CI CD

The latest News and Information on Continuous Integration and Development, and related technologies.

US Executive Order on Cybersecurity: What it Means for DevOps

May 21, 2021 By Moran Ashkenazi, JFrog Chief Security Officer In JFrog

The United States Government equates cybersecurity with national security. That’s the crux of the recent Executive Order that will mandate that not only must software applications be vetted, but there will be upcoming regulations on providing all of the components that make up the software. As section 1 notes: “prevention, detection, assessment, and remediation of cyber incidents is a top priority and essential to national and economic security.”

Read Post

JFrog

Read more about US Executive Order on Cybersecurity: What it Means for DevOps

Migrate & Modernize on AWS ECS using Docker Compose & JFrog Platform

May 19, 2021 By JFrog In JFrog

In this webinar we demonstrate how to automate, manage, and secure software releases and CI/CD pipelines from code to edge with the JFrog DevOps Platform and Docker Compose on AWS infrastructure.

View Video

JFrog

Read more about Migrate & Modernize on AWS ECS using Docker Compose & JFrog Platform

Integrating a Cloudsmith repository with a Semaphore CI workflow

May 19, 2021 By Dan McKinney In Cloudsmith

At Cloudsmith, we believe that packaging should be at the centre of any modern build and deployment process. In fact, we think that Continuous Packaging is the glue that ties Continuous Integration and Continuous Deployment or Delivery together. So with that in mind, in this blog, we will take a walk through how easy it is to integrate Cloudsmith with a Semaphore CI workflow and push the artifacts and packages that you build to a private repository. TL:DR – It’s super easy.

Read Post

Cloudsmith

Read more about Integrating a Cloudsmith repository with a Semaphore CI workflow

Using Semaphore CI to Push packages to Cloudsmith

May 18, 2021 By Cloudsmith In Cloudsmith

A short demo of how you can set up a Semaphore CI workflow to push a package to a private Cloudsmith repository.

View Video

Cloudsmith

CI CD
DevOps

Read more about Using Semaphore CI to Push packages to Cloudsmith

Keep OSS supply chain attacks off the menu: Tidelift catalogs + JFrog serve known-good components

May 18, 2021 By JFrog In JFrog

How does your organization keep track of all of the open source components being used to develop applications and ensure they are secure and properly maintained? Our recent survey data shows that the larger an organization gets, the less confident they are in in their open source management practices. In companies over 10,000 employees, 39% are not very or not at all confident their open source components are secure, up to date, and well maintained.

View Video

JFrog

Read more about Keep OSS supply chain attacks off the menu: Tidelift catalogs + JFrog serve known-good components

Continuous deployment for Azure functions

May 18, 2021 By Fikayo Adepoju In CircleCI

Serverless computing, a model in which the provider manages the server, lets developers focus on writing dedicated pieces of application logic. Serverless computing has been adopted by many development teams because it auto-scales. Auto-scaling relieves developers of allocation management tasks, so they do not need to worry about the allocation of server resources or being charged for resources they are not consuming.

Read Post

CircleCI

Read more about Continuous deployment for Azure functions

The Confident Commit | Episode 2: Releasing software with full control

May 14, 2021 By CircleCI In CircleCI

Rob interviews Olaf Molenveld, CTO and Co-Founder of Vamp. Vamp’s release orchestration capabilities with CircleCI’s CI/CD platform will be transformative.

View Video

CircleCI

CI CD
DevOps

Read more about The Confident Commit | Episode 2: Releasing software with full control

Turbocharging your Android Gradle builds using the build cache

May 14, 2021 By Roger Taracha In CircleCI

The Gradle Build Cache is designed to help you save time by reusing outputs produced by previous builds. It works by storing (locally or remotely) build outputs, and allowing builds to fetch these outputs from the cache when it determines that inputs have not changed. The build cache gives you the ability to avoid the redundant work and cost of regenerating time-consuming and expensive processes.

Read Post

CircleCI

Read more about Turbocharging your Android Gradle builds using the build cache

Troubleshooting Kubernetes Clusters as a Developer with Komodor

May 13, 2021 By Kostis Kapelonis In Codefresh

The container ecosystem is moving very fast and new tools designed specifically for Kubernetes clusters are introduced at a very fast pace. Even though several times a new tool is simply implementing a well-known mechanism (already present in the VM world) with a focus on containers, every once in a while we see tools that are designed from scratch rather than adapting a preexisting idea. One such tool is Komodor.

Read Post

Codefresh

Read more about Troubleshooting Kubernetes Clusters as a Developer with Komodor

Continuous delivery with Ketch, GitHub Actions, and k3d

May 12, 2021 By Shipa In Shipa

Can we combine the simplicity of deploying applications with Ketch with GitHub Actions and accomplish a fully automated continuous delivery pipeline? Here's what we'll do. We'll create GitHub Actions that will fully automate all the tasks starting from creating a pull request all the way until a release is deployed to production.

View Video