In this data-driven era, different tools are created in order to store, process, and visualize data. These patterns help to improve efficiency of novel technologies.
In Noxtton, we implement new technologies to create the best business strategies and solutions. In this article, we analyse several innovative tools recommended by Tech Radar. Our analysis is based on the work experience of Noxtton’s development team.
Airflow
Airflow represents a tool to create, schedule, and monitor data pipelines. It is an open-source workflow management tool, which relies on code to define its workflows and has a centralized workflow orchestration. Moreover, it allows the users to write their codes at every step of the pipeline.
In other words, the Airflow itself does not impose any restrictions on workflow functions. It provides unlimited possibilities and configurations.
Airflow has a simple UI, which makes it easy to debug tasks in the development process. It offers different operation setups to run code, for example, if a developer sets up the Airflow in Python, the PythonOperator will allow to quickly port python code to production.
Bitrise
Bristle is a domain-specific CD tool created for mobile applications, which provides the set of prebuilt steps needed for the development process.
It supports apps such as iOS (Swift and Objective-C), Android (Java and Koltin), Flutter (iOS and Android), React Native (iOS and Android), Ionic (iOS and Android), Cordova (iOS and Android), Xamarin (iOS and Android).
Bristle is used by more than 45000 mobile app developers. It builds, tests, and deploys mobile applications. This tool can be used by single-person studios or billion-dollar enterprise companies, including Runkeeper, Grindr, Duolingo, etc.
Bitrise provides product quality and team flexibility. Bitrise is a great way to easily build and develop apps.
Dependabot
Keeping dependencies updated is one of the ways to keep the software building process secure. Dependabot automatically checks and updates dependency files, monitors pull requests and tests pass.
Dependabot integrates with GitHub and automatically sends developers the pull requests to update the files. Additionally, it offers Dependabot libraries, which can be integrated within the CI / CD pipeline.
This tool provides a great opportunity to reach strong dependency management practice and implement iterative improvements.
In 2019, Dependabot was acquired by Github and now it’s provided together with other Github offerings.
Trivy
In order to provide security, using a vulnerability scanner is a must. Trivy is a simple, comprehensive tool that detects vulnerabilities of OS packages and dependency files. It scans the contents of an image, looks for the files containing these images, and compares package versions to thousands of different known vulnerabilities in open-source packages.
Trivy is characterized by simplicity, as it only specifies an image name or artifact name. This tool is fast and convenient to use, as it scans packages within 10 seconds and supports multiple formats, including container image, filesystem, and git repositories. To run Trivy, developers can apply the command line or integrate this tool into a CI job.
This tool can be run in two different modes:
Standalone – this mode uses trivy image, trivy filesystem, and trivy repo vulnerability scanners;
Client/Service mode – while using this mode, client does not have to download the vulnerability database, as it is included in trivy server.
Trivy can find security issues in a number of Linux and RHEL/CentOS operating systems, including Alpine, Ubuntu, SUSE, Debian, RHEL, CentOS, and Amazon Linux.
