1) SAST Tool (Coverity) enabled but missing the WHAT to do with the scan results (P1 & P2) a) Architecture components gets an open API to test b) Increase by 1% Unit Testing test coverage per sprint ("legacy" + new increments) c) Add security gates to enforce a secure realease d) Allign all team members on the target Persona vision e) Clean all the vulnerabilities in the backlog towards ZERO vulnerabilities f) Refinement meetings covering 3 sprints timeframe plan (= a PI) 2) Testing Management LifeCycle practices not yet adopted to increase the robustness of the development process a) Train team members on Unit Testing principles, practices and enabling xUnit framework b) Define Test Strategy c) Learning Technical Stories to grow on competences d) Pull Request check and open discussion on comments e) Increase by 1% Unit Testing test coverage per sprint ("legacy" + new increments) f) Architecture components gets a open API test 3) Team members don't perceive incentives to adopt a dual generalist-specialist (T-Shaped) mindset being adopted by individual team members a) Pull Request check and open discussion on comments b) Technical Stories size to fit DoR criteria c) Learning Technical Stories to grow on competences d) Effective communication on common technical aspects supported by right team mindset e) DevSecOps tecnicalities community to cross pollinate - set a Community of Practice f) Assign tasks to team members as a way of learning by experimenting on the technology (falling is safe)

SW PLM Agile maturity asessment.

tarafından

Skor Tablosu

Görsel stil

Seçenekler

Şablonu değiştir

Otomatik olarak kaydedilen geri yüklensin mi: ?