builds in containers. Earthly uses Earthfiles, which draws from the best features of Makefile and Dockerfile and provides a common layer between language-specific tooling and the CI build spec. Earthly builds are repeatable, isolated, and self-contained, and will run the same way across different environments such as a CI system or a developer’s laptop. In this episode we spoke with Adam Gordon Bell who works in developer relations at Earthly. Adam is also the host of the CoRecursive podcast Sponsorship inquiries: [email protected] Capital one: Visit https://capitalone.com/ML Netapp: Check them out at https://spot.io/sedaily SetApp : Head over to https://fullstory.com/sedailyory.com/sedaily to get in touch. New Relic: Sign up at https://newrelic.com/sedaily Merge: check out Merge today at https://www.merge.dev/daily

Creating great creative tools is extremely difficult. There are thousands of paths a user could take, and every aspect of the user experience has to be carefully considered and optimized for performance. And when you try to add real-time collaboration on top of that, you can be sure that you’re left with almost no time to focus on the core user experience of your product. Liveblocks is a set of tools and APIs that helps you create amazing real-time collaborative experiences. With Liveblocks, you can make anything collaborative in minutes so that you can give your core product the attention it deserves. Guillaume Salles is the Co-founder and CTO of Liveblocks and joins the show to discuss what he and his team have built. Sponsorship inquiries: [email protected] RudderStack: Software Engineering Daily listener at https://rudderstack.com/dmdstack.com/dmds Capital one: Visit https://capitalone.com/ML Netapp: Check them out at https://spot.io/sedaily Keeper Security: Get started by visiting https://www.keepersecurity.com/ Cloud Bees: Visit https://www.cloudbees.com/

Most technology companies rely on open source software projects. But open source software projects are often maintained by a group of people that is not affiliated with any particular company. When an open source project develops too much technical debt, it can become a tragedy of the commons. Who is responsible for maintaining these open source projects? This is the motivation for open source bounties. Companies and individuals who rely on open source create bounties, which are financial incentives for developers to solve problems within the open source project. Gitcoin is a platform for open source bounties that is mediated by an Ethereum smart contract. Gloria Kimbwala works at Gitcoin and joins the show to discuss the recent developments in the Gitcoin Ecosystem. Sponsorship inquiries: [email protected] Merge: check out Merge today at https://www.merge.dev/daily RudderStack: Software Engineering Daily listener at https://rudderstack.com/SED. Netapp: Check them out at https://spot.io/sedaily Capital one: Visit https://capitalone.com/ML SetApp : Head over to https://fullstory.com/sedailyory.com/sedaily to get in touch.

Mailchimp is an all-in-one marketing platform for growing businesses, empowering millions of customers around the world to launch, build, and grow their businesses with world-class marketing technology, award-winning customer support, and inspiring content. Eric Muntz is Mailchimp's CTO, responsible for the engineering teams that design, implement, and maintain Mailchimp's products and infrastructure. He joins the show to take us through the engineering behind Mailchimp’s infrastructure. Sponsorship inquiries: [email protected] Netapp: Check them out at https://spot.io/sedaily Influx Data: . To learn more and get started for free, visit https://influxdata.com/sedaily Capital one: Visit https://capitalone.com/ML Datadog: Get started today with a free trial at https://softwareengineeringdaily.com/datadog Cox Automotive: Visit https://coxautotech.com/ to find career opportunities at Cox.

Venture capital investment has continued to flow into technology startups. No one builds technology from scratch. There are cloud services, software libraries, 3rd party services, and software platforms that modern entrepreneurs must adopt to build their products efficiently and quickly. These layers of infrastructure are a key area for many investors. Tim is a partner at Menlo Ventures where he invests in cloud and data infrastructure, AI/ML and cyber security. He joins the show to discuss what goes into a smart investment. Sponsorship inquiries: [email protected] Datadog: Get started today with a free trial at https://softwareengineeringdaily.com/datadog SetApp : Head over to https://setapp.com/developers to get in touch. Capital one: Visit https://capitalone.com/ML Netapp: Check them out at https://spot.io/sedaily Dynatrace: See why Dynatrace is radically different and try it free for 15 days at https://www.dynatrace.com/se-daily/

Between hyper financialisation and the growth of automation in the world, trade and investments have become an ever more prevalent and important tool for the mass market. But the relative knowledge of professional and hobbyist investors is different, and so is the access to opportunities. Coinrule empowers regular people to compete with professional traders by automating investments without having to learn a single line of code. Zdeněk Höfler is the co-founder of Coinrule and joins the show to discuss what he and his team have built. Sponsorship inquiries: [email protected] Keeper Security: Get started by visiting https://www.keepersecurity.com/ Capital one: Visit https://capitalone.com/ML Netapp: Check them out at https://spot.io/sedaily Cloud Bees: Visit https://www.cloudbees.com/ Fullstory : Go to https://fullstory.com/sedailyory.com/sedaily to activate your free one month trial.

Jeromy Johnson is a distributed systems researcher focused on incentive mechanism design and trustless distributed system scalability. He joins us today to share how Protocol Labs is spearheading the innovation in web3. Sponsorship inquiries: [email protected] Keeper Security: Get started by visiting https://www.keepersecurity.com/ Cloud Bees: Visit https://www.cloudbees.com/ Capital one: Visit https://capitalone.com/ML Netapp: Check them out at https://spot.io/sedaily Fullstory : Go to https://fullstory.com/sedaily to activate your free one month trial.

As crypto gains worldwide attention, the most scalable, resilient and performant systems are required for the industry to thrive. Products must be designed for a mix of technical and non-technical users. Blockchain.com's VP of Engineering Lewis Tuff takes us behind the scenes for a look at the architecture, programming languages and database choices required to build an open, accessible and fair financial future, one piece of software at a time. Sponsorship inquiries: [email protected] Dynatrace: See why Dynatrace is radically different and try it free for 15 days at Dynatrace.com/SE-Daily. Dragon Ball Legends : https://twitter.com/DB_Legends Keeper Security: Get started by visiting https://www.keepersecurity.com/ Wix: Head over to https://Wix.com/Partners and reimagine what your agency can accomplish. Fullstory : Go to https://fullstory.com/sedaily to activate your free one month trial.

This episode is hosted by Lee Atchison. Lee Atchison is a software architect, author, and thought leader on cloud computing and application modernization. His most recent book, Architecting for Scale (O’Reilly Media) is an essential resource for technical teams looking to maintain high availability and manage risk in their cloud environments. Lee is the host of his podcast, Modern Digital Business, an engaging and informative podcast produced for people looking to build and grow their digital business with the help of modern applications and processes developed for today’s fast-moving business environment. Subscribe at mdb.fm. Follow Lee, at leeatchison.com. As companies move more and more workloads to the cloud, cost management in the cloud is becoming critically important. Modern application development methodology increasingly involves moving to service and microservice architectures enabled by the cloud and kubernetes is the backbone of this modern infrastructure trend. Managing costs of kubernetes clusters is therefore becoming increasingly important. Kubecost is the company focused on giving visibility into kubernetes resources, allowing you to reduce your overall kubernetes based infrastructure spend. Webb Brown is the founder of Kubecost and joins us today. Sponsorship inquiries: [email protected] SetApp : Head over to https://setapp.com/developers to get in touch. Influx Data: . To learn more and get started for free, visit https://influxdata.com/sedaily Capital one: Visit https://capitalone.com/ML Datadog: Get started today with a free trial at softwareengineeringdaily.com/datadog Dragon Ball Legends : https://twitter.com/DB_Legends