Category: Development and DevOps

  • How to run a Public Docker Registry in Kubernetes

    Introduction As a member of NearForm’s DevOps team, I spend a lot of my time working with containers in Kubernetes. In the article, I will cover the creation of publicly accessible Docker Registry running in Kubernetes. For the sake of keeping things simple and short, I will use basic authentication for the registry and Kubernetes…

    Petr Kohut
    | 12th September 2018
  • Building Docker images in Go

    For the NearForm Node.js Docker distribution we we wanted to add some flexibility to our build process in order to be quicker to respond to changes in the ecosystem. We are currently using “make” to build the docker images which requires a configure step. Since these images never really get built anywhere else than in…

    Alex Knol
    | 10th September 2018
  • The world is a dangerous place, which is why you need Joi data validation

    Re-joi-ce people! If you have been programming long enough, you know all too well that you can never trust external data. The first thing you will want to do is validate that data before it gets too deep into your program. You may have already heard the saying “don’t roll your own crypto”. Though less…

    Nicolas Morel
  • Zed Attack Proxy in a CI Pipeline?

    Adding Automated Penetration Testing to Continuous Integration Pipelines Testing, particularly around security, is a core part of the ethos of all nearForm development teams. In many organisations, penetration testing can often happen just before a product first pushes to production, and periodically thereafter. Penetration testing is performed by external teams and is focused on finding…

  • Terraform Header Image

    Building a Transparent Proxy in AWS VPC with Terraform and Squid

    In this article I’m going to be setting up an example network and deploying a transparent proxy to it. To make this repeatable and to show exactly how it can be deployed in AWS VPC, I am using Terraform. Terraform is an excellent tool for describing and automating cloud infrastructure. All of the terraform code…

    Karl Hopkinson-Turrell
  • Comparing NPM Audit with SNYK

    At nearForm, we specialize in building practical software solutions for our clients. A part of designing and building a modern solution is making it secure. In today’s world where almost everything is connected and operated by computers, adding security on-top, as an afterthought no longer works. As software architects and engineers, we also focus on…

    Igor Shmukler
  • AVOIDING COMMON HURDLES IN UNIT TESTING

    Avoiding Common Hurdles in Unit Testing

    Why do developers skip writing tests for some code? Perhaps because it relies on the file system or an external API. Perhaps because we think it’s too difficult, or a test account to an external API is not guaranteed to be available. Perhaps it’s because an external API may not be accessible from the CI…

    William Riley-Land
    | 16th August 2018
  • Streams Header Image

    Welcome, Readable-stream@3!

    I am so excited to be able to release the new version of readable-stream, v3! For all of you that might not know, readable-stream is the most downloaded module on NPM, and part of practically any dependency chain of any JavaScript application. readable-stream is a userland port of the Node.js require(‘stream’) module, so that module authors could have a stable…

  • Pino Header Image

    Announcing Pino V5.0.0

    If you’ve not heard of Pino before, it’s a low-overhead, newline-delimited-JSON logger with close compatibility to Bunyan. The idea behind Pino is to provide the lowest overhead JSON logging possible in order to keep Node’s event-loop as free as possible to handle the most critical work, such as request-handling. For information on Pino, in general, see Pino –…

  • Introducing Clinic Bubbleprof, a Unique Way to Visualise Node.Js Code

    Back in January, we announced the Node Clinic project and the first tool in Clinic, Doctor. After many intensive months of work by the team, we’re more than a little excited to announce Clinic Bubbleprof! Bubbleprof has a unique new approach to profiling your Node code so that you can visualise exactly where and how that code is busy….

    Conor O'Neill
  • Top