I only found that the voltdb client in the maven repo, but not fount the voltdb which contains the VoltProcedure.
It will be hard for me to manage the dependencies with maven, gradle or other tools.
Is there any deep reason for that? voltdb guys.
I work at VoltDB. We have a feature request ticket to add the voltdb-.jar to the maven repo, so there is no deep reason it is not there yet, only limited time and resources.
You may want to review our recently updated instructions for setting up Eclipse for running JUnit tests of stored procedures, or running procedures with the debugger. It was recently moved to our examples/HOWTOs folder provided with the kit, and is available on github here.
Are you a working with anyone in our organization to evaluate VoltDB for a project? We have Solution Architects that can assist you with technical issues if you'd like to contact us at info (at) voltdb (dot) com.
Best regards,
Ben
Related
I found this repo on github: https://github.com/apache/cassandra
And I would like to import it into intellij and build it in order to run some code locally that I want to build on top of this github code. But there are no instructions for building it.
Where are the instructions?
Thank you for taking interest in writing Cassandra code.
The instructions for building Cassandra from source code including IDE integration is documented in the Contributing to Cassandra page on the official Apache Cassandra website. There are instructions for IntelliJ, NetBeans and Eclipse.
It's not as straightforward as we would like because everyone's laptop/desktop is different so I would recommend you join the ASF Slack to get help in real-time from other Cassandra contributors in the #cassandra-dev channel. For details, see the Community section of the Cassandra website. Cheers!
👉 Please support the Apache Cassandra community by hovering over cassandra then click on the Watch tag button. 🙏 Thanks!
I have a pipeline where I checkout code from git, build artifacts and publish the artifacts to Nexus.
Now before I deploy the artifacts, I want to scan them for any vulnerability. How I can achieve it. Are there some tools available.
What you described is basically the use of Nexus Lifecycle and Firewall tools. They scan items as they enter your repository manager.
I suggest reading more about them here:
https://www.sonatype.com/product-nexus-lifecycle
https://www.sonatype.com/product-nexus-firewall
Note neither of them are free services, they require a license.
Nexus is to late. You should scan the artefacts in Jenkins when you have both the sources and binaries to your disposal. There should be tutorials how to do something like Jenkins-Sonar Qube integration.
Imagine following. You have scanned an artefact and you see vulnerabilities. What are you doing then? Are you willing to remove it from repository? Imagine the problems you will generate this way. And the dev team will say, that they did not see the results of your scan so they could not act upon it and now this artefact is going to be deployed...
After RnD, I found a possible solutions. Answer provided by #joedragons is also useful. I guess jforg xray is also good a solution.
https://jfrog.com/xray/
JFrog Xray is a continuous security and universal artifact analysis tool, providing multilayer analysis of containers and software artifacts for vulnerabilities, license compliance, and quality assurance. Deep recursive scanning provides insight into your components graph and shows the impact that any issue has on all your software artifacts.
Facing an issue in building the application in Jenkins Pipeline due to SAP security JARS. Attached screenshot as required. In Local, this is working fine as I have the JARS (Downloaded from SAP Portal)installed in the machine. Please let me know.
Note: One of the application JAR is missing from our application as in the screenshot which I know about it. The SAP security related JAR is what I am concerned about.
Thanks
Arun
your question was already answered here Uploading custom jar to cx-server nexus
Kind regards
Florian
What's the dealio on importing data from a legacy issue tracker system into Gitlab CE?
Do tools exist for this? Schemas? Suggestions?
Please notice that this is really a legacy issue tracker system. It predates bugzilla, and runs on an old IIS server and SQL Server 2000).
(Say whatever you want about this setup, but it's nothing we haven't already heard.)
You should be using the REST APIs to create your migrations.
Generally recommendation questions are off topic, so if I mention
there is a redmine issue importer and there are issue tracker issues on the gitlab ce issue tracker requesting this. This sounds like a good kind of thing to make as a community contribution if it's a popular tool.
But if it's not, and you're the only person in the world using your tracker, you probably will want to study the python based redmine issue importer it may server as an example for you to write your own REST-api based tool that reads your db and creates the Gitlab Issue Tracker issues. You don't want and don't need to know the Gitlab side's PostGres schema. It will change over time anyways.
Are there security concerns with using Maven? I use Ant today for my main project, but I do use Maven for my "samples" project where I write program spikes. I do like some parts of Maven, but have a concern with downloading my jars through the tool. Is this an unfounded concern? How secure is "http://repo1.maven.org/maven2/"? Is there a more secure way of using the tool?
Thanks.
It's pretty secure and standard. If ever the security of http://repo1.maven.org/maven2/ is compromised, there will have big repercussion in Java devs. I never heard that this site is hacked.
That said, you are not bounded by default repository. You can configure your own repository using Nexus, Artifactory and install safe artifacts manually to them. You may also block remote repositories using Nexus/Artifactory setting. Although, I never needed to do this. But look here, perhaps it's possible.
Please note that you will have to block your local repository to use "repo1", else the local repository will download artifacts from there by default.
Edit 1: added missing link