CI CD

The latest News and Information on Continuous Integration and Development, and related technologies.

Part II: A Journey of a Thousand Binaries - The Challenges with Software Dependencies

Apr 28, 2023 By Ixchel Ruiz In JFrog

In part one of this series, we looked at what is a dependency, different types of dependencies, and their benefits in our code. In part two, we’ll look at the risks of using dependencies. Whenever we add a dependency we are increasing the risks of any software development cycle.

Read Post

JFrog

Read more about Part II: A Journey of a Thousand Binaries - The Challenges with Software Dependencies

Static credential management for platform engineers

Apr 28, 2023 By Jacob Schmitt In CircleCI

Cloud CI/CD is a force multiplier for development teams, especially those working remotely. Automated CI/CD takes load off of developers, allowing them to focus on building better products. Hosted CI/CD adds further benefit to this, ensuring that this newfound capacity isn’t spent managing the testing and deployment infrastructure, and that remote team members have easy access to CI/CD tools.

Read Post

CircleCI

Read more about Static credential management for platform engineers

GitOps The Planet #10: Demystifying SBOMs and Their Impact on CI/CD Software Delivery

Apr 27, 2023 By Codefresh In Codefresh

Before cloud-native controlling components delivered was in some ways "easier" in that ops teams could limit which components were available on nodes. With containerization, the ops problem became harder while the dev side became easier. Now SBOMS (software bill of materials) are becoming critical to software supply chain risk management. In this episode, GitOps the Planet Alum, Christian Hernandez will join to walk us through SBOMS, how we should be using them, and how they help improve software security.

View Video

Codefresh

Read more about GitOps The Planet #10: Demystifying SBOMs and Their Impact on CI/CD Software Delivery

Monitor your TeamCity builds with Datadog CI Visibility

Apr 27, 2023 By Nicholas Thomson In Datadog

As the complexity of modern software development lifecycles increase, it’s important to have a comprehensive monitoring solution for your continuous integration (CI) pipelines so that you can quickly pinpoint and triage issues, especially when you have a large number of pipelines running.

Read Post

Datadog

Read more about Monitor your TeamCity builds with Datadog CI Visibility

SLSA 1.0 is here! What's it mean for you?

Apr 27, 2023 By Cloudsmith In Cloudsmith

Any organization that has taken on the daunting task of securing their software supply chain knows the challenges, pitfalls and caveats that come with implementing security best practices. SLSA 1.0, a community-backed framework that provides a comprehensive checklist of security controls and standards, is here! So what does it mean for you and your organization? This session gathers SLSA experts from across the industry to discuss the practical uses of the framework.

View Video

Cloudsmith

CI CD
DevOps

Read more about SLSA 1.0 is here! What's it mean for you?

DevOps is dead? Nope, it is maturing ft. Jesse Robbins of Heavybit

Apr 26, 2023 By CircleCI In CircleCI

In this episode, Rob sits down with the DevOps “party starter” himself, Jesse Robbins, to discuss the current state of software delivery. Is DevOps really dead, or are we simply witnessing a maturing model as organizations grow and evolve? Tune it to hear Jesse’s valuable take on where he sees the industry moving and the potential complexities on the horizon.

View Video

CircleCI

CI CD
DevOps

Read more about DevOps is dead? Nope, it is maturing ft. Jesse Robbins of Heavybit

Securing your CI pipeline

Apr 26, 2023 By CircleCI In CircleCI

Many enterprises still struggle to get security right. To protect their business, it is critical they focus on security during the entire infrastructure and application lifecycle, including continuous integration.

View Video

CircleCI

CI CD
DevOps

Read more about Securing your CI pipeline

Improve engineering teams faster with DORA metrics

Apr 24, 2023 By Sleuth In Sleuth

We talk with numerous teams that want to improve their engineering performance. Here, we explain how to accelerate your progress using DORA metrics — a set of key performance indicators that can help you measure and optimize your team's software development process. You'll learn practical tips on how to leverage these metrics to achieve faster and more efficient team improvement. But first, you'll need your team to see the value in DORA metrics.

Read Post

Sleuth

Read more about Improve engineering teams faster with DORA metrics

Optimize your CI/CD Pipeline with Coralogix Tagging

Apr 18, 2023 By Chris Cooney In Coralogix

Continuous Integration/Continuous Delivery (CI/CD) has now become the de-facto standard for all engineering teams seeking to keep pace with the demands of the modern economy. At Coralogix, we operate some of the most advanced build and deploy pipelines in the world. We’ve baked that knowledge into our platform with a CI/CD Observability feature called Coralogix Tagging.

Read Post

Coralogix

Read more about Optimize your CI/CD Pipeline with Coralogix Tagging

Any decent DORA metrics tool should do this

Apr 18, 2023 By Sleuth In Sleuth

Data from DORA metrics isn't enough to help software engineering teams. Any decent DORA metrics tracker should go beyond just giving you data. It should also help you improve on that data by suggesting what to improve. Does your tool do this?

View Video