Harry Kimpel
  • About
  • Public Content/Speaking
  • Disclaimer

Articles

image from How to use CodeStream—and shift left your observability practice

How to use CodeStream—and shift left your observability practice

Created: Oct 31, 2023
Your adventure in the world of observability, performance optimization, and security begins here. In the fast-paced world of software development, the quest for smoother, more efficient applications feels like a never-ending adventure. But in this adventure, it’s not about slaying dragons or uncovering hidden treasures; it’s about ensuring your code performs seamlessly and your users are happy. As a developer, I’ve faced the challenges of reactive observability, where we typically identify and resolve issues only after they’ve disrupted our applications.
image from How to monitor Microsoft 365: Getting started

How to monitor Microsoft 365: Getting started

Created: Oct 17, 2023
One of the most popular and widely adopted business tool suites is Microsoft 365 (previously known as Microsoft Office 365) or just M365 for short. M365 offers a comprehensive array of applications and services, including email, document collaboration, video conferencing, and more, all hosted on the cloud. M365 provides numerous benefits in terms of flexibility and accessibility, but it also introduces new security, performance, and compliance challenges. This is why monitoring M365 applications is critically important for organizations of all sizes.
image from How to use IAST to prove exploitable vulnerabilities within your first-party code

How to use IAST to prove exploitable vulnerabilities within your first-party code

Created: Jul 31, 2023
Enabling a true “shift-left” in software security by empowering DevOps and security teams to work together In some recent articles I shared how you as a developer can add security to your skillset by using New Relic capabilities. I also dug deeper into ways on how to mitigate hidden security risks of open source software libraries. Both of these blogs focused on third-party code and how it can impact the security of your software applications.
image from Mitigate the hidden security risks of open source software libraries

Mitigate the hidden security risks of open source software libraries

Created: Jun 19, 2023
Check your source code for any vulnerable libraries and start mitigating these issues Open source software libraries have become an integral part of modern software development. They are widely used by developers to accelerate the development process and reduce costs. On average, open source libraries make up 70-90% of an entire software application. However, the use of open source libraries also comes with hidden security risks that could potentially harm your organization’s reputation and financial well-being.
image from Level up your security skillset with New Relic

Level up your security skillset with New Relic

Created: May 15, 2023
Not every developer is a security expert, but use these tips to improve your skills In today’s digital age, security is a major concern for individuals and organizations alike. With the increasing number of cyber-attacks and data breaches, it’s crucial for developers to have a thorough understanding of security best practices. The security of an application is of the utmost importance, as it can directly impact the safety and privacy of users’ data.
image from Updated Snyk Webhook Integration with New Relic

Updated Snyk Webhook Integration with New Relic

Created: Apr 12, 2023
In a recent post I wrote about the ability to send all your application security vulnerabilities found by Snyk directly to your New Relic observability platform. Now, New Relic made it even easier to achieve that by providing a dedicated security ingest processor that ‘understands’ the payload from a Snyk webhook. All the details on how to get started, create and configure a Snyk webhook to send into your New Relic account is provided in this docs page: https://docs.
image from How to send Snyk vulnerability data to the New Relic observability platform

How to send Snyk vulnerability data to the New Relic observability platform

Created: Oct 21, 2022
Security and observability data go hand in hand when it comes to application health. If you can put those two sources of data behind a single pane of glass you can make your life a lot easier. By leveraging the different options that the Snyk platform provides, you can send all your application security vulnerabilities found by Snyk directly to your New Relic observability platform. Let’s see how! Prerequisites Here are all the necessary links to get started:
image from Snyk Integration Capabilities with WebHooks - some examples

Snyk Integration Capabilities with WebHooks - some examples

Created: Sep 19, 2022
TL;DR Integrate your Snyk application security platform by leveraging webhooks into various other external systems such as Microsoft Teams, Azure DevOps Boards, New Relic, DataDog and Splunk. Here are all the necessary links to get started: GitHub Repository: https://github.com/harrykimpel/snyk-webhook-subscription Microsoft Teams: https://github.com/harrykimpel/snyk-webhook-subscription/blob/main/azure-function-microsoft-teams.cs Azure DevOps Boards: https://github.com/harrykimpel/snyk-webhook-subscription/blob/main/azure-function-azure-boards.cs New Relic: https://github.com/harrykimpel/snyk-webhook-subscription/blob/main/azure-function-newrelic.cs DataDog: https://github.com/harrykimpel/snyk-webhook-subscription/blob/main/azure-function-datadog.cs Splunk: https://github.com/harrykimpel/snyk-webhook-subscription/blob/main/azure-function-splunk.cs Background In the past few weeks I have been quite busy in my spare time to think about new ways of integrating the Snyk application security platform with various other systems and especially also observability platforms.
image from Forward Snyk Vulnerability data to Splunk Observability Cloud

Forward Snyk Vulnerability data to Splunk Observability Cloud

Created: Sep 13, 2022
TL;DR Leverage a Prometheus Exporter to send all your application security vulnerabilities from Snyk into Splunk. Here are all the necessary links to get started: Snyk Exporter: https://github.com/lunarway/snyk_exporter Splunk OpenTelemetry Collector for Kubernetes: https://docs.splunk.com/Observability/gdi/opentelemetry/install-k8s.html#otel-install-k8s Update (2022-09-22) The option that I am describing here is just one way to achieve this. There might even be a more straight forward option available that I started to describe in a more recent post. Please find an additional approach in my post Snyk Integration Capabilities with WebHooks - some examples.
image from How to send Snyk Vulnerability data to New Relic using Prometheus?

How to send Snyk Vulnerability data to New Relic using Prometheus?

Created: Jul 26, 2022
TL;DR By leveraging a Prometheus Exporter you can send all your application security vulnerabilities from Snyk into New Relic. Here are all the necessary links to get started: Snyk Exporter: https://github.com/lunarway/snyk_exporter New Relic Kubernetes integration: https://docs.newrelic.com/docs/infrastructure/prometheus-integrations/get-started/send-prometheus-metric-data-new-relic/ New Relic Instant Observability Quickstart: https://newrelic.com/instant-observability/?search=snyk Update (2022-09-22) The option that I am describing here is just one way to achieve this. There might even be a more straight forward option available that I started to describe in a more recent post.
  • ««
  • «
  • 1
  • 2
  • 3
  • 4
  • 5
  • »
  • »»
Tweets by harrykimpel
© Harry Kimpel 2023
Disclaimer: The opinions expressed herein are my own personal opinions and do not represent my employer’s view in any way.