Chapter 5. Case Studies in Automated Remediation at Scale
Now that we’ve covered the background and technology for automated code remediation, we want to share some real-world case studies exploring the practice. You’ll see what leads organizations to automate code remediation and its impact on the way they work.
Case Study: Improving Enterprise Productivity
Our first case study takes us back to the problem of technical debt. A midsize insurance company, with over 20 million lines of code across 1,200 repositories, was struggling to close code maintenance stories without impacting the development team’s productivity. The company’s code maintenance work, which covered vulnerability patching, code migration, and dependency upgrades, was folded under technical debt in its systems.
The organization was averaging one large maintenance project per quarter, and each of those projects could consume the entire development team. For example, in Q2, the team had to prioritize a Spring Boot version upgrade to secure its code from the Spring4Shell vulnerability. This became 32 different stories for the development team—one per repository. It also required one developer per repository acting as the “migration expert” for the update. It was all-consuming and reduced the organization’s business output, as you can see in the Q2 results shown in Figure 5-1.
Figure 5-1. Insurance company boosts ...
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month, and much more.
O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.
Julian F.
Head of Cybersecurity
I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.
Addison B.
Field Engineer
I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.
Amir M.
Data Platform Tech Lead
I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.
O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.
