Articles by Mike Long
Review: Investments Unlimited - A Novel about DevOps, Security, Audit Compliance, and Thriving in the Digital Age
“You know, it may feel like regulators are out to get us, but they’re really there to help us and help protect our customers.” If you’re into DevOps there’s a pretty good chance at least one book from …
Git and the benefits and challenges of everything-as-code
Git has been a central part of the DevOps story. Our continuous integration systems run builds, produce artifacts, execute tests, and ultimately deploy systems defined as code in our git repositories. …
Why developers need a DevOps database
Can you imagine developing software without version control? What if I told you that we were doing exactly the same thing with DevOps? In this article I’ll explain why developers need a database for …
Merkely is now Kosli!
Merkely is now Kosli! Hello! We would like to announce that we have renamed and rebranded as Kosli. A lot has happened over the last six months and it’s time for a new sign above the door and a …
How Kosli automates Change Management for Kubernetes workloads
If you’re delivering software in a regulated space, and you’re using Kubernetes, you’ll know how problematic change management is. On one hand you have a highly dynamic container based system that’s …
5 reasons why your CI system is a terrible Compliance System of Record
“Why can’t we use our CI system for our Compliance System of Record (CSoR)?” This is a question we get asked a lot when we’re talking about compliance with regulated DevOps teams. And it’s a perfectly …
How to design a DevOps Compliance System of Record
If you deliver software in a regulated industry you have to be able to show that you are following a defined process. And that means being able to produce a record of what’s going on in your DevOps …
How to secure your software supply chain with Artifact Binary Provenance
In Kosli, we use Artifact Binary Provenance as the foundation for our audit trails. Artifact Binary Provenance is a fancy term, but the idea behind it is really quite simple. All it means is that we …
8 reasons why we do ensemble programming
At Kosli we do as much of our work as possible in a group setting, especially (but not limited to) programming. In our experience most tech teams don’t do this and we think they’re missing out on all …
It’s 2021! Why does Change Management still suck?
There’s an excellent management paper from 2001 called Nobody Ever Gets Credit for Fixing Problems that Never Happened. In it, the researchers looked into how companies create and sustain process …
Ready to Automate Governance?
