AWS DevOps Blog

Category: Amazon CodeGuru

Amazon-CodeGuru-CLI-Splash

Automating detection of security vulnerabilities and bugs in CI/CD pipelines using Amazon CodeGuru Reviewer CLI

Watts S. Humphrey, the father of Software Quality, had famously quipped, “Every business is a software business”. Software is indeed integral to any industry. The engineers who create software are also responsible for making sure that the underlying code adheres to industry and organizational standards, are performant, and are absolved of any security vulnerabilities that […]

Read More

A new Spark plugin for CPU and memory profiling

Introduction Have you ever wondered if there are low-hanging optimization opportunities to improve the performance of a Spark app? Profiling can help you gain visibility regarding the runtime characteristics of the Spark app to identify its bottlenecks and inefficiencies. We’re excited to announce the release of a new Spark plugin that enables profiling for JVM […]

Read More

Detecting security issues in logging with Amazon CodeGuru Reviewer

Amazon CodeGuru is a developer tool that provides intelligent recommendations for identifying security risks in code and improving code quality. To help you find potential issues related to logging of inputs that haven’t been sanitized, Amazon CodeGuru Reviewer now includes additional checks for both Python and Java. In this post, we discuss these updates and […]

Read More

Automate code reviews with Amazon CodeGuru Reviewer

A common problem in software development is accidentally or unintentionally merging code with bugs, defects, or security vulnerabilities into your main branch. Finding and mitigating these faulty lines of code deployed to the production environment can cause severe outages in running applications and can cost unnecessary time and effort to fix. Amazon CodeGuru Reviewer tackles […]

Read More
Code Guru

Detect Python and Java code security vulnerabilities with Amazon CodeGuru Reviewer

with Aaron Friedman (Principal PM-T for xGuru services) Amazon CodeGuru is a developer tool that uses machine learning and automated reasoning to catch hard to find defects and security vulnerabilities in application code. The purpose of this blog is to show how new CodeGuru Reviewer features help improve the security posture of your Python applications […]

Read More

Building an InnerSource ecosystem using AWS DevOps tools

InnerSource is the term for the emerging practice of organizations adopting the open source methodology, albeit to develop proprietary software. This blog discusses the building of a model InnerSource ecosystem that leverages multiple AWS services, such as CodeBuild, CodeCommit, CodePipeline, CodeArtifact, and CodeGuru, along with other AWS services and open source tools.

Read More

How Amazon CodeGuru Reviewer helps Gridium maintain a high quality codebase

Gridium creates software that lets people run commercial buildings at a lower cost and with less energy. Currently, half of the world lives in cities. Soon, nearly 70% will, while buildings utilize 40% of the world’s electricity. In the U.S. alone, commercial real estate value tops one trillion dollars. Furthermore, much of this asset class […]

Read More

Finding code inconsistencies using Amazon CodeGuru Reviewer

Here we are introducing the inconsistency detector for Java in Amazon CodeGuru Reviewer. CodeGuru Reviewer automatically analyzes pull requests (created in supported repositories such as AWS CodeCommit, GitHub, GitHub Enterprise, and Bitbucket) and generates recommendations for improving code quality. The Inconsistency Principle Software is repetitive, so it’s possible to mine usage specifications from the mining […]

Read More

Improve the performance of Lambda applications with Amazon CodeGuru Profiler

Amazon CodeGuru Profiler recently began providing recommendations for applications written in Python. Additionally, the new automated onboarding process for Lambda functions makes it even easier to use CodeGuru Profiler with serverless applications built on Lambda. This post highlights these new features by explaining how to set up and utilize Codeguru Profiler on an AWS Lambda function written in Python.

Read More
Multi-account CodeGuru profiling

Building a centralized Amazon CodeGuru Profiler dashboard for multi-account scenarios

This post shows you how to configure CodeGuru Profiler to collect multiple applications’ profiling data into a central account and review the applications’ performance data on one dashboard.

Read More