{"id":9760,"date":"2020-08-20T02:00:06","date_gmt":"2020-08-20T09:00:06","guid":{"rendered":"http:\/\/softwareengineeringdaily.com\/?p=9760"},"modified":"2020-08-14T12:47:13","modified_gmt":"2020-08-14T19:47:13","slug":"iac-static-analysis-with-bridgecrew","status":"publish","type":"post","link":"https:\/\/softwareengineeringdaily.com\/2020\/08\/20\/iac-static-analysis-with-bridgecrew\/","title":{"rendered":"IAC Static Analysis with Bridgecrew"},"content":{"rendered":"

Infrastructure as Code (IaC) refers to managing infrastructure programmatically and with code, rather than manually and ad hoc. IaC tools such as Terraform empower developers to build robust and scalable infrastructure declaratively. They automate much of the under-the-hood work that may formerly have required far more time and resources to undertake.\u00a0<\/span><\/p>\n

The increased power to provision infrastructure resources with code has also come with drawbacks- namely, expanded possibilities for misconfiguration. Misconfigurations can range from small to severe, potentially putting an organization at risk for data breaches or failure of compliance with regulations. Whether those misconfigurations occur in the name of rapid deployment, or are merely an oversight due to a complex setup process, the resulting security vulnerabilities may leave resources exposed and put an organization\u2019s data at risk. A recent <\/span>report from Verizon<\/span><\/a> identified misconfigurations in cloud resources as one the top cause of incidents and breaches.\u00a0<\/span><\/p>\n

Whether developers are or aren\u2019t aware of these risks, it\u2019s not realistic to expect users of IaC tools to possess comprehensive knowledge of all possible configuration issues they may face when building or maintaining their system. <\/span>Recent research <\/span><\/a>from Bridgecrew shows that nearly one in two infrastructure-as-code modules contains misconfigurations.<\/span><\/p>\n

One common issue affecting IaC systems is the use of default configurations offered by cloud providers in production. In pursuit of a smoother user experience and a more forgiving learning curve, cloud providers and SaaS providers offer default IaC configurations for their platforms. While this helps developers iterate and deploy faster, these configurations do not always adhere to production best practices.\u00a0<\/span><\/p>\n

\u201cWhat we see is when users are using these default configurations and bring it into their production environments, they forget that sometimes these default configurations\u2019 purpose was to get you up and running very fast and not necessarily to a point where you can basically build the most secure system.\u201d<\/span><\/p>\n

-Guy Eisenkot, Engineer at Bridgecrew<\/span><\/a><\/em><\/p>\n

While security and access policies represent highly visible areas of concern, Bridgecrew\u2019s tools can test for issues across several categories. The scope of issues originating in improperly formed IaC code spans a variety of use cases. <\/span>Bridgecrew\u2019s analysis<\/span><\/a> of misconfigurations found in code in the Terraform Registry indicates that the most common issues relate to Backup and Recovery, Audit Logging, and Encryption. Each of these domains is critical to creating and maintaining robust, compliant, and adequately governed cloud-based software.\u00a0<\/span><\/p>\n

\"\"<\/a><\/p>\n

Bridgecrew addresses those risks and misconfigurations by both monitoring cloud resources in runtime and by shifting cloud security left\u2014to the IaC level in buildtime. Their platform provides scanning or static analysis of cloud provisioning frameworks such as Terraform, Kubernetes, CloudFormation, ARM templates, and Serverless technologies. \u201c<\/span>Static analysis\u201d refers to a variety of analytic techniques to identify issues with \u201cstatic\u201d code- that is, it can evaluate potential issues without executing the code. When a developer uses code to provision infrastructure, a similar process can be performed to check for known compliance and security policy violations.<\/span><\/p>\n

\u201cWe start seeing that when cloud misconfigs are fixed in runtime\u2014for example, changing a publicly exposed S3 bucket to private\u2014it\u2019s highly likely (about a 70% chance) that it\u2019ll resurface in the near future. The problem is that when clouds are orchestrated by inherently misconfigured code, they\u2019ll continue to be configured incorrectly in production.\u201d<\/span><\/p>\n

Integrating IaC and static analysis tools into an organization\u2019s everyday workflow can help prevent these issues before the code gets into runtime, and can cut down on cloud drift-related vulnerabilities.<\/span> Integrating IaC checks into, for example, pull request checks or within a Jenkins build job helps prevent misconfigurations from being deployed in the first place.<\/span><\/p>\n

\"\"<\/a><\/p>\n

\"\"<\/a><\/p>\n

Bridgecrew identifies current issues in production cloud resources and infrastructure configuration and presents these issues as \u201cincidents\u201d on a user dashboard. Bridgecrew integrates with source code repositories and is built to scan IaC files as part of a CI\/CD workflow. When incidents are identified, Bridgecrew offers options to fix the issue, including opening pull requests for code level issues, or automated fixes through \u201cPlaybooks\u201d- a known series of steps to fix common cloud security issues in runtime. <\/span>This approach, which they call security-as-code, enables developers to implement fixes right back into their workflow, saving them time triaging, investigating, and remediating issues.<\/span><\/p>\n

\"\"<\/a><\/p>\n

In addition to their SaaS platform, Bridgecrew invests heavily in open source projects\u2014namely with their IaC scanner <\/span>Checkov<\/span><\/a>. Checkov can be run from the command line, or integrated as part of a CI\/CD workflow (for example, in Jenkins or CircleCI).\u00a0<\/span><\/p>\n

\"\"<\/a><\/p>\n

Bridgecrew\u2019s team released Checkov with a set of known checks the tool could scan for and continues to add more. As an open-source tool, Checkov has grown and evolved as other developers have contributed their issues, and Bridgecrew encourages Checkov users to contribute to its robust community with over 600k downloads to date.<\/span><\/p>\n

\u201c…we believe that everybody, everybody should have the access to good visibility around their configuration and configuration errors. In that sense, open-sourcing Chekhov was a no-brainer.\u201d<\/span><\/p>\n

Guy Eisenkot, Engineer at Bridgecrew<\/span><\/a><\/em><\/p>\n

Infrastructure-as-code tools empower developers to solve problems traditionally in the domain of hardware or network security specialists. The Bridgecrew platform and Checkov help developers ensure that their infrastructure is secure, compliant, and well-governed. The growth of the Checkov open-source community is indicative of the value that shared knowledge about IaC best practices provides to developers, whether they are building small-scale projects, growing a startup, or innovating within large-scale corporations.<\/span><\/p>\n

For more on Bridgecrew and Checkov, be sure to check out our <\/span>interview with Guy Eisenkot of Bridgcrew<\/span><\/a>, or try Bridgecrew out for yourself at <\/span>bridgecrew.io<\/span><\/a>. For more on Infrastructure as Code concepts and tools, check out our archives of IaC-related episodes at <\/span>softwareengineeringdaily.com.<\/span><\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

Infrastructure as Code (IaC) refers to managing infrastructure programmatically and with code, rather than manually and ad hoc. IaC tools such as Terraform empower developers to build robust and scalable infrastructure declaratively. They automate much of the under-the-hood work that may formerly have required far more time and resources to undertake.\u00a0 The increased power to<\/p>\n","protected":false},"author":53,"featured_media":9761,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"_exactmetrics_skip_tracking":false,"_exactmetrics_sitenote_active":false,"_exactmetrics_sitenote_note":"","_exactmetrics_sitenote_category":0,"jetpack_post_was_ever_published":false,"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"IAC Static Analysis with Bridgecrew @bridgecrewio @guysenkot","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":true,"jetpack_social_options":{"image_generator_settings":{"template":"highway","enabled":false}}},"categories":[1363,83,2143],"tags":[3728,3972,3975,3974,3727,3971,476,3973],"class_list":["post-9760","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-all-episodes","category-articles","category-exclusive-content","tag-bridgecrew","tag-checkov","tag-ci-cd-workflow","tag-cloud-resources","tag-guy-eisenkot","tag-iac","tag-monitoring","tag-terraform"],"jetpack_publicize_connections":[],"acf":[],"yoast_head":"\nIAC Static Analysis with Bridgecrew - Software Engineering Daily<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/softwareengineeringdaily.com\/2020\/08\/20\/iac-static-analysis-with-bridgecrew\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"IAC Static Analysis with Bridgecrew - Software Engineering Daily\" \/>\n<meta property=\"og:description\" content=\"Infrastructure as Code (IaC) refers to managing infrastructure programmatically and with code, rather than manually and ad hoc. IaC tools such as Terraform empower developers to build robust and scalable infrastructure declaratively. They automate much of the under-the-hood work that may formerly have required far more time and resources to undertake.\u00a0 The increased power to\" \/>\n<meta property=\"og:url\" content=\"https:\/\/softwareengineeringdaily.com\/2020\/08\/20\/iac-static-analysis-with-bridgecrew\/\" \/>\n<meta property=\"og:site_name\" content=\"Software Engineering Daily\" \/>\n<meta property=\"article:published_time\" content=\"2020-08-20T09:00:06+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2020-08-14T19:47:13+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/i0.wp.com\/softwareengineeringdaily.com\/wp-content\/uploads\/2020\/08\/Bridgecrew.png?fit=1334%2C1038&ssl=1\" \/>\n\t<meta property=\"og:image:width\" content=\"1334\" \/>\n\t<meta property=\"og:image:height\" content=\"1038\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"Danny Seymour\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@software_daily\" \/>\n<meta name=\"twitter:site\" content=\"@software_daily\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Danny Seymour\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"5 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/softwareengineeringdaily.com\/2020\/08\/20\/iac-static-analysis-with-bridgecrew\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/softwareengineeringdaily.com\/2020\/08\/20\/iac-static-analysis-with-bridgecrew\/\"},\"author\":{\"name\":\"Danny Seymour\",\"@id\":\"https:\/\/softwareengineeringdaily.com\/#\/schema\/person\/618234cbe1ece5fb1942f58d2d279e62\"},\"headline\":\"IAC Static Analysis with Bridgecrew\",\"datePublished\":\"2020-08-20T09:00:06+00:00\",\"dateModified\":\"2020-08-14T19:47:13+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/softwareengineeringdaily.com\/2020\/08\/20\/iac-static-analysis-with-bridgecrew\/\"},\"wordCount\":955,\"publisher\":{\"@id\":\"https:\/\/softwareengineeringdaily.com\/#organization\"},\"image\":{\"@id\":\"https:\/\/softwareengineeringdaily.com\/2020\/08\/20\/iac-static-analysis-with-bridgecrew\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/i0.wp.com\/softwareengineeringdaily.com\/wp-content\/uploads\/2020\/08\/Bridgecrew.png?fit=1334%2C1038&ssl=1\",\"keywords\":[\"Bridgecrew\",\"Checkov\",\"CI\/CD workflow\",\"cloud resources\",\"Guy Eisenkot\",\"IaC\",\"monitoring\",\"Terraform\"],\"articleSection\":[\"All Content\",\"Exclusive Articles\",\"Exclusive Content\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/softwareengineeringdaily.com\/2020\/08\/20\/iac-static-analysis-with-bridgecrew\/\",\"url\":\"https:\/\/softwareengineeringdaily.com\/2020\/08\/20\/iac-static-analysis-with-bridgecrew\/\",\"name\":\"IAC Static Analysis with Bridgecrew - Software Engineering Daily\",\"isPartOf\":{\"@id\":\"https:\/\/softwareengineeringdaily.com\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/softwareengineeringdaily.com\/2020\/08\/20\/iac-static-analysis-with-bridgecrew\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/softwareengineeringdaily.com\/2020\/08\/20\/iac-static-analysis-with-bridgecrew\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/i0.wp.com\/softwareengineeringdaily.com\/wp-content\/uploads\/2020\/08\/Bridgecrew.png?fit=1334%2C1038&ssl=1\",\"datePublished\":\"2020-08-20T09:00:06+00:00\",\"dateModified\":\"2020-08-14T19:47:13+00:00\",\"breadcrumb\":{\"@id\":\"https:\/\/softwareengineeringdaily.com\/2020\/08\/20\/iac-static-analysis-with-bridgecrew\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/softwareengineeringdaily.com\/2020\/08\/20\/iac-static-analysis-with-bridgecrew\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/softwareengineeringdaily.com\/2020\/08\/20\/iac-static-analysis-with-bridgecrew\/#primaryimage\",\"url\":\"https:\/\/i0.wp.com\/softwareengineeringdaily.com\/wp-content\/uploads\/2020\/08\/Bridgecrew.png?fit=1334%2C1038&ssl=1\",\"contentUrl\":\"https:\/\/i0.wp.com\/softwareengineeringdaily.com\/wp-content\/uploads\/2020\/08\/Bridgecrew.png?fit=1334%2C1038&ssl=1\",\"width\":1334,\"height\":1038},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/softwareengineeringdaily.com\/2020\/08\/20\/iac-static-analysis-with-bridgecrew\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/softwareengineeringdaily.com\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"IAC Static Analysis with Bridgecrew\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/softwareengineeringdaily.com\/#website\",\"url\":\"https:\/\/softwareengineeringdaily.com\/\",\"name\":\"Software Engineering Daily\",\"description\":\"\",\"publisher\":{\"@id\":\"https:\/\/softwareengineeringdaily.com\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/softwareengineeringdaily.com\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/softwareengineeringdaily.com\/#organization\",\"name\":\"Software Engineering Daily\",\"url\":\"https:\/\/softwareengineeringdaily.com\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/softwareengineeringdaily.com\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/i0.wp.com\/softwareengineeringdaily.com\/wp-content\/uploads\/2024\/01\/cropped-sed_website_banner.png?fit=549%2C169&ssl=1\",\"contentUrl\":\"https:\/\/i0.wp.com\/softwareengineeringdaily.com\/wp-content\/uploads\/2024\/01\/cropped-sed_website_banner.png?fit=549%2C169&ssl=1\",\"width\":549,\"height\":169,\"caption\":\"Software Engineering Daily\"},\"image\":{\"@id\":\"https:\/\/softwareengineeringdaily.com\/#\/schema\/logo\/image\/\"},\"sameAs\":[\"https:\/\/x.com\/software_daily\"]},{\"@type\":\"Person\",\"@id\":\"https:\/\/softwareengineeringdaily.com\/#\/schema\/person\/618234cbe1ece5fb1942f58d2d279e62\",\"name\":\"Danny Seymour\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/softwareengineeringdaily.com\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/4346abbfc4b4d898a9c6b21499ae87d8?s=96&d=retro&r=pg\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/4346abbfc4b4d898a9c6b21499ae87d8?s=96&d=retro&r=pg\",\"caption\":\"Danny Seymour\"},\"description\":\"Danny is a Santa Fe-based developer who works as a Junior Consultant at Rural Sourcing.\",\"sameAs\":[\"https:\/\/www.linkedin.com\/in\/daniel-seymournm\/\"],\"url\":\"https:\/\/softwareengineeringdaily.com\/author\/danny\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"IAC Static Analysis with Bridgecrew - Software Engineering Daily","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/softwareengineeringdaily.com\/2020\/08\/20\/iac-static-analysis-with-bridgecrew\/","og_locale":"en_US","og_type":"article","og_title":"IAC Static Analysis with Bridgecrew - Software Engineering Daily","og_description":"Infrastructure as Code (IaC) refers to managing infrastructure programmatically and with code, rather than manually and ad hoc. IaC tools such as Terraform empower developers to build robust and scalable infrastructure declaratively. They automate much of the under-the-hood work that may formerly have required far more time and resources to undertake.\u00a0 The increased power to","og_url":"https:\/\/softwareengineeringdaily.com\/2020\/08\/20\/iac-static-analysis-with-bridgecrew\/","og_site_name":"Software Engineering Daily","article_published_time":"2020-08-20T09:00:06+00:00","article_modified_time":"2020-08-14T19:47:13+00:00","og_image":[{"width":1334,"height":1038,"url":"https:\/\/i0.wp.com\/softwareengineeringdaily.com\/wp-content\/uploads\/2020\/08\/Bridgecrew.png?fit=1334%2C1038&ssl=1","type":"image\/png"}],"author":"Danny Seymour","twitter_card":"summary_large_image","twitter_creator":"@software_daily","twitter_site":"@software_daily","twitter_misc":{"Written by":"Danny Seymour","Est. reading time":"5 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/softwareengineeringdaily.com\/2020\/08\/20\/iac-static-analysis-with-bridgecrew\/#article","isPartOf":{"@id":"https:\/\/softwareengineeringdaily.com\/2020\/08\/20\/iac-static-analysis-with-bridgecrew\/"},"author":{"name":"Danny Seymour","@id":"https:\/\/softwareengineeringdaily.com\/#\/schema\/person\/618234cbe1ece5fb1942f58d2d279e62"},"headline":"IAC Static Analysis with Bridgecrew","datePublished":"2020-08-20T09:00:06+00:00","dateModified":"2020-08-14T19:47:13+00:00","mainEntityOfPage":{"@id":"https:\/\/softwareengineeringdaily.com\/2020\/08\/20\/iac-static-analysis-with-bridgecrew\/"},"wordCount":955,"publisher":{"@id":"https:\/\/softwareengineeringdaily.com\/#organization"},"image":{"@id":"https:\/\/softwareengineeringdaily.com\/2020\/08\/20\/iac-static-analysis-with-bridgecrew\/#primaryimage"},"thumbnailUrl":"https:\/\/i0.wp.com\/softwareengineeringdaily.com\/wp-content\/uploads\/2020\/08\/Bridgecrew.png?fit=1334%2C1038&ssl=1","keywords":["Bridgecrew","Checkov","CI\/CD workflow","cloud resources","Guy Eisenkot","IaC","monitoring","Terraform"],"articleSection":["All Content","Exclusive Articles","Exclusive Content"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/softwareengineeringdaily.com\/2020\/08\/20\/iac-static-analysis-with-bridgecrew\/","url":"https:\/\/softwareengineeringdaily.com\/2020\/08\/20\/iac-static-analysis-with-bridgecrew\/","name":"IAC Static Analysis with Bridgecrew - Software Engineering Daily","isPartOf":{"@id":"https:\/\/softwareengineeringdaily.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/softwareengineeringdaily.com\/2020\/08\/20\/iac-static-analysis-with-bridgecrew\/#primaryimage"},"image":{"@id":"https:\/\/softwareengineeringdaily.com\/2020\/08\/20\/iac-static-analysis-with-bridgecrew\/#primaryimage"},"thumbnailUrl":"https:\/\/i0.wp.com\/softwareengineeringdaily.com\/wp-content\/uploads\/2020\/08\/Bridgecrew.png?fit=1334%2C1038&ssl=1","datePublished":"2020-08-20T09:00:06+00:00","dateModified":"2020-08-14T19:47:13+00:00","breadcrumb":{"@id":"https:\/\/softwareengineeringdaily.com\/2020\/08\/20\/iac-static-analysis-with-bridgecrew\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/softwareengineeringdaily.com\/2020\/08\/20\/iac-static-analysis-with-bridgecrew\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/softwareengineeringdaily.com\/2020\/08\/20\/iac-static-analysis-with-bridgecrew\/#primaryimage","url":"https:\/\/i0.wp.com\/softwareengineeringdaily.com\/wp-content\/uploads\/2020\/08\/Bridgecrew.png?fit=1334%2C1038&ssl=1","contentUrl":"https:\/\/i0.wp.com\/softwareengineeringdaily.com\/wp-content\/uploads\/2020\/08\/Bridgecrew.png?fit=1334%2C1038&ssl=1","width":1334,"height":1038},{"@type":"BreadcrumbList","@id":"https:\/\/softwareengineeringdaily.com\/2020\/08\/20\/iac-static-analysis-with-bridgecrew\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/softwareengineeringdaily.com\/"},{"@type":"ListItem","position":2,"name":"IAC Static Analysis with Bridgecrew"}]},{"@type":"WebSite","@id":"https:\/\/softwareengineeringdaily.com\/#website","url":"https:\/\/softwareengineeringdaily.com\/","name":"Software Engineering Daily","description":"","publisher":{"@id":"https:\/\/softwareengineeringdaily.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/softwareengineeringdaily.com\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/softwareengineeringdaily.com\/#organization","name":"Software Engineering Daily","url":"https:\/\/softwareengineeringdaily.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/softwareengineeringdaily.com\/#\/schema\/logo\/image\/","url":"https:\/\/i0.wp.com\/softwareengineeringdaily.com\/wp-content\/uploads\/2024\/01\/cropped-sed_website_banner.png?fit=549%2C169&ssl=1","contentUrl":"https:\/\/i0.wp.com\/softwareengineeringdaily.com\/wp-content\/uploads\/2024\/01\/cropped-sed_website_banner.png?fit=549%2C169&ssl=1","width":549,"height":169,"caption":"Software Engineering Daily"},"image":{"@id":"https:\/\/softwareengineeringdaily.com\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/software_daily"]},{"@type":"Person","@id":"https:\/\/softwareengineeringdaily.com\/#\/schema\/person\/618234cbe1ece5fb1942f58d2d279e62","name":"Danny Seymour","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/softwareengineeringdaily.com\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/4346abbfc4b4d898a9c6b21499ae87d8?s=96&d=retro&r=pg","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/4346abbfc4b4d898a9c6b21499ae87d8?s=96&d=retro&r=pg","caption":"Danny Seymour"},"description":"Danny is a Santa Fe-based developer who works as a Junior Consultant at Rural Sourcing.","sameAs":["https:\/\/www.linkedin.com\/in\/daniel-seymournm\/"],"url":"https:\/\/softwareengineeringdaily.com\/author\/danny\/"}]}},"jetpack_sharing_enabled":true,"jetpack_featured_media_url":"https:\/\/i0.wp.com\/softwareengineeringdaily.com\/wp-content\/uploads\/2020\/08\/Bridgecrew.png?fit=1334%2C1038&ssl=1","jetpack_shortlink":"https:\/\/wp.me\/p7GuoD-2xq","_links":{"self":[{"href":"https:\/\/softwareengineeringdaily.com\/wp-json\/wp\/v2\/posts\/9760"}],"collection":[{"href":"https:\/\/softwareengineeringdaily.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/softwareengineeringdaily.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/softwareengineeringdaily.com\/wp-json\/wp\/v2\/users\/53"}],"replies":[{"embeddable":true,"href":"https:\/\/softwareengineeringdaily.com\/wp-json\/wp\/v2\/comments?post=9760"}],"version-history":[{"count":0,"href":"https:\/\/softwareengineeringdaily.com\/wp-json\/wp\/v2\/posts\/9760\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/softwareengineeringdaily.com\/wp-json\/wp\/v2\/media\/9761"}],"wp:attachment":[{"href":"https:\/\/softwareengineeringdaily.com\/wp-json\/wp\/v2\/media?parent=9760"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/softwareengineeringdaily.com\/wp-json\/wp\/v2\/categories?post=9760"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/softwareengineeringdaily.com\/wp-json\/wp\/v2\/tags?post=9760"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}