GitHub Checks API Enables Apps for Advanced Continuous Integration
GitHub Checks API aims to make it possible to integrate code checks into a continuous integration workflow. For example this could mean linting a source file and present the results directly in the pull request view. The feedback can be so detailed as desired, e.g., showing the line of code causing a problem, thus allowing the commit author to fix the issues and run a new check on the code.
Managing the Software Supply Chain with the "Grafeas" Metadata API and "Kritis" Deploy Authorization
In a recent Google Cloud Platform (GCP) blog series exploring container security, the GCP team has presented further details of Grafeas -- a common API and language to store, query and retrieve metadata about software components -- and Kritis -- a proposed framework that enables the use of metadata stored in Grafeas to build and enforce real-time deployment policies with Kubernetes.
New Report from The Linux Foundation Shows Demand High for DevOps Skills
The 2017 Open Source Jobs Report from the Linux Foundation and tech career hub, Dice, shows 60% demand for DevOps human resources among more than 2,000 IT open source professionals and IT hiring managers. DevOps skills were found to be in the top three most sought after open source skills (57%) along with cloud/virtualisation (60%) and application platforms (59%).
Trunk Based Development as a Cornerstone for Continuous Delivery
Dave Farley, co-author of the pivotal Continuous Delivery book, recently wrote about push-back to the practice of trunk based development, despite evidence of its role in achieving the benefits of CI and high performing teams. Jez Humble, his co-author, also commented in a twitter-thread on the cultural aspects of the practice to understand its relation to programmer psyche.
GCP Release “kaniko”, a Tool to Build Container Images inside Unprivileged Containers or Kubernetes
Google has released "kaniko", an open source tool to build container images from a Dockerfile, inside a container or Kubernetes cluster. kaniko does not depend on a Docker daemon and executes each command within a Dockerfile completely in userspace. This enables building container images in environments that can't easily or securely run a Docker daemon, such as a standard Kubernetes cluster.
Kayenta: An Open Source Canary Analysis Tool from Netflix and Google
Kayenta is an open source canary analysis tool used to evaluate the readiness for production of a new version of a software.
Datical Adds Continuous Delivery Capabilities for the Database
Database release automation provider, Datical, has announced a new version, Datical 5, which provides a central command centre with enhanced database release visibility that allows developers to manage and rework database code changes as they would application code changes without having to go through a manual process. Security for database credentials and auditability has also been enhanced.
Dr. Nicole Forsgren on the DORA & Google Collaboration on the New Accelerate State of DevOps Report
DORA and Google Cloud will conduct original research to be delivered as The Accelerate State of DevOps Report focused on software developer issues. The research aim is to surface new findings that provide guidance for improvement in resource management, productivity and quality of technology delivery teams.
Q&A with Stuart Davidson on Scaling Continuous Delivery at Skyscanner
Stuart Davidson spoke at QConLondon 2018 about Skyscanner's mission to get from a reactive operations model to providing teams with an empowering developer experience. Davidson told the story of how, with support and a lofty-goal from their CTO, they began on a technical and cultural journey to enable their squads to deliver 10 thousand times a day. InfoQ speaks with Davidson to learn more.
CloudBees Release "Jenkins X", a CI/CD Solution for Modern Cloud Applications Deployed to Kubernetes
James Strachan and the CloudBees team have released the open source “Jenkins X” platform as a continuous integration and continuous delivery (CI/CD) solution for modern cloud applications that will be deployed onto Kubernetes. Strachan is sponsoring JEP 400, a formal proposal to act as a “stake on the ground”. The proposal requests that Jenkins X become a sub-project in the Jenkins Foundation.
New Research from GitLab Shines Light on the Value and Challenges of DevOps
The 2018 global developer report from GitLab shows that software professionals collectively recognise the value of working in highly collaborative DevOps-style environments and have experienced the benefits of doing so. 65% of respondents say that DevOps is a tremendous time saver, a figure which rises to 81% when focusing solely on managers.
Sauce Labs Adds Analytics and Extended Debugging to Continuous Testing Cloud
At their recent user conference SauceCon, Sauce Labs introduced new capabilities for its continuous testing cloud including test analytics, featuring a dashboard that analyses test results and exposes common failures by browser and operating system, including Android and iOS.
Jessica Kerr at QCon London on "Why DevOps is a Special Case of DevEx"
Jessica Kerr, lead engineer at Atomist, presented her perspective on DevEx (Developer Experience) and how it relates to DevOps, at QCon London. She stressed that DevOps led to teams taking on accrued responsibilities (to be able to own and constantly improve their systems). To reduce cognitive load, we need better development tools that push down details on how systems get built and delivered.
How Observability Impacts Testing: Q&A with Amy Phillips at QCon London
Observability gives you a picture of the system’s current health and can replace certain types of testing. For low-risk application areas you can rely on observability instead of testing, provided you have continuous delivery that provides fast feedback and allows you to release changes quickly.
Chef Enhances Cloud Security Automation in InSpec 2.0
Continuous automation vendor, Chef, has announced the availability of InSpec 2.0, a new version of Chef’s free open source tool that enables DevOps and cross-functional application, infrastructure and security teams to express security and compliance rules as code and assess and remediate compliance issues through the entire software delivery life cycle.
CONTENT IN THIS BOX PROVIDED BY OUR SPONSOR
eBook: Container Monitoring and Management
Microservices platforms and containers are evolving rapidly, allowing teams to rapidly build and deploy applications faster than ever before...
eBook: Power Digital Performance With a New Model for Application Performance Management
In the fast-paced and continuously changing world of software applications, almost anything that touches an application either improves or degrades...
Webcast: Take the Chaos Out of Container Monitoring
Containers and microservice architectures simplify the development process, provide environmental consistency and speed updates...
Follow CA Technologies on:
