InfoQ Homepage Continuous Delivery Content on InfoQ
-
Travis CI Vulnerability Potentially Leaked Customer Secrets
Popular continuous integration and delivery service Travis CI disclosed a vulnerability that potentially leaked secure environment variables, including signing keys, access credentials, and API tokens. The flaw was quickly fixed on September 10, but the developer community found Travis CI handling of this issue insufficient.
-
How a Test Strategy Helped to Increase Deployment Maturity and Product Quality
Implementing a test strategy helped an organization to move away from push and pray deployment toward continuous and confident deployment to production. The organization mapped their test strategy in a framework with different enablers, which has helped them align on quality metrics for the whole product together with a strong safety net of tests before moving to production.
-
MLOps: Continuous Delivery of Machine Learning Systems
Developing, deploying, and keeping machine learning models productive is a complex and iterative process with many challenges. MLOps means combining the development of ML models and especially ML systems with the operation of those systems. To make MLOps work, we need to balance iterative and exploratory components from data science with more linear software engineering components.
-
How External IT Providers Can Adopt DevOps Practices
IT suppliers can follow the “you build it, you run it” mantra by working in small batches, using an experimental approach to product development, and validating small product increments in production. The supplier has to find out what his client’s goal is, and it has to become the supplier’s goal as well to work in a collaborative way.
-
Experiences from Measuring the DevOps Four Key Metrics: Identifying Areas for Improvement
Measuring the four key metrics of IT helped a company to assess the performance of their software delivery process. Continuous observation of these metrics supports decisions on where to invest and guides performance improvements.
-
InfoQ Live August 17th: Deep-Dive in Cloud Native, CI/CD, Service Mesh, and More
Practically every development team would benefit from building and running applications that use the advantages of the cloud computing delivery model. This August 17th at InfoQ Live, software leaders dive into topics such as service mesh, CI/CD, cloud native best practices and pitfalls, and more. Join them and book your spot now for just $19.95.
-
Distributed DevOps Teams: Enabling Non-Stop Delivery
Keeping in touch and being cohesive as a distributed team is a challenge many face. Assigning stories from a shared backlog helped a distributed team in doing non-stop delivery, as did giving all members of the team the authority to promote to production and back-out code at need. You need to give attention to the architecture to prevent creating similar or duplicate micro-services.
-
InfoQ Live July 20th: Software Supply Chain for DevOps & Reducing Feature Flag Debt
How can modern DevOps practices accelerate your software delivery without the quality issues? Learn how automation, continuous testing, and supply management techniques can improve software quality and speed of delivery. Get valuable insights from world-class domain experts at InfoQ Live on July 20th.
-
GitLab 14 Introduces Epic Boards, Improves Pipeline Editor and Kubernetes Agent, and More
With GitLab 14, GitLab is reaffirming its view of a unified DevOps platform integrating all the tools and tech stacks that are required by development teams. The latest release of the platform includes many new features meant to improve development velocity, application security, and analytics.
-
AWS Announces the General Availability of AWS Proton
Recently, AWS announced the general availability (GA) of its fully-managed application delivery service, AWS Proton, allowing customers to easily provision, deploy, and monitor the microservices that form the basis of modern container and serverless applications.
-
Xcode Cloud Brings CI/CD to iOS App Development
At WWDC21, Apple announced Xcode Cloud, a continuous integration and delivery (CI/CD) system to help developers build, test, and distribute apps. Still in beta, Xcode Cloud supports both releasing to TestFlight and on the App Store.
-
Ambassador Developer Control Plane Integrates Common Kubernetes Full Lifecycle Tooling
Ambassador Labs announced the release of their Developer Control Plane (DCP). The DCP brings together tooling to support the full development and operations of Kubernetes based services. This includes popular Cloud Native Computing Foundation (CNCF) tools such as Argo, Telepresence, and Envoy Proxy.
-
How GitHub Leverages Feature Flags to Ship Quickly and Safely
In a recent blog post, Alberto Gimeno, GitHub actions engineer, shared how GitHub makes use of feature flags to enable frequent, safe deployments. GitHub leverages feature flags for all potentially risky changes, allowing them to quickly disable the change if needed.
-
GitHub Reacts to Growing Cryptocurrency Mining Attacks Using GitHub Actions
In response to the recent surge in cryptocurrency mining attacks, GitHub has changed how pull requests from public forks are handled in GitHub Actions to prevent abuse.
-
CNCF Promotes GitOps Tool Flux to Incubated Status
The CNCF has promoted the Flux project from the sandbox level to incubated level. This is not only proof of widespread use of Flux, but also of its joining the GitOps family of projects and bringing a unified toolkit approach to continuous delivery.
CONTENT IN THIS BOX PROVIDED BY OUR SPONSOR
Mitigating the Risk of Infrastructure Migrations With Feature Flags
Effective Feature Management (By O'Reilly)
Continuous Integration vs. Continuous Delivery vs. Continuous Deployment (by O'Reilly)
Git Branching Strategies vs. Trunk-Based Development
