CI CD

The latest News and Information on Continuous Integration and Development, and related technologies.

Merging to Main #3: CI/CD Secrets

Jun 7, 2023 By Codefresh In Codefresh

CI/CD Secrets are... well... secret (or at least they should be)! Think of all the credentials and tokens currently in use in your CI/CD pipeline. These secrets provide critical authentication for essential infrastructure like source control, environments, and build and deployment tools, but they can also easily expose you to risk. Having a secure secret management process is more important than ever for protecting your company and ensuring only authorized personnel can access them.

View Video

Codefresh

Read more about Merging to Main #3: CI/CD Secrets

How to Secure Your CI/CD Pipeline: Best Tips and Practices

Jun 6, 2023 By Joanna Wallace In Coralogix

CI/CD pipelines have become a cornerstone of agile development, streamlining the software development life cycle. They allow for frequent code integration, fast testing and deployment. Having these processes automated help development teams reduce manual errors, ensure faster time-to-market, and deliver enhancements to end-users. However, they also pose risks that could compromise stability of their development ecosystem.

Read Post

Coralogix

Read more about How to Secure Your CI/CD Pipeline: Best Tips and Practices

Trivial? THIS is What Developers Really Mean!

Jun 6, 2023 By Sleuth In Sleuth

Trivial? THIS is What Developers Really Mean! Software development managers, do you really understand your developers? Here's your guide to speaking developer, Part 1 of 4, from Sleuth's CTO and cofounder, Don Brown. Give Sleuth a try and see how we empower software teams to build faster by making engineering efficiency easy to improve and measurable — in a way that both managers and developers love.

View Video

Sleuth

CI CD
DevOps

Read more about Trivial? THIS is What Developers Really Mean!

Do you think of software developer toil like Atlassian, LaunchDarkly, Okteto and Sleuth?

Jun 5, 2023 By Sleuth In Sleuth

Do you think of software developer toil like Atlassian, LaunchDarkly, Okteto and Sleuth? Hear how leaders from these SaaS companies deal with toil on their teams. Toil for software developers includes repetitive tasks that could be automated, things that waste time and prevent you from investing in the future. These manual processes weigh down developers and the software development process, and can lead to burnout.

View Video

Sleuth

CI CD
DevOps

Read more about Do you think of software developer toil like Atlassian, LaunchDarkly, Okteto and Sleuth?

Streamline your CI testing with Datadog Intelligent Test Runner

Jun 2, 2023 By Bowen Chen In Datadog

Modern continuous integration (CI) practices enable development teams to quickly and efficiently build and deploy application code to a shared codebase. However, deploying new code is typically accompanied by tests, and as the codebase expands, this results in a proportionately larger test suite.

Read Post

Datadog

Read more about Streamline your CI testing with Datadog Intelligent Test Runner

Platform Team Demo

Jun 1, 2023 By CircleCI In CircleCI

Discover how CircleCI empowers teams while meeting compliance and governance needs. See how our centralized system supports platform teams as a key driver of your internal development process. In this webinar, you will learn.

View Video

CircleCI

Read more about Platform Team Demo

Zero trust security for CI/CD pipelines

Jun 1, 2023 By Jacob Schmitt In CircleCI

The zero trust security model is an approach to network security that enforces strict access controls and authentication at every stage of the software development lifecycle. It treats every user, device, and transaction as a security risk and uses the principle of least privilege to restrict access to sensitive resources and minimize the potential attack surface.

Read Post

CircleCI

Read more about Zero trust security for CI/CD pipelines

Got tool sprawl? Let's consolidate.

May 25, 2023 By Sean Pratt In JFrog

If you’re a developer, DevOps engineer, or security technician, you know the feeling of managing multiple tools at once. It’s a phenomenon so prevalent in software development that it has its own name, “tool sprawl,” and it can make it hard for teams to do their jobs efficiently.

Read Post

JFrog

Read more about Got tool sprawl? Let's consolidate.

A guide to static application security testing (SAST)

May 24, 2023 By Jacob Schmitt In CircleCI

Static application security testing (SAST) involves analyzing source code to identify and address potential security vulnerabilities. Using SAST early in development identifies threats before they can affect a live environment. SAST is particularly important for continuous integration and continuous deployment (CI/CD) pipelines. These pipelines automate the integration of new code changes into the main codebase and deploy applications to production environments.

Read Post

CircleCI

Read more about A guide to static application security testing (SAST)

Continuous Delivery Pipeline for Kubernetes Using Spinnaker

May 23, 2023 By Vaibhav Thakur In MetricFire

Kubernetes is now the de-facto standard for container orchestration. With more and more organizations adopting Kubernetes, it is essential that we get our fundamental ops-infra in place before any migration. In this post, we will learn about leveraging Jenkins and Spinnaker to roll out new versions of your application across different Kubernetes clusters.

Read Post