User Story Analysis

The Problem There is a very common interaction that I’ve seen repeated in pretty much every project in every company I have ever worked for. It’s when a tester logs a bug and the developer argues that, actually, it’s working how it is supposed to work. The result of this is often a passive aggressive … Continued

Protocol Breaks

Little Bobby Tables Back in the day – and even today – one of the most common security flaws in websites was a “SQL Injection”. It’s where an attacker uses especially crafted data and puts it into innocent-looking fields within a form that are then used to construct a database query. Or, as XKCD readers … Continued

A Day In The Life

The most fun you can have whilst being judged by strangers. Let me start by saying that this is a misnomer. It’s a Half-day In The Life. A whole day would be intense, inconvenient for attendees, not to mention expensive for Surevine! I completed my Day In The Life about 8 months ago, and I … Continued

Coworking, London style

Back in 2008 when we founded Surevine, it seemed natural to us that the collaboration tools we build would enable how we organise ourselves. We set up Surevine to bring the best of what was then emerging in the participative consumer social web (who can remember web2.0?) to the workplace. People were just starting to … Continued

Surevine back in America!

The past two weeks have seen Surevine‘s leadership across the pond in Washington making appearances at both the Billington Cybersecurity Summit and the ISAO Standards Organisation International Information Sharing Conference.   Billington Cyber Summit   Day One Our CEO & Founder, Stuart Murdoch, headed out a day early as Surevine were invited, along with other … Continued

DRY principle with docker-compose

An oft-repeated and sensible principle in software engineering is DRY, or “don’t repeat yourself”. Here we will apply this principle to Docker compose files.

Building Docker images with Maven

To package our application, we’re going to be using Docker. The natural build language for Docker images are Dockerfiles, so we will use Spotify’s Dockerfile Maven plugin. This post is part of the “Spring Boot Primer” series. To make packaging as simple as possible, we will bind the Maven plugin’s build phases to the default build phases, so … Continued

Spring Boot 2.0 primer

Spring Boot is a very popular Java framework for creating standalone, production ready web applications. In this series of blog posts, we are going to walk through using Spring Boot 2.0 to build and deploy a simple CRUD REST application.

Keeping an eye on your website

I recently got embroiled in a discussion about NHS IT, and commented how people in the NHS need simple, cheap tools to help keep their head above water on maintaining systems, not necessarily complex security tooling. One practical example raised was website security, with a quick Google search revealing a number of websites under the … Continued