Engineering Glossary

A lightweight, portable unit that packages an application and its dependencies, allowing it to run consistently across different environments.

Process of collecting, storing, and analyzing logs generated by Docker containers.

Mini-Heroku powered by Docker, helping developers quickly deploy their applications.

Software design approach focusing on modeling software to match a domain according to input from domain experts.

Cloud-native continuous integration and delivery platform that uses a simple YAML configuration file to define and execute pipelines.

Security testing methodology that analyzes a running application to find vulnerabilities.

IT infrastructure that can be programmatically allocated and managed, often associated with cloud computing and Infrastructure as Code.

Platform for application performance management, AI operations, cloud infrastructure monitoring, and digital experience management.

Amazon Elastic Compute Cloud; web service providing resizable compute capacity in the cloud.

Managed Kubernetes service for easy deployment on AWS without the need to install and operate your own Kubernetes clusters.

Distributed computing paradigm that brings computation and data storage closer to the location where it is needed.

Distributed, RESTful search and analytics engine capable of addressing a growing number of use cases.

Ability of a system to automatically scale up or down based on demand, crucial for efficient resource utilization in cloud environments.

Design approach where the architecture of a system evolves gradually as the system is developed.

Group that helps other teams to deliver software more effectively, often by providing tools and platforms.

Bundling of data with the methods that operate on that data, restricting direct access to some of an object's components.

Methodology used to test whether the flow of an application is performing as designed from start to finish.

Approach to protecting computer networks that are remotely bridged to client devices.

Use of software and architectural principles to integrate enterprise applications.

Overarching strategy and implementation of security measures across an entire organization.

Set of conditions under which a piece of software is developed, tested, or run, including hardware, configuration, and other software.

Dynamic-named value that can affect the way running processes will behave on a computer.

Different setups where software can be run, such as development, testing, staging, and production.

High-performance distributed proxy designed for cloud-native applications, often used as a service mesh component.

Temporary, disposable environments created on-demand for testing or development, ensuring consistency and isolation.

Acceptable amount of unplanned downtime or errors a service can experience without consequences.

Record of error messages generated by a software application or system, crucial for troubleshooting and monitoring.

Process of identifying, recording, and analyzing errors in software applications to improve reliability and user experience.

Open-source software for building AWS-compatible private and hybrid cloud computing environments.

Record of events taking place in the execution of a system to provide an audit trail.

Design paradigm in which the flow of the program is determined by events such as user actions, sensor outputs, or messages from other programs.

Approach to managing all aspects of IT infrastructure and operations through code.

Security issue where an API returns more data than necessary, potentially revealing sensitive information.

Approach to software testing that emphasizes the tester's freedom and creativity to uncover issues.

Tool for unattended mass installation of Linux systems, streamlining the process of setting up multiple machines.

Python library and command-line tool for streamlining the use of SSH for application deployment or systems administration tasks.

Design principle promoting immediate reporting of failures to enable quick detection and resolution of issues.

Instances where the compilation or integration process of software fails due to errors.

Error in evaluation where a condition is mistakenly flagged as true when it is actually false.

AWS serverless compute engine for containers that works with both Amazon ECS and Amazon EKS.

Property that enables a system to continue operating properly in the event of the failure of some of its components.

Anti-pattern where developers make decisions based on fear rather than best practices or data.

Practice of creating a separate branch in version control for each feature during development.

Technique allowing teams to modify system behavior without changing code, enabling gradual rollouts and A/B testing.

Technique in software development that turns certain functionality on and off during runtime, without deploying new code.

Practice of using feature flags to control and manage the lifecycle of features in software applications.

Technique in software development for turning features on or off quickly without changing code.

Tool for defining and running multi-container Docker applications, now replaced by Docker Compose.

Vulnerability that allows an attacker to include a file, usually exploiting dynamic file inclusion mechanisms implemented in the target application.

Application of DevOps principles to financial services, emphasizing security and compliance.

Practice bringing financial accountability to cloud spending, enabling teams to balance speed, cost, and quality in business decisions.

Measure of responsiveness that quantifies the experience users feel when trying to interact with unresponsive pages.

Discover the gold standard of system reliability: "five nines" uptime. Learn what 99.999% availability means, its importance, and the challenges in achieving this elite DevOps goal.

Test that sometimes passes and sometimes fails without any code changes, often causing frustration in CI/CD pipelines.

The smooth, continuous movement of code from development to production, emphasizing automation, collaboration, and rapid feedback to optimize software delivery.

Measurements used to understand and optimize the flow of work through a system, crucial in lean and agile methodologies.

Google's UI toolkit for building natively compiled applications for mobile, web, and desktop from a single codebase.

Open-source platform designed to simplify deploying and maintaining applications, offering a heroku-like experience using Docker containers.

Open-source tool for complete lifecycle management of physical and virtual servers, automating repetitive tasks and simplifying provisioning.

Set of metrics (lead time, deployment frequency, mean time to restore, change failure rate) used to measure software delivery performance.

Explore the concept of "four nines" in system reliability. Learn what 99.99% uptime means, its importance in DevOps, and strategies to achieve this high availability standard.

Security measure requiring two individuals to approve or perform an action, reducing the risk of fraud or errors.

Tool to easily build packages such as rpms, debs, and more, simplifying the process of creating software packages for different systems.

Comprehensive visibility into all parts of a software system, from front-end to back-end.

Cloud computing service that allows execution of code in response to events without complex infrastructure.

Type of testing that verifies that each function of the software application operates according to the specification.

Cloud computing execution model where developers run and manage application functionalities without the complexity of building and maintaining infrastructure.

Automated software testing technique that involves providing invalid, unexpected, or random data as inputs to a computer program.

Process or action of obtaining higher levels of access or permissions in a system.

Scalable distributed monitoring system for high-performance computing systems such as clusters and grids.

Japanese term meaning "the actual place," used in management to emphasize the importance of direct observation.

EU law on data protection and privacy for all individuals within the European Union and the European Economic Area.

Unauthorized or deceptive use of gift cards for financial gain, often involving stolen card numbers or exploitation of card systems.

Lightweight movable pointer to a commit in Git version control, allowing for parallel development and experimentation.

Storage location for a Git project, containing all the files and their revision history.

Web-based hosting service for version control using Git, offering collaboration features, code review, and integration with various development tools.

GitHub's built-in continuous integration and continuous delivery (CI/CD) platform, allowing automated build, test, and deployment workflows.

Web-based DevOps lifecycle tool that provides a Git-repository manager with wiki, issue-tracking and CI/CD pipeline features.

Framework applying DevOps best practices like version control, collaboration, compliance, and CI/CD to infrastructure automation.

Software agent that implements GitOps practices, reconciling the desired state in Git with the actual state of the system.

Git workflow that defines a strict branching model designed around the project release.

GitLab's built-in Continuous Integration/Continuous Deployment tool, allowing automated testing and deployment of code changes.

Open-source continuous delivery server to model and visualize complex workflows.

Pre-configured template for a virtual machine, used to create standardized instances.

Platform as a Service for developing and hosting web applications in Google-managed data centers.

Suite of cloud computing services running on the same infrastructure that Google uses internally.

The policies, controls, and standards to ensure compliance, security, and quality across the software delivery pipeline while maintaining agility and efficiency.

Powerful build automation tool that supports multi-language development and offers a flexible, plugin-based architecture for customization.

Open-source platform for monitoring and observability, allowing users to visualize, alert on, and understand metrics from various data sources.

Monitoring tool that stores numeric time-series data and renders graphs of this data on demand.

Health Insurance Portability and Accountability Act; U.S. legislation that provides data privacy and security provisions for safeguarding medical information.

Messages sent by clients to initiate actions on servers, forming the foundation of data communication on the World Wide Web.

Framework that allows for the distributed processing of large data sets across clusters of computers.

Tool for securely accessing secrets like API keys, passwords, and certificates, central to modern secret management strategies.

Continuous monitoring of a system or service to check if it's operational, often used in high-availability setups.

Package format for defining, installing, and upgrading complex Kubernetes applications, simplifying the deployment process.

Cloud platform as a service (PaaS) supporting several programming languages, used for deploying, managing, and scaling modern apps.

Characteristic of a system designed to avoid loss of service by reducing or managing failures.

Computing environment that uses a mix of on-premises, private cloud and third-party, public cloud services.

Approach where features are treated as experiments to validate business outcomes.