Managing Risk in Component Based Development

Managing Risk in Component Based Development

October 15, 2013

Usage of Java components to build applications has grown exponentially. Most applications are now composed primarily of components – 80 – 90% of an application consists of components.

Many of these components are open source components that are housed in the Central Repository, the defacto standard used by open source project teams to distribute their binaries. Recent research shows some interesting trends:
• 8 billion components were downloaded from Central in the last 12 months.
• 53% of survey respondents are standardizing on an open source development infrastructure stack.
• 76% of large organizations have no control over what components are being used in software development projects

Although components help improve developer productivity so that applications can be delivered faster, if components are not managed effectively, security, licensing, and quality issues can put your organization at risk. Industry analysts and standards efforts recognize managing components as a key requirement for modern development efforts. Gartner addresses the need to manage components as part of an overall software supply chain approach:

“IT supply chain integrity issues are expanding from hardware into software and information. They are growing more complex as IT systems are assembled from a large number of geographically diverse providers, and, now of mainstream concern to enterprise IT.” – Ray Valdes, research vice president at Gartner.

Join us as we introduce key concepts for managing and exploiting these components. We’ll discuss the current state of application development market, the promise and challenge of components, and we’ll provide you with a set of best practice considerations to kick-start your component management initiative.”

About the Speakers

Brian is VP of Product Management at Sonatype, with extensive open source experience as a member of the Apache Software Foundation for the past 7 years and former Chair of the Apache Maven project. Brian has provided significant development contributions to the Maven ecosystem, including the maven-dependency-plugin and maven-enforcer-plugin. He has over 15 years of experience driving the vision behind, as well as developing and leading the development of software for organizations ranging from startups to large enterprises. Brian is a frequent speaker at national and regional events including JavaOne, and other development related conferences. Brian holds a Bachelor of Science degree in Computer Science from Daniel Webster College.
Posted in Meetings
AJUG Meetup

Building and Deploying 12 Factor Apps in Scala and Java

April 18, 2017

The twelve-factor app is a modern methodology for building software-as-a-service apps:

• Use declarative formats for setup automation, to minimise time and cost for new developers joining the project.

• Have a clean contract with the underlying operating system, offering maximum portability between execution environments.

• Are suitable for deployment on modern cloud platforms, obviating the need for servers and systems administration.

• Minimise divergence between development and production, enabling continuous deployment for maximum agility.

• And can scale up without significant changes to tooling, architecture, or development practices.

We will build a RESTful web service in Java and deploy the app to CloudFoundry. We will go over how to build a cloud manifest, how to keep our database credentials and application configuration outside of our code by using user-provided services and go over what it takes to build a 12 Factor application in the cloud. This presentation will be heavy on code and light on slides!


Roam Dunwoody

1155 Mount Vernon Highway NE
Atlanta, GA 30338 (map)

AJUG Tweets

Follow @atlantajug on twitter.

Recent Jobs