Professional Documents
Culture Documents
Development Good Prectices Software Development Best Practices
Development Good Prectices Software Development Best Practices
Development Good Prectices Software Development Best Practices
Use rubocop. Always stay up to date on the OWASP Top README.md must include these sections:
Commit linter configuration to project repo Ten security risks. Summary, Prerequisites, Infrastructure,
for the team to share. Integrate static analysis security tools into ENV Variables, Cron, Gotchas
Ensure that linter configuration is integrated CI. Dependency auditing is an easy place to Use semantic versioning.
into your IDE. start. Enable Github's Dependabot. CHANGELOG.md should follow https://keep‐
Use the Qualys SSL Server Test to ensure achangelog.com/en/1.0.0/
Code Quality : Static Analyzers that SSL is correctly configured.
Provide well-formatted and sensical seed
CodeClimate Static analysis of Always require SSL. Let's Encrypt provides data.
code quality, SaaS free, secure certificates.
Diagram complex processes. Whimsical is
SonarQube Comprehensive Use bundler-audit and brakeman great for this.
static analysis of APIs should have comprehensive Swagger
code quality, can run Testing
documentation.
locally Unit Tests : test the output of a single given Frontends should have wireframes prior to
Ruby Critic Ruby static analysis state writing code.
gem Functional Tests : test the output of Pivotal / Jira stories document application
Rubocop Code style analysis changes to state evolution.
& feedback, can Integration Tests : test the results of
Always consider the perspective of a
integrate with IDE cross-service interactions from the user's
developer who has never touched this
Semgrep Static analysis for perspective. Use Cypress.
project, but needs to rescue it because
lots of languages Implement continuous integration, which you’re on vacation.
rails_best_practices Check the quality of runs all tests, performs static analysis, and
your Ruby on Rails automates security audits.
code Ensure that test coverage is over 95%.
cheatography.com/imnotquitejack/