Blog

Gemnasium supports Yarn (and what it is)

You might have heard of Yarn before. It’s a new package manager for JavaScript. Gemnasium now supports Yarn, and we have support for it coming in the next few days for Gemnasium Enterprise! You can get your dependencies monitored for all your JavaScript projects using Yarn now. We’ll notify you if you use an outdated npm package or one that has security vulnerabilities, with details on how to fix it.

Product update: what have we done recently and what are we planning?

Gemnasium has been helping a lot of people to keep their applications stay safe through dependency managements for 6 years now. In the last year, we worked hard but didn’t communicate remotely as well. We intend to change that with more frequent updates about what we do and what we plan. Let’s go through what’s been happening in the last year or so, and then talk about what’s coming.

Opening the Gemnasium Enterprise Beta

Gemnasium has been around for a few years now, and we’re thankful to have such a huge impact on your projects, private or open source, and the community as a whole. Over the years, we have helped over 500 000 projects ensure that their dependencies are up to date and are not affected by known security issues on their dependencies. You read that right: 500 000. This gave us an incredible chance to talk with a lot of you and understand better your needs.

From Monolithic to Micro-services, Part 4

We’ve covered a lot of ground in this series of articles, and are now on the final chapter. We’ve looked at the reasons we decided to make the move from a monolithic app to a micro-services approach, the criteria we used to select our toolset, and how we implemented the transition. Finally, we want to share with you how we use our new architecture, and share some of the code we have been writing.

From Monolithic to Micro-services, Part 3

Genesis: Making the Transition For those who have been following this blog series, you’ll know of Gemnasium founder Philippe Lafoucrière’s visit to the WAQ conference in Quebec city, and his stint as guest speaker with Jean-Philippe Boily of Metrics Watch. This conversation provided the impetus for this blog series, which covers Gemnasium’s shift from a monolithic app to a micro-services approach. For those unfamiliar with the topics at hand, I recommend a review of the previous two entries.

From Monolithic to Micro-services, Part 2

Criteria for Architecture In this segment of our larger piece, we will cover the criteria we used to create and plan our architecture. Moving from a monolithic app to microservices isn’t just a matter of code, it is also and above all a question of architecture. Without a cohesive plan, and a strong understanding of the potential pitfalls and gains of a large transition such as this one, it is bound to falter.

From Monolithic to Micro-services (Part 1 / 4)

Gemnasium’s founder, Philippe Lafoucrière, recently had the opportunity to attend and speak at the Web à Québec 2016 conference in Quebec City a month past. The WAQ conference, as it is known, is the largest gathering of francophone entrepreneurs in America, with guests arriving from not only Québec, but also France, Belgium, Africa, and the Caribbean. Because not everyone could attend the event, and the topic shared by Philippe is essentially part of Gemnasium’s life story, we thought our readers might find it of interest.

A New Partnership: Node Security Project

Gemnasium is proud to announce our new partnership with Node Security Project. Node Security Project(NSP) is an integral part of the Node.js community, dedicated to ensuring that security is a core priority for Node. The Node Security Project offers tools to ensure the security of Node projects, as well as a place to report new security threats, as well as the solutions to them. This partnership offers Gemnasium projects using npm (node package manager) the added protection of NSP security advisories.

Simplified Pricing

Gemnasium has always been committed to providing value and ensuring our customers see return for their investment. This has led to some tinkering with our pricing model in the past, in order to ensure that our customers could get the features they wished, without paying more than necessary. Originally, our pricing model was based simply on private projects hosted on Github. In order to provide those with public projects access to premium features, we added an option to ‘buy’ features, labeled as ‘slots’.

Bitbucket support

Hello readers! It has been a while since our last post, and we apologize for that. We will be renewing our efforts to continually inform you and others in the development community by posting on a regular basis. Not only do we hope to share our successes, but also provide industry insight, and help our users make the most out of our product. But this blog report isn’t just to renew our commitment to our readers, it is to announce an exciting development for Gemnasium.