, 14 tweets, 13 min read Read on Twitter
Welcome to another session of #AndelaTechTuesday, a weekly thread of tech tips, lessons, tutorials etc. from some of our Senior Software Engineers.
Our guest for today is @tsmalz, a Senior Technical Team Lead on our internal Engineering team.
#AndelaTechTuesday #ThisIsAndela
.@tsmalz is a Senior Engineer with over 9 years of experience, started as a software engineer before moving into DevOps in 2014. He's the Platform Team Lead on our internal Engineering team. He claims to love collaborating and solving problems.😉
#AndelaTechTuesday #ThisIsAndela
Olatunde will be talking about "Useful Tips for Application Delivery" in today's session of #AndelaTechTuesday.
Follow this thread for the tips 👇🏽
#ThisIsAndela
1. Ensure application secrets are not pushed to git repository in plain text. You can achieve this by:
- Git “ignoring” any application secrets file and leaving just an example file.

#AndelaTechTuesday #ThisIsAndela
- Setting up git commit hooks to scan for any secrets. Here is a link to an example of a tool that does this: github.com/awslabs/git-se…
#AndelaTechTuesday #ThisIsAndela
2. Setup repository status checks. Here are details around github status checks help.github.com/en/articles/en….
#AndelaTechTuesday #ThisIsAndela
3. Ensure every entity (engineers, application, basically anyone accessing the system) has the exact access level required to perform it’s designated tasks and ideally every entity in the system should have their own access credentials.
#AndelaTechTuesday #ThisIsAndela
This would help enforce these access levels and reduce risk of secrets exposure with a controllable blast radius. Basically, just think “least privilege principle”. Useful link: welivesecurity.com/2018/07/02/pri…
#AndelaTechTuesday #ThisIsAndela
4. Ensure application log levels are implemented correctly and sensitive data (application secrets and user data) isn’t logged especially in production.

5. Ensure application logging is done asynchronously (non-blocking).
#AndelaTechTuesday #ThisIsAndela
6. Depending on the context, consider introducing changes to applications in incremental chunks ensuring backward compatibility using feature toggles/gating when required.
Useful link: martinfowler.com/articles/featu…
#AndelaTechTuesday #ThisIsAndela
7. Try to apply changes to application dependencies like application “backing services” and infrastructure in a reproducible fashion.
#AndelaTechTuesday #ThisIsAndela
Consider Infrastructure as Code tools, Scripts, make sure it is reproducible and changes can be tracked using whatever is practical depending on the context.
#AndelaTechTueday #ThisIsAndela
8. Application secrets rotation is always nice to have in place.
9. Application health-checks go a long way in achieving application resilience.

#AndelaTechTuesday #ThisIsAndela
We are hiring Software Engineers across all experience levels, come join our amazing team of world-class engineers, take the first step by applying here: bit.ly/2Ro9wM6
#AndelaTechTuesday #ThisIsAndela
Missing some Tweet in this thread?
You can try to force a refresh.

Like this thread? Get email updates or save it to PDF!

Subscribe to Andela Nigeria
Profile picture

Get real-time email alerts when new unrolls are available from this author!

This content may be removed anytime!

Twitter may remove this content at anytime, convert it as a PDF, save and print for later use!

Try unrolling a thread yourself!

how to unroll video

1) Follow Thread Reader App on Twitter so you can easily mention us!

2) Go to a Twitter thread (series of Tweets by the same owner) and mention us with a keyword "unroll" @threadreaderapp unroll

You can practice here first or read more on our help page!

Follow Us on Twitter!

Did Thread Reader help you today?

Support us! We are indie developers!


This site is made by just three indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3.00/month or $30.00/year) and get exclusive features!

Become Premium

Too expensive? Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal Become our Patreon

Thank you for your support!