The previous chapter in this WhiteHat Security series discussed Codebase as the first step of the Twelve-Factor App and defined a security best practice approach for ensuring a secure source control system. Considering the importance of applying security in a modern DevOps world, this next chapter examines the security component of step two of the Twelve-Factor methodology. Here follows some actionable advice from the WhiteHat Security Addendum Checklist, which developers and ops engineers can follow during the SaaS build and operations stages ...
Rookout announced a production debugger for AWS Lambda, Amazon's leading serverless computing platform. Software engineers will be able to painlessly debug their live serverless functions.
Rookout works like a debugger on the live serverless code on Lambda in production. Using its friendly IDE, a developer can simply click on the part of code they want to instrument and then get a full stack trace or any variable state, all from the live code without stopping or changing anything in the environment. Rookout offers visibility to serverless code and how it actually behaves in the real world, not just in a simulated environment.
"Serverless is a natural evolution path for cloud computing," said Rookout co-founder and CEO Or Weis. "But it presents new challenges when it comes to debugging. Rookout lifts the veil and lets developers get full debug data from their production Lambda functions while they run serverlessly."
"The sheer speed of serverless development means that complex bugs occur in production," said Liran Haimovitch, Rookout co-founder and CTO. "Bugs happen, and they cost a lot of money. Now with Rookout, serverless doesn't have to be a black box; developers can see inside Lambda and find out exactly what's really happening in production, letting them take full advantage of the new serverless infrastructures."