What is Config Policy Management?
Enforce global requirements and restrictions on the workloads and tools used in your organization’s pipelines with config policy management.
Operations | Monitoring | ITSM | DevOps | Cloud
The Place Where Modern Operations & Technology Come Together
Discuss forum builds community out of crisis
During the recent security incident, CircleCI CTO Rob Zuber’s response included posting in our Discuss community, where users can contact company employees directly to ask questions and provide feedback.
DevOps isn't dead: How platform engineering enables DevOps at scale
DevOps has become the de facto methodology in software development. With it, software engineers can take operations into their own hands, using techniques such as Infrastructure as Code (IaC) to automate infrastructure deployment. However, as the popularity of DevOps has grown, so has the complexity of modern application development. Developers must learn new tools and maintain infrastructure while coding and prioritizing ops tasks alongside feature development.
CircleCI Technical Demo + Q&A
Join us for a high level tour of CircleCI, and learn how to most effectively utilize the platform’s features and capabilities. Every first and third Wednesday, we’ll be offering a technical demo so you can learn best practices and have all your CircleCI questions answered. Topics Covered: How it works: the nuts and bolts of the product Why CircleCI can make developers’ jobs easier and more rewarding How CircleCI can support your security posture by ensuring organizational policies and guardrails are met Greater visibility by surfacing trends and status across your organization
New CircleCI features for secure secrets management
When security incidents happen, it’s crucial for software providers and users alike to take swift and effective action. In response to our recent security incident, we witnessed firsthand how an open and collaborative effort between our customers, technology partners, and engineering teams helped to contain the threat and mitigate risk of unauthorized access to customer systems.
Platform Engineering 101 | Everything You Need to Know
Platform engineering is an emerging discipline focused on enhancing developer productivity by reducing the complexity and uncertainty of modern software delivery.
Integrate CircleCI with HashiCorp Vault using OIDC
Well-designed secrets management is a delicate balancing act between security and usability. Secrets must be easily accessible to the right users when building and deploying, but they must also at the same time be well-secured and easy to rotate. This article will cover how to thread this needle by integrating CircleCI with HashiCorp Vault and retrieving secrets using short-lived OpenID Connect (OIDC) authentication tokens.
Security best practices for CI/CD
Welcome to the DevSecOps and CI/CD security guide. Browse through each section to discover various relevant resources to ensure security of your applications and infrastructure.
Config Policies & Latest Security Features
Watch CircleCI’s webinar on “Config Policies and Latest Security Features” to learn how to enhance your security practices in CI/CD pipelines using CircleCI’s latest features such as Config policies, Container Runner, and OIDC.
CircleCI New Feature: An Overview of Container Runner
As many enterprises start to scale utilizing CircleCI’s cloud offering, due to the need for privileged access & controls and unique compute requirements for some jobs, we launched self-hosted runners. Self-hosted runners enable engineering teams to use their own infrastructure for running jobs. A machine runner executes each job with a one to one mapping between a job and a VM launched in the same environment as the machine runner binary.