Sun.Jan 29, 2023

article thumbnail

How to Secure Your CI/CD Pipeline

DZone

Recently, we learned of a breach of CircleCI. They strongly suggest that all their customers: Immediately rotate any and all secrets stored in CircleCI. Review internal logs for their systems for unauthorized access from December 21, 2022, through January 4, 2023, or the date you rotated the secrets in CircleCI. The CircleCI team also invalidated all Project API tokens and informed users that they would need to be replaced.

Systems 152
article thumbnail

Percentiles don’t work: Analyzing the distribution of response times for web services

Adrian Cockcroft

Plot showing the final result of fitting multiple normal distributions to a response time curve Most people have figured out that the average response time for a web service is a very poor estimate of it’s behavior, as responses are usually much faster than the average, but there’s a long tail of much slower responses. The common way to deal with this is to measure percentiles, and track the 90%, 99% response times for example.

Lambda 98