InfoQ Homepage Continuous Delivery Content on InfoQ
-
Dependabot Automatically Creates GitHub PRs to Fix Your Vulnerabilities
Leveraging GitHub Security Advisory API, Dependabot aims to help developers track their dependencies, monitoring the security of their programs, and making sure any potential vulnerabilities are removed as easily as possible by automatically creating PRs to resolve them.
-
XebiaLabs DevOps Platform Provides New Risk and Compliance Capability for Software Releases
XebiaLabs, a provider of DevOps and continuous delivery software tools, has launched new capabilities for custody, security and compliance risk assessment tracking for software releases via their DevOps Platform.
-
New Docker Hub Merges Together Docker Cloud and Docker Store
Docker has released a new Docker Hub experience that combines the previous Docker Store, Docker Cloud, and Docker Hub functionality into one location. This provides users with a single experience for finding, storing, and sharing container images. Verified and certified images and plugins are now available through Docker Hub. They have also released improvements to the automated build feature.
-
Shipping More Safely by Encouraging Ownership of Deployments
Many incidents happen during or right after the release argues Charity Majors, CEO at Honeycomb. She believes that stronger ownership of the deployment process by developers will ensure it is executed regularly and reduce risk. She argues for investment in the tooling, high observability during and after release, and small, frequent releases to minimize the impact caused by shipping new code.
-
GitLab 11.6 Supports Serverless Function Deployment
The latest release of GitLab is able to use Knative and Kubernetes to build, deploy, and manage serverless workloads leveraging the Function as a service (FaaS) model.
-
Microsoft Announces New Features and Integrations for Azure Pipelines
At the recent Connect() event, Microsoft announced several new features and integrations with Azure Pipelines. The new features and integrations include an Azure Pipelines extension for Visual Studio Code, management of GitHub Releases, support for IoT projects, and ServiceNow integration.
-
Five Initiatives to Modernize Jenkins and Kill the "Jenkinsteins"
Kohsuke Kawaguchi, creator of Jenkins and CTO at CloudBees, spoke last month at Jenkins World in Nice about five on-going initiatives to modernize the popular CI/CD tool. The initiatives revolve around Jenkins Evergreen, Jenkins Pipeline (Blue Ocean), Jenkins Configuration-as-Code, Jenkins X, and Cloud-Native Jenkins.
-
Atomist Software Delivery Machine 1.0 Launched
Atomist, a software delivery automation company, has announced their Software Delivery Machine (SDM) 1.0. Atomist SDM is a cloud-native software delivery platform with additional capabilities, specifically for Kubernetes and Spring.
-
Test Driven Containerized Build Pipelines in ConcourseCI
A Lead Developer at Thoughtworks shared his team’s experience in rewriting the build pipeline for one of their clients. They migrated from Jenkins to ConcourseCI, with a focus on configuration-as-code, pipeline-driven delivery, container support and visibility into the system.
-
The Software Defined Delivery Manifesto: Collaborative, Model-Based, Event-Driven Automation
At GOTO Copenhagen, Rod Johnson announced “The Software Defined Delivery Manifesto”, and argued that the delivery of software “is not a detail, it is our job”, and accordingly, “now is the time to engineer our delivery”. The authors of the manifesto argue that software defined delivery should be core, well-engineered, collaborative, accelerated (through automation and reuse) and observable.
-
GitHub Release Developer Workflow Tools: Actions, Suggested Changes & Security Alerts for .NET/Java
At GitHub Universe in San Francisco, GitHub announced a number of new tools to help developers make their workflows more effective, including Actions, Suggested Changes, Security Alerts for .NET and Java, and more.
-
How Continuous Delivery Impacts Testing
With continuous delivery we need to focus on quality as we write the code. Not every team will have testers, but if there are testers then they will work closely with developers, writing code to automate the small number of tests that cannot be covered by unit tests while helping developers creating unit tests.
-
Microsoft Announces Azure Pipelines with Unlimited CI/CD Minutes for Open Source
Microsoft has announced Azure Pipelines, their new CI/CD service which is part of the Azure DevOps offering. Azure Pipelines allows to build, test, and deploy workloads and works together with a diverse range of languages, project types, and platforms.
-
Jenkins to Focus Efforts on Stability, Ease of Use and Cloud Native Compatibility
The Jenkins project team has decided to split its efforts between focusing on stability issues and on better support for running on platforms like Kubernetes. The former, which will potentially have backward-incompatible changes, will impact the release model and provide a more pre-configured installation, whereas the latter will work on similar lines as the existing Jenkins X project.
-
"GitOps": Weaveworks Explain Their Model for Using Developer Tooling to Implement CI/CD
Over the past year, the Weaveworks team has increasingly refined the ideas around the practice of “GitOps”, their name for how they use developer tooling to drive operations and to implement continuous delivery.