Browse Library
Sign In Start Free Trial
Close icon Search icon
Account
Browse Library Advanced Search Sign In Start Free Trial

Add to playlist

Create a Playlist

Modal Close icon
You need to login to use this feature.
  • Book Overview & Buying Secure Continuous Delivery on Google Cloud
  • Table Of Contents Toc
  • Feedback & Rating feedback
Secure Continuous Delivery on Google Cloud

Secure Continuous Delivery on Google Cloud

By : Galloro, Avery, Dorbin
5 (3)
Buy this Book
close
close
Secure Continuous Delivery on Google Cloud

Secure Continuous Delivery on Google Cloud

5 (3)
By: Galloro, Avery, Dorbin
Buy this Book

Overview of this book

Continuous delivery, a cornerstone of modern software engineering, facilitates quick and secure software delivery using a robust toolkit encompassing automated builds, testing, source code management, artifact storage, and deployment. Whether you integrate tools from different providers or use a set of managed services from a single cloud provider, the goal is to streamline setup, integration, and management. This book focuses on continuous delivery on Google Cloud. Starting with an introduction to continuous delivery and secure software supply chain concepts, this book uses hands-on exercises to demonstrate how to continuously test your application with Skaffold and Cloud Code, leverage AI-assisted code generation with Cloud Code and Cloud Workstations, and automate your continuous integration with Cloud Build. You’ll see how to store and scan your software artifacts on Artifact Registry, orchestrate deployments with Cloud Deploy, and release your software on GKE and Cloud Run, configured to admit only trusted code. Using an example application, you’ll implement tools for creating an end-to-end delivery pipeline using Google Cloud services. By the end of this book, you’ll be able to build a secure software delivery pipeline from development to production using Google Cloud managed services and best practices.
Table of Contents (19 chapters)
close
close
close
Preface
Preface
Who this book is for
What this book covers
To get the most out of this book
Download the example code files
Conventions used
Get in touch
Share Your Thoughts
Download a free PDF copy of this book
1
Part 1:Introduction and Code Your Application
Part 1:Introduction and Code Your Application
Free Chapter
2
Chapter 1: Introducing Continuous Delivery and Software Supply Chain Security
Chapter 1: Introducing Continuous Delivery and Software Supply Chain Security
Introduction to CD
Understanding continuous integration
Understanding continuous testing
Understanding deployment automation
Securing your software delivery pipeline
Summary
3
Chapter 2: Using Skaffold for Development, Build, and Deploy
Chapter 2: Using Skaffold for Development, Build, and Deploy
Technical requirements
Understanding Skaffold’s capabilities and architecture
Installing Skaffold
Using Skaffold with your application
Summary
4
Chapter 3: Developing and Testing with Cloud Code
Chapter 3: Developing and Testing with Cloud Code
Technical requirements
About Cloud Code
Continuously deploying and testing locally while you code
Creating a GKE cluster from your editor
Continuously deploying and testing a Kubernetes app remotely while you code
Debugging
Code with AI assistance
Cleaning up
Summary
5
Chapter 4: Securing Your Code with Cloud Workstations
Chapter 4: Securing Your Code with Cloud Workstations
Technical requirements
Introduction to Cloud Workstations
Configuring workstations for developers
Customizing Cloud Workstations
Coding on Cloud Workstations
Cleaning up
Summary
6
Part 2: Build and Package Your Application
Part 2: Build and Package Your Application
7
Chapter 5: Automating Continuous Integration with Cloud Build
Chapter 5: Automating Continuous Integration with Cloud Build
Technical requirements
Cloud Build architecture and capabilities
Building your application manually
Customizing your build workers
Generating security information for your build
Automating builds
Summary
8
Chapter 6: Securely Store Your Software on Artifact Registry
Chapter 6: Securely Store Your Software on Artifact Registry
Technical requirements
Managing container images with Artifact Registry
Managing language package distribution with Artifact Registry
Using virtual and remote repositories
Using vulnerability scanning to detect threats
Summary
References
9
Part 3: Deploy and Run Your Application
Part 3: Deploy and Run Your Application
10
Chapter 7: Exploring Runtimes – GKE, GKE Enterprise, and Cloud Run
Chapter 7: Exploring Runtimes – GKE, GKE Enterprise, and Cloud Run
Understanding containers
Understanding Google Kubernetes Engine
Understanding GKE Enterprise
Understanding Cloud Run
Summary
References
11
Chapter 8: Automating Software Delivery Using Cloud Deploy
Chapter 8: Automating Software Delivery Using Cloud Deploy
Technical requirements
Exploring the Cloud Deploy architecture
Understanding Cloud Deploy target types
Using the Kubernetes manifest and Kustomization
Using a Skaffold configuration
Preparing your project
Creating a delivery pipeline
Creating a release
Examining a release
Verifying your deployment
Using a deployment strategy
Summary
12
Chapter 9: Securing Your Runtimes with Binary Authorization
Chapter 9: Securing Your Runtimes with Binary Authorization
Technical requirements
Understanding Binary Authorization concepts
Setting up Binary Authorization
Setting up attestations
Configuring Binary Authorization policies
Summary
13
Part 4: Hands-On Secure Pipeline Delivery and Looking Forward
Part 4: Hands-On Secure Pipeline Delivery and Looking Forward
14
Chapter 10: Demonstrating an End-to-End Software Delivery Pipeline
chevron up
Chapter 10: Demonstrating an End-to-End Software Delivery Pipeline
Technical requirements
Software delivery pipeline overview
Building your software delivery pipeline
Running your pipeline
Summary
15
Chapter 11: Integrating with Your Organization’s Workflows
Chapter 11: Integrating with Your Organization’s Workflows
Technical requirements
Connecting a Cloud Build trigger to a third-party repository
Integrating Cloud Deploy with automated testing
Integrating Cloud Deploy approval with third-party workflow management tools
Summary
16
Chapter 12: Diving into Best Practices and Trends in Continuous Delivery
Chapter 12: Diving into Best Practices and Trends in Continuous Delivery
Best practices for deploying secure delivery pipelines
Anticipating the future
Summary
References
17
Index
Index
Why subscribe?
18
Other Books You May Enjoy
Other Books You May Enjoy
Packt is searching for authors like you
Share Your Thoughts
Download a free PDF copy of this book

Demonstrating an End-to-End Software Delivery Pipeline

In this chapter, we will use all the Google Cloud tools that we’ve described in the book to build an end-to-end pipeline, from code to production, given an example application.

You’ll update your app in Cloud Code, commit your changes to trigger a build in Cloud Build, scan for vulnerabilities using Artifact Registry, and use Cloud Deploy to deploy your app in a QA GKE cluster, where integration and usability tests can be performed, and then deploy it using a canary deployment strategy to a production GKE cluster.

Performing the steps in this chapter gives you a chance to practice the complete software delivery flow in Google Cloud.

To avoid confusion, note that this chapter uses the terms pipeline and software delivery pipeline to refer to the components and processes that make up your end-to-end delivery journey. But in a Cloud Deploy context, a delivery pipeline is a specific Cloud Deploy resource that...

Unlock full access

Continue reading for free

A Packt free trial gives you instant online access to our library of over 7000 practical eBooks and videos, constantly updated with the latest in tech
Start a 7-day FREE trial
End of Section 1
Next Section
bookmark search playlist download
font-size

Change the font size

margin-width

Change margin width

day-mode

Change background colour

Close icon Search
Country selected
Close icon Your notes and bookmarks

Delete Bookmark

Modal Close icon
Are you sure you want to delete it?
Cancel
Yes, Delete

Confirmation

Modal Close icon
claim successful
Order Page Read Now

Buy this book with your credits?

Modal Close icon
Are you sure you want to buy this book with one of your credits?
Close
YES, BUY