Sogeti Java Meetup - How to ensure your code is maintainable

•

0 likes•1,815 views

The document discusses ensuring code maintainability. It defines software quality according to ISO 25010 as having quality in use and product quality models. It presents 10 guidelines for writing maintainable code from SIG. It also discusses tools for static code analysis (e.g. SonarQube) and software composition analysis (e.g. WhiteSource Bolt) to help ensure code quality. The presentation aims to help developers choose the right tools to analyze their code and dependencies.

Engineering

Security Classification © 2019 Sogeti. All rights reserved. 2
Presentation title | Date 2
Who am I
https://peterrombouts.nl
https://www.twitter.com/prombouts
https://www.github.com/prombouts
https://labs.sogeti.com
Senior Technology Consultant
Peter Rombouts
Cloud Software Architect
 Over 18 years of experience in IT
 Passionate about Software
Development, Architecture and
Cloud
SogetiLabs Fellow
 Azure
 Cloud
 Cognitive Services
 Software Development
Multi Cloud
QSD

Security Classification © 2019 Sogeti. All rights reserved. 3
Presentation title | Date
Systems and software engineering — Systems and
software Quality Requirements and Evaluation (SQuaRE) —
System and software quality models
ISO 25010 for short
What is Software Quality?

Security Classification © 2019 Sogeti. All rights reserved. 4
Presentation title | Date
The International Standard defines:
Quality in Use Model Product Quality Model

Security Classification © 2019 Sogeti. All rights reserved. 5
Presentation title | Date
The International Standard defines:
Quality in Use Model Product Quality Model

Security Classification © 2019 Sogeti. All rights reserved. 6
Presentation title | Date
The International Standard defines:
Quality in Use Model Product Quality Model

Security Classification © 2019 Sogeti. All rights reserved. 7
Presentation title | Date
Guidelines (SIG)
1. Write Short Units of Code
2. Write Simple Units of Code
3. Write Code Once
4. Keep Unit Interfaces Small
5. Separate Concerns in Modules
6. Couple Architecture Components Loosely
7. Keep Architecture Components Balanced
8. Keep Your Codebase Small
9. Automate Tests
10.Write Clean Code
SIG was established in 2000. Its roots can be
traced back to the Dutch National Research
Institute for Mathematics and Computer
Science (Centrum voor Wiskunde en
Informatica [CWI]).

Security Classification © 2019 Sogeti. All rights reserved. 8
Presentation title | Date
Guidelines (SIG)
1. Write Short Units of Code
2. Write Simple Units of Code
3. Write Code Once
4. Keep Unit Interfaces Small
5. Separate Concerns in Modules
6. Couple Architecture Components Loosely
7. Keep Architecture Components Balanced
8. Keep Your Codebase Small
9. Automate Tests
10.Write Clean Code
SIG was established in 2000. Its roots can be
traced back to the Dutch National Research
Institute for Mathematics and Computer
Science (Centrum voor Wiskunde en
Informatica [CWI]).

Security Classification © 2019 Sogeti. All rights reserved. 9
Presentation title | Date
Tools
How to choose?
Static Code Analysis?
Software Composition Analysis?

Security Classification © 2019 Sogeti. All rights reserved. 10
Presentation title | Date
What tooling is available?
Analyses the(lines of) code.
Normally used in automated pipelines.
Examples:
• SonarQube
• PMD
• NDepend
• BinSkim
Analyses the dependencies
Mostly stand-alone products with notification
capabilities. Also often used for checking
licenses in open-source packages and if they
comply with company policies..
Examples:
• WhiteSource
• WhiteSource Bolt
• Snyk
• Fossa
• npm-audit
• David (Node.JS)
Static Code Analysis Software Composition Analysis

Security Classification © 2019 Sogeti. All rights reserved. 11
Presentation title | Date
What tooling is available?
Analyses the(lines of) code.
Normally used in automated pipelines.
Examples:
• SonarQube
• PMD
• NDepend
• BinSkim
Analyses the dependencies
Mostly stand-alone products with notification
capabilities. Also often used for checking
licenses in open-source packages and if they
comply with company policies..
Examples:
• WhiteSource
• WhiteSource Bolt
• Snyk
• Fossa
• npm-audit
• David (Node.JS)
Static Code Analysis Software Composition Analysis

Security Classification © 2019 Sogeti. All rights reserved. 12
Presentation title | Date
Static Code Analysis: SonarQube

Security Classification © 2019 Sogeti. All rights reserved. 13
Presentation title | Date

Security Classification © 2019 Sogeti. All rights reserved. 14
Presentation title | Date
Software Composition Analysis: WhiteSource Bolt

Security Classification © 2019 Sogeti. All rights reserved. 15
Presentation title | Date
Software Composition Analysis: WhiteSource Bolt

Security Classification © 2019 Sogeti. All rights reserved. 16
Presentation title | Date
Software Composition Analysis: WhiteSource Bolt

17
Sogeti Global Overview | © 2019 Sogeti. All rights reserved.
Sogeti Global Overview | © 2019 Sogeti. All rights reserved.
Mind The (Tool) Gap!

Security Classification © 2019 Sogeti. All rights reserved. 18
Presentation title | Date
How to proceed?

Security Classification © 2019 Sogeti. All rights reserved. 19
Presentation title | Date
Hoe nu verder?

Sogeti Java Meetup Quality Engineering
Questions?
peter.rombouts@sogeti.com
https://peterrombouts.nl
https://labs.sogeti.com
Twitter @prombouts
GitHub @prombouts

What's hot

Bosch: AN UPDATE ON OUR ACTIVITIES IN AUTOMATING OSS COMPLIANCE: A WORKING SH...

Shane Coughlan

OpenChain Webinar #11 - Open Source Issues Remediation - Jari Koivisto - 2020...

Shane Coughlan

During a recent webinar, Jonathan Knudsen presented: "That's Not How This Works: All Development Should Be Secure." Development teams are pressured to push new software out quickly. But with speed comes risk. Anyone can write software, but if you want to create software that is safe, secure, and robust, you need the right process. Webinar attendees will learn: • Why traditional approaches to software development usually end in tears and heartburn • How a structured approach to secure software development lowers risk for you and your customers • Why automation and security testing tools are key components in the implementation of a secure development life cycle For more information, please visit our website at www.synopsys.com/software-integrity.html

Webinar–That is Not How This Works

Synopsys Software Integrity Group

OpenChain Automotive Work Group Meeting #2 - Lyon

Shane Coughlan

Osborne Clarke - OpenChain - FOSSmatrix

Shane Coughlan

OpenChain Webinar #11 - cii-bp-badge-intro

Shane Coughlan

Build your own_photobooth

iText Group nv

Embed Spark calling SDK in Your App - Olivier PROFFIT - Cisco Live Berlin 2017

Cisco

OpenChain Automation Case Study - September to December 2021

Shane Coughlan

OpenChain Automation Case Study - September to December 2021

Shane Coughlan

Free and Open Source Software - Challenges for the Automotive Supply Chain

Shane Coughlan

Licensing in Composite Projects

Tiberius Forrester

Easing IoT Development for Novice Programmers Through Code Recipes

Juan Pablo Sáenz

OpenChain Continual Improvement Case Studies

Shane Coughlan

Managing and working with remote teams is a competitive strength we have, but it can have its challenges. View this presentation and learn how to increase the level of cohesion among virtual teams by building trust and forming emotional connections and relationships through the use of video conferencing. You will learn tips on how to start adding video along with some fun ideas to can implement with your virtual teams today! Watch on-demand webinar: https://youtu.be/TfAmK6YQaeA

How to Effectively Manage Virtual Teams

Cisco Webex

Licensing in Composite Open Source Projects

Protecode

Spo2 r33

SelectedPresentations

Strategies to Reap the Benefits of Software Patents in an Open Source Softwar...

Black Duck by Synopsys

Fabrizio Cornelli - Securing Android Apps by Reversing - Codemotion Milan 2018

Codemotion

vivek_resume1

Vivek kumar Pandit

What's hot (20)

Bosch: AN UPDATE ON OUR ACTIVITIES IN AUTOMATING OSS COMPLIANCE: A WORKING SH...

OpenChain Webinar #11 - Open Source Issues Remediation - Jari Koivisto - 2020...

Webinar–That is Not How This Works

OpenChain Automotive Work Group Meeting #2 - Lyon

Osborne Clarke - OpenChain - FOSSmatrix

OpenChain Webinar #11 - cii-bp-badge-intro

Build your own_photobooth

Embed Spark calling SDK in Your App - Olivier PROFFIT - Cisco Live Berlin 2017

OpenChain Automation Case Study - September to December 2021

Free and Open Source Software - Challenges for the Automotive Supply Chain

Licensing in Composite Projects

Easing IoT Development for Novice Programmers Through Code Recipes

OpenChain Continual Improvement Case Studies

How to Effectively Manage Virtual Teams

Licensing in Composite Open Source Projects

Spo2 r33

Strategies to Reap the Benefits of Software Patents in an Open Source Softwar...

Fabrizio Cornelli - Securing Android Apps by Reversing - Codemotion Milan 2018

vivek_resume1

Similar to Sogeti Java Meetup - How to ensure your code is maintainable

Maintainability Sogeti Qx Day 2020

Peter Rombouts

Asma Zubair, Product Mgmt Mgr, Sr Staff, Synopsys and Kimm Yeo, Product Marketing Mgr, Staff, Synopsys presented on a recent webinar. Attendees learned: how this nondisruptive tool: - Runs in the background and reporst vulnerabilities during functional testing, CI/CD, and QA activities. - Prioritizes and triages vulnerability findings in real time with 100% confidence. - Fully automates secure code delivery and deployment, without the need for extra security scans or processes. - Frees up development and security resources to focus on strategic or mission-critical tasks and contributions. For more information, please visit our website at www.synopsy.com/seeker

Webinar–AppSec: Hype or Reality

Synopsys Software Integrity Group

Webinar – Streamling Your Tech Due Diligence Process for Software Assets

Synopsys Software Integrity Group

RSA Conference Presentation–Creating a Modern AppSec Toolchain to Quantify Se...

Synopsys Software Integrity Group

Why Automate the Network?

Hank Preston

Are you struggling with application security testing? Do you wish it was easier, faster, and better? Join us to learn more about IAST, a next-generation application security tool that provides highly accurate, real-time vulnerability results without the need for application or source code scans. Learn how this nondisruptive tool can: Run in the background and report vulnerabilities during functional testing, CI/CD, and QA activities. Auto verify, prioritize and triage vulnerability findings in real time with 100% confidence. Fully automate secure app delivery and deployment, without the need for extra security scans or processes. Free up DevOps resources to focus on strategic or mission-critical tasks and contributions.

Bridging the Security Testing Gap in Your CI/CD Pipeline

DevOps.com

The Future of IoT: Why We Need the Open Interconnect Consortium

Open Interconnect Consortium

Webinar–Reviewing Modern JavaScript Applications

Synopsys Software Integrity Group

The tempo for software delivery to the warfighter continues to accelerate to meet the goals and demands of their missions. Pressures to rapidly build and deploy mission software drive the need to deliver new capabilities via DevSecOps pipelines. Many of the latest leading-edge DevSecOps practices draw heavily from commercial tech companies and innovative programs across DoD like Kessel Run. What are these latest trends, and how do you take advantage of them? How do you quantify the risk of microservices, new languages and frameworks, and cloud environments and still obtain authority to operate (ATO)? The ThreadFix platform has built-in automation and orchestration capabilities to enable your teams to provide immediate feedback in the form of policy evaluation, notifications in the form of emails and automated developer defect creation, and decision-making on your CI program as scan results are generated. In addition to built-in automation, plugins and the ThreadFix API enable CI programs to seamlessly integrate security testing into existing build/release pipelines to provide evaluation of code changes directly to your development tools. These key issue items and other trends will be discussed in this highly interactive briefing, providing critical insights on how to inject agility and responsiveness into environments that have traditionally struggled to keep pace with modern development approaches.

Continuous Authority to Operate (ATO) with ThreadFix – Bringing Commercial In...

Denim Group

Software Bill of Materials - Accelerating Your Secure Embedded Development.pdf

ICS

The Future of IoT: Why We Need the Open Interconnect Consortium

Samsung Open Source Group

Protecting what you build is much more complicated today, with the security landscape witnessing rapid changes. National Institute of Standards and Technology's Cybersecurity Framework (NIST CSF) is popular among organizations to manage security risks effectively. Due to the flexibility and adaptability of the NIST framework, many organizations across the globe are using it to protect their IT network. SanerNow provides an in-depth NIST CSF coverage to help organizations achieve salient security. SanerNow's automated solution provides a holistic view of your organization's NIST compliance posture and helps your network adhere to the benchmark. In this session, you will learn, • About the coverage of the NIST CSF framework in SanerNow • How to implement NIST compliance using SanerNow • What are the in-built and customizable compliance reports offered by SanerNow

How to Achieve NIST Compliance using SanerNow?

SecPod

IoT Panel- Cisco and Intel

Bessie Wang

During a recent webinar, Meera Rao, DevSecOps Practice Director with Synopsys Software Integrity Group spoke on Risk Based Adaptive DevSecOps. Building security automation into the DevOps pipeline is a key pain point for many organizations. Some firms deploy to production as frequently as every five minutes—a velocity that security struggles to match. Implementing intelligence within the DevOps pipeline supports security activities by matching the team’s velocity, providing intelligent feedback, and supporting organizations as they scale their security testing activities. For more information, please visit our website at https://www.synopsys.com/devops

Webinar – Risk-based adaptive DevSecOps

Synopsys Software Integrity Group

Cisco Tech Advantage Webinar. June 4th, 2014 Video: http://youtu.be/RkmMi9qea5Y IoT is everywhere, from smart meters on houses to parking sensors in the ground – all devices are connected to the Internet. Internet engineers are helping traditional industries solve new industrial world challenges by connecting billions of new devices. An exciting part of the IoT journey is the integration between both worlds: Information Technology (IT) and Operation Technology (OT). For that a systems approach is required to scale the existing Internet infrastructure to accommodate IoT use cases, while making IT technology easy to adopt for OT operators. In this session you will learn: IoT infrastructure challenges and the need for open standards and partner ecosystem Key elements to build large-scale IoT systems as IPv6, access control, plug and play, distributed intelligence and contextual awareness Introduction to fog computing and advantages of extending cloud computing and services Looking ahead to the future

Steps to Scale Internet of Things (IoT)

Rafael Maranon

Mid market collaboration architecture presentation

Trinny Chacko

Automate and Enhance Application Security Analysis

VMware Tanzu

Cilium + Istio with Gloo Mesh

Christian Posta

Certified Internet of Things Specialist ( CIoTS )

GICTTraining

Cisco Connect Toronto 2018 DevNet Overview

Cisco Canada

Similar to Sogeti Java Meetup - How to ensure your code is maintainable (20)

Maintainability Sogeti Qx Day 2020

Webinar–AppSec: Hype or Reality

Webinar – Streamling Your Tech Due Diligence Process for Software Assets

RSA Conference Presentation–Creating a Modern AppSec Toolchain to Quantify Se...

Why Automate the Network?

Bridging the Security Testing Gap in Your CI/CD Pipeline

The Future of IoT: Why We Need the Open Interconnect Consortium

Webinar–Reviewing Modern JavaScript Applications

Continuous Authority to Operate (ATO) with ThreadFix – Bringing Commercial In...

Software Bill of Materials - Accelerating Your Secure Embedded Development.pdf

The Future of IoT: Why We Need the Open Interconnect Consortium

How to Achieve NIST Compliance using SanerNow?

IoT Panel- Cisco and Intel

Webinar – Risk-based adaptive DevSecOps

Steps to Scale Internet of Things (IoT)

Mid market collaboration architecture presentation

Automate and Enhance Application Security Analysis

Cilium + Istio with Gloo Mesh

Certified Internet of Things Specialist ( CIoTS )

Cisco Connect Toronto 2018 DevNet Overview

Recently uploaded

CFD analysis is incredibly effective at solving mysteries and improving the performance of complex systems! Here's a great example: At a large natural gas-fired power plant, where they use waste heat to generate steam and energy, they were puzzled that their boiler wasn't producing as much steam as expected. R&R and Tetra Engineering Group Inc. were asked to solve the issue with reduced steam production. An inspection had shown that a significant amount of hot flue gas was bypassing the boiler tubes, where the heat was supposed to be transferred. R&R Consult conducted a CFD analysis, which revealed that 6.3% of the flue gas was bypassing the boiler tubes without transferring heat. The analysis also showed that the flue gas was instead being directed along the sides of the boiler and between the modules that were supposed to capture the heat. This was the cause of the reduced performance. Based on our results, Tetra Engineering installed covering plates to reduce the bypass flow. This improved the boiler's performance and increased electricity production. It is always satisfying when we can help solve complex challenges like this. Do your systems also need a check-up or optimization? Give us a call! Work done in cooperation with James Malloy and David Moelling from Tetra Engineering. More examples of our work https://www.r-r-consult.dk/en/cases-en/

CFD Simulation of By-pass Flow in a HRSG module by R&R Consult.pptx

R&R Consult

fundamentals of drawing and isometric and orthographic projection

jeevanprasad8

ASME IX(9) 2007 Full Version .pdf

AhmedHussein950959

KIT-601 Lecture Notes-UNIT-3.pdf Mining Data Stream

Dr. Radhey Shyam

Standard Reomte Control Interface - Neometrix

Neometrix_Engineering_Pvt_Ltd

The Project deals with the development of the computerized system for maintaining the regular records and services that are undertaken in the furniture business. This project titled "Web Based Integrated Furniture Showroom Management System" has been aimed to design and computerized system that can handle various activities are been carried out at the Furniture Showroom. This application has been developed using PHP Programming Language as its front end and the back end is MYSQL Server In the existing system all the activities and record maintenance of the furniture showroom are done manually by the manager. The Project deals with the development of the computerized system for maintaining the regular records and services that are undertaken in this most important and large business oriented furniture business. This Project also enables the users to perform all the day to day business operations in the furniture showroom business most efficiently.

Furniture showroom management system project.pdf

Kamal Acharya

Overview of the fundamental roles in Hydropower generation and the components involved in wider Electrical Engineering. This paper presents the design and construction of hydroelectric dams from the hydrologist’s survey of the valley before construction, all aspects and involved disciplines, fluid dynamics, structural engineering, generation and mains frequency regulation to the very transmission of power through the network in the United Kingdom. Author: Robbie Edward Sayers Collaborators and co editors: Charlie Sims and Connor Healey. (C) 2024 Robbie E. Sayers

HYDROPOWER - Hydroelectric power generation

Robbie Edward Sayers

Presented at NUS: Fuzzing and Software Security Summer School 2024 This keynote talks about the democratization of fuzzing at scale, highlighting the collaboration between open source communities, academia, and industry to advance the field of fuzzing. It delves into the history of fuzzing, the development of scalable fuzzing platforms, and the empowerment of community-driven research. The talk will further discuss recent advancements leveraging AI/ML and offer insights into the future evolution of the fuzzing landscape.

Democratizing Fuzzing at Scale by Abhishek Arya

abh.arya

Architectural Portfolio Sean Lockwood

seandesed

Explosives Industry manufacturing process.pdf

884710SadaqatAli

PHP and MySQL project on Hall Booking System is a web based project and it has been developed in PHP and MySQL and we can manage Payment, Booking, Inventory, Booking Dates, Customers and Hall from this project. The main objective to develop Hall Booking System PHP, MySQL, JAVA SCRIPT and BOOTSRAP Project is to overcome the manual errors and make a computerized system. In this project, there are various type of modules available to manage Customers, Booking, Payment. We can also generate reports for Booking, Payment, Booking Dates, Hall. Here the Payment module manage all the operations of Payment, Booking module can manage Booking, Inventory module is normally developed for managing Inventory, Booking Dates module manages Booking Dates operations, Customers module has been implemented to manage Customers. In this project all the modules like Payment, Booking Dates, Booking are tightly coupled and we can track the information easily. Ifyou are looking for Free Hall Booking System Project in PHP and MySQL then you can visit our free projects section. We can easily get the list of wedding halls & lawns in Nagpur. Also we have detailed contact information for some particular hall. But we cannot get the availability about hall. So background behind this web portal is that it gives the area wise listing of wedding halls & lawns with the detailed information of individual and also display for particular date the hall is available or not. Just dial is the system in which we can only find the name of Hall and Lawns in city. In just dial we cannot find Halls in specific area. This system cannot show all information about any Hall. This system is not able to book the Halls online. The A Web Based Hall Booking Management System is designed to overcome the disadvantage of previous system.We can easily get the list of Wedding Halls. But we cannot get the availability about Hall. So background behind this web portal is that it gives the area wise listing of Wedding Halls with the detailed information of individual and also display for particular date the Hall is available or not. This is a special type of web portal to easily get the information of all Wedding Halls in Nagpur which display separate calendar for separate Hall. For particular date the Hall. We can availability of Hall as well as Lawns detailed information about individuals Hall in our web portal . It provides all facilities to clients with lowest cost and lowest maintenance problems.

Hall booking system project report .pdf

Kamal Acharya

Digital Signal Processing Lecture notes n.pdf

AbrahamGadissa

Q.1 A single plate clutch with both sides of the plate effective is required to transmit 25 kW at 1600 r.p.m. The outer diameter of the plate is limited to 300 mm and the intensity of pressure between the plates not to exceed 0.07N / m * m ^ 2 Assuming uniform wear and coefficient of friction 0.3, find the inner diameter of the plates and the axial force necessary to engage the clutch. Q.2 A multiple disc clutch has radial width of the friction material as 1/5th of the maximum radius. The coefficient of friction is 0.25. Find the total number of discs required to transmit 60 kW at 3000 r.p.m. The maximum diameter of the clutch is 250 mm and the axial force is limited to 600 N. Also find the mean unit pressure on each contact surface. Q.3 A cone clutch is to be designed to transmit 7.5 kW at 900 r.p.m. The cone has a face angle of 12°. The width of the face is half of the mean radius and the normal pressure between the contact faces is not to exceed 0.09 N/mm². Assuming uniform wear and the coefficient of friction between the contact faces as 0.2, find the main dimensions of the clutch and the axial force required to engage the clutch. Q.4 A cone clutch is mounted on a shaft which transmits power at 225 r.p.m. The small diameter of the cone is 230 mm, the cone face is 50 mm and the cone face makes an angle of 15 deg with the horizontal. Determine the axial force necessary to engage the clutch to transmit 4.5 kW if the coefficient of friction of the contact surfaces is 0.25. What is the maximum pressure on the contact surfaces assuming uniform wear? Q.5 A soft surface cone clutch transmits a torque of 200 N-m at 1250 r.p.m. The larger diameter of the clutch is 350 mm. The cone pitch angle is 7.5 deg and the face width is 65 mm. If the coefficient of friction is 0.2. find: 1. the axial force required to transmit the torque: 2. the axial force required to engage the clutch; 3. the average normal pressure on the contact surfaces when the maximum torque is being transmitted; and 4. the maximum normal pressure assuming uniform wear. Q.6 A single block brake, as shown in Fig. 1. has the drum diameter 250 mm. The angle of contact is 90° and the coefficient of friction between the drum and the lining is 0.35. If the torque transmitted by the brake is 70 N-m, find the force P required to operate the brake. Q.7 The layout and dimensions of a double shoe brake is shown in Fig. 2. The diameter of the brake drum is 300 mm and the contact angle for each shoe is 90°. If the coefficient of friction for the brake lining and the drum is 0.4, find the spring force necessary to transmit a torque of 30 N-m. Also determine the width of the brake shoes, if the bearing pressure on the lining material is not to exceed 0.28N / m * m ^ 2

RS Khurmi Machine Design Clutch and Brake Exercise Numerical Solutions

Atif Razi

Cloud-Computing_CSE311_Computer-Networking CSE GUB BD - Shahidul.pptx

Md. Shahidul Islam Prodhan

The project developers created a system entitled Resort Management and Reservation System; it will provide better management and monitoring of the services in every resort business, especially D’ Rock Resort. To accommodate those out-of-town guests who want to remain and utilize the resort's services, the proponents planned to automate the business procedures of the resort and implement the system. As a result, it aims to improve business profitability, lower expenses, and speed up the resort's transaction processing. The resort will now be able to serve those potential guests, especially during the high season. Using websites for faster transactions to reserve on your desired time and date is another step toward technological advancement. Customers don’t need to walk in and hold in line for several hours. There is no problem in converting a paper-based transaction online; it's just the system that will be used that will help the resort expand. Moreover, Gerard (2012) stated that “The flexible online information structure was developed as a tool for the reservation theory's two primary applications. Computer use is more efficient, accurate, and faster than a manual or present lifestyle of operation. Using a computer has a vital role in our daily life and the advantages of the devices we use.

RESORT MANAGEMENT AND RESERVATION SYSTEM PROJECT REPORT.pdf

Kamal Acharya

Halogenation process of chemical process industries

MuhammadTufail242431

Natalia Rutkowska - BIM School Course in Kraków

bim.edu.pl

It is now-a-days very important for the people to send or receive articles like imported furniture, electronic items, gifts, business goods and the like. People depend vastly on different transport systems which mostly use the manual way of receiving and delivering the articles. There is no way to track the articles till they are received and there is no way to let the customer know what happened in transit, once he booked some articles. In such a situation, we need a system which completely computerizes the cargo activities including time to time tracking of the articles sent. This need is fulfilled by Courier Management System software which is online software for the cargo management people that enables them to receive the goods from a source and send them to a required destination and track their status from time to time.

Courier management system project report.pdf

Kamal Acharya

Blood Donation Management System is a web database application that enables the public to make online session reservation, to view nationwide blood donation events online and at the same time provides centralized donor and blood stock database. This application is developed by using ASP.NET technology from Visual Studio with the MySQL 5.0 as the database management system. The methodology used to develop this system as a whole is Object Oriented Analysis and Design; whilst, the database for BDMS is developed by following the steps in Database Life Cycle. The targeted users for this application are the public who is eligible to donate blood ,'system moderator, administrator from National Blood Center and the staffs who are working in the blood banks of the participating hospitals. The main objective of the development of this application is to overcome the problems that exist in the current system, which are the lack of facilities for online session reservation and online advertising on the nationwide blood donation events, and also decentralized donor and blood stock database. Besides, extra features in the system such as security protection by using password, generating reports, reminders of blood stock shortage and workflow tracking can even enhance the efficiency of the management in the blood banks. The final result of this project is the development of web database application, which is the BDMS.

Online blood donation management system project.pdf

Kamal Acharya

This project aims at the Introduction to app Service Management. This software is designed keeping in mind the user’s efficiency & ease of handling and maintenance , as and secured system over centralized data handling and providing with the features to get the complete study and control over the business. The report depicts the basics logic used for software development long with the Activity diagrams so that logics may be apprehended without difficulty. For detailed information, screen layouts, provided along with this report can be viewed. Although this report is prepared with considering the results required these may be across since the project is subjected to future enhancements as per the need of organizations.

Online resume builder management system project report.pdf

Kamal Acharya

Recently uploaded (20)

CFD Simulation of By-pass Flow in a HRSG module by R&R Consult.pptx

fundamentals of drawing and isometric and orthographic projection

ASME IX(9) 2007 Full Version .pdf

KIT-601 Lecture Notes-UNIT-3.pdf Mining Data Stream

Standard Reomte Control Interface - Neometrix

Furniture showroom management system project.pdf

HYDROPOWER - Hydroelectric power generation

Democratizing Fuzzing at Scale by Abhishek Arya

Architectural Portfolio Sean Lockwood

Explosives Industry manufacturing process.pdf

Hall booking system project report .pdf

Digital Signal Processing Lecture notes n.pdf

RS Khurmi Machine Design Clutch and Brake Exercise Numerical Solutions

Cloud-Computing_CSE311_Computer-Networking CSE GUB BD - Shahidul.pptx

RESORT MANAGEMENT AND RESERVATION SYSTEM PROJECT REPORT.pdf

Halogenation process of chemical process industries

Natalia Rutkowska - BIM School Course in Kraków

Courier management system project report.pdf

Online blood donation management system project.pdf

Online resume builder management system project report.pdf

Sogeti Java Meetup - How to ensure your code is maintainable

1. Sogeti Java Meetup Quality Engineering How to ensure your code is maintainable Peter Rombouts Senior Technology Consultant Sogeti

2. Security Classification © 2019 Sogeti. All rights reserved. 2 Presentation title | Date 2 Who am I https://peterrombouts.nl https://www.twitter.com/prombouts https://www.github.com/prombouts https://labs.sogeti.com Senior Technology Consultant Peter Rombouts Cloud Software Architect  Over 18 years of experience in IT  Passionate about Software Development, Architecture and Cloud SogetiLabs Fellow  Azure  Cloud  Cognitive Services  Software Development Multi Cloud QSD

3. Security Classification © 2019 Sogeti. All rights reserved. 3 Presentation title | Date Systems and software engineering — Systems and software Quality Requirements and Evaluation (SQuaRE) — System and software quality models ISO 25010 for short What is Software Quality?

7. Security Classification © 2019 Sogeti. All rights reserved. 7 Presentation title | Date Guidelines (SIG) 1. Write Short Units of Code 2. Write Simple Units of Code 3. Write Code Once 4. Keep Unit Interfaces Small 5. Separate Concerns in Modules 6. Couple Architecture Components Loosely 7. Keep Architecture Components Balanced 8. Keep Your Codebase Small 9. Automate Tests 10.Write Clean Code SIG was established in 2000. Its roots can be traced back to the Dutch National Research Institute for Mathematics and Computer Science (Centrum voor Wiskunde en Informatica [CWI]).

8. Security Classification © 2019 Sogeti. All rights reserved. 8 Presentation title | Date Guidelines (SIG) 1. Write Short Units of Code 2. Write Simple Units of Code 3. Write Code Once 4. Keep Unit Interfaces Small 5. Separate Concerns in Modules 6. Couple Architecture Components Loosely 7. Keep Architecture Components Balanced 8. Keep Your Codebase Small 9. Automate Tests 10.Write Clean Code SIG was established in 2000. Its roots can be traced back to the Dutch National Research Institute for Mathematics and Computer Science (Centrum voor Wiskunde en Informatica [CWI]).

10. Security Classification © 2019 Sogeti. All rights reserved. 10 Presentation title | Date What tooling is available? Analyses the(lines of) code. Normally used in automated pipelines. Examples: • SonarQube • PMD • NDepend • BinSkim Analyses the dependencies Mostly stand-alone products with notification capabilities. Also often used for checking licenses in open-source packages and if they comply with company policies.. Examples: • WhiteSource • WhiteSource Bolt • Snyk • Fossa • npm-audit • David (Node.JS) Static Code Analysis Software Composition Analysis

11. Security Classification © 2019 Sogeti. All rights reserved. 11 Presentation title | Date What tooling is available? Analyses the(lines of) code. Normally used in automated pipelines. Examples: • SonarQube • PMD • NDepend • BinSkim Analyses the dependencies Mostly stand-alone products with notification capabilities. Also often used for checking licenses in open-source packages and if they comply with company policies.. Examples: • WhiteSource • WhiteSource Bolt • Snyk • Fossa • npm-audit • David (Node.JS) Static Code Analysis Software Composition Analysis

20. Sogeti Java Meetup Quality Engineering Questions? peter.rombouts@sogeti.com https://peterrombouts.nl https://labs.sogeti.com Twitter @prombouts GitHub @prombouts

Editor's Notes

Quality in Use -> 5 characteristics related to outcomes of interaction with a system (including users) Product Quality Model -> Focuses on target computer system that includes the target software product.
Quality in Use -> 5 characteristics related to outcomes of interaction with a system (including users) Product Quality Model -> Focuses on target computer system that includes the target software product.
1. Modularity 2. Reusability 3. Analyzability 4. Modifiability 5. Testability
At the time of writing, in total SIG has analyzed 7.1 billion lines of code, and 72.7 million new lines of code are uploaded to SIG weekly. SIG is the only organization in the world certified by TÜViT for Trusted Product Maintainability. we have selected metrics that: • Are contained in a set as small as possible • Are technology-independent • Are easy to measure • Enable a meaningful comparison of real-world enterprise software systems
At the time of writing, in total SIG has analyzed 7.1 billion lines of code, and 72.7 million new lines of code are uploaded to SIG weekly. SIG is the only organization in the world certified by TÜViT for Trusted Product Maintainability. we have selected metrics that: • Are contained in a set as small as possible • Are technology-independent • Are easy to measure • Enable a meaningful comparison of real-world enterprise software systems
Many tools, what is the ‘golden record’ Another time, another session! C? XML? T-SQL, PL-SQL NIET gratis?
RDP Session
RDP Session
Edge: https://dev.azure.com/sogetiazurefundamentals/sogetiazurefundamentals/_build/results?buildId=258&view=whitesource.ws-bolt.build-tab.wss
Edge: https://dev.azure.com/sogetiazurefundamentals/sogetiazurefundamentals/_build/results?buildId=258&view=whitesource.ws-bolt.build-tab.wss
Edge: https://dev.azure.com/sogetiazurefundamentals/sogetiazurefundamentals/_build/results?buildId=258&view=whitesource.ws-bolt.build-tab.wss
Tool gap! Hard to interpret Will never replace pair programming. Peer review, Expert review.
Turning the Guidelines into PracticeEnsuring that your code is easy to maintain depends on two behaviors in your daily routine: discipline and setting priorities. Discipline Lower-Level (Unit) Guidelines Take Precedence Over Higher-Level (Component) Guidelines\ Remember That Every Commit Counts
Turning the Guidelines into PracticeEnsuring that your code is easy to maintain depends on two behaviors in your daily routine: discipline and setting priorities. Discipline Lower-Level (Unit) Guidelines Take Precedence Over Higher-Level (Component) Guidelines\ Remember That Every Commit Counts 15 -> SKIP INDIEN NO TIME

Sogeti Java Meetup - How to ensure your code is maintainable

Recommended

Recommended

More Related Content

What's hot

What's hot (20)

Similar to Sogeti Java Meetup - How to ensure your code is maintainable

Similar to Sogeti Java Meetup - How to ensure your code is maintainable (20)

Recently uploaded

Recently uploaded (20)

Sogeti Java Meetup - How to ensure your code is maintainable

Editor's Notes