Browse Library
Sign In Start Free Trial
Close icon Search icon
Account
Browse Library Advanced Search Sign In Start Free Trial

Add to playlist

Create a Playlist

Modal Close icon
You need to login to use this feature.
  • Book Overview & Buying Secure Continuous Delivery on Google Cloud
  • Table Of Contents Toc
  • Feedback & Rating feedback
Secure Continuous Delivery on Google Cloud

Secure Continuous Delivery on Google Cloud

By : Galloro, Avery, Dorbin
5 (3)
Buy this Book
close
close
Secure Continuous Delivery on Google Cloud

Secure Continuous Delivery on Google Cloud

5 (3)
By: Galloro, Avery, Dorbin
Buy this Book

Overview of this book

Continuous delivery, a cornerstone of modern software engineering, facilitates quick and secure software delivery using a robust toolkit encompassing automated builds, testing, source code management, artifact storage, and deployment. Whether you integrate tools from different providers or use a set of managed services from a single cloud provider, the goal is to streamline setup, integration, and management. This book focuses on continuous delivery on Google Cloud. Starting with an introduction to continuous delivery and secure software supply chain concepts, this book uses hands-on exercises to demonstrate how to continuously test your application with Skaffold and Cloud Code, leverage AI-assisted code generation with Cloud Code and Cloud Workstations, and automate your continuous integration with Cloud Build. You’ll see how to store and scan your software artifacts on Artifact Registry, orchestrate deployments with Cloud Deploy, and release your software on GKE and Cloud Run, configured to admit only trusted code. Using an example application, you’ll implement tools for creating an end-to-end delivery pipeline using Google Cloud services. By the end of this book, you’ll be able to build a secure software delivery pipeline from development to production using Google Cloud managed services and best practices.
Table of Contents (19 chapters)
close
close
close
Preface
Preface
Who this book is for
What this book covers
To get the most out of this book
Download the example code files
Conventions used
Get in touch
Share Your Thoughts
Download a free PDF copy of this book
1
Part 1:Introduction and Code Your Application
Part 1:Introduction and Code Your Application
Free Chapter
2
Chapter 1: Introducing Continuous Delivery and Software Supply Chain Security
chevron up
Chapter 1: Introducing Continuous Delivery and Software Supply Chain Security
Introduction to CD
Understanding continuous integration
Understanding continuous testing
Understanding deployment automation
Securing your software delivery pipeline
Summary
3
Chapter 2: Using Skaffold for Development, Build, and Deploy
Chapter 2: Using Skaffold for Development, Build, and Deploy
Technical requirements
Understanding Skaffold’s capabilities and architecture
Installing Skaffold
Using Skaffold with your application
Summary
4
Chapter 3: Developing and Testing with Cloud Code
Chapter 3: Developing and Testing with Cloud Code
Technical requirements
About Cloud Code
Continuously deploying and testing locally while you code
Creating a GKE cluster from your editor
Continuously deploying and testing a Kubernetes app remotely while you code
Debugging
Code with AI assistance
Cleaning up
Summary
5
Chapter 4: Securing Your Code with Cloud Workstations
Chapter 4: Securing Your Code with Cloud Workstations
Technical requirements
Introduction to Cloud Workstations
Configuring workstations for developers
Customizing Cloud Workstations
Coding on Cloud Workstations
Cleaning up
Summary
6
Part 2: Build and Package Your Application
Part 2: Build and Package Your Application
7
Chapter 5: Automating Continuous Integration with Cloud Build
Chapter 5: Automating Continuous Integration with Cloud Build
Technical requirements
Cloud Build architecture and capabilities
Building your application manually
Customizing your build workers
Generating security information for your build
Automating builds
Summary
8
Chapter 6: Securely Store Your Software on Artifact Registry
Chapter 6: Securely Store Your Software on Artifact Registry
Technical requirements
Managing container images with Artifact Registry
Managing language package distribution with Artifact Registry
Using virtual and remote repositories
Using vulnerability scanning to detect threats
Summary
References
9
Part 3: Deploy and Run Your Application
Part 3: Deploy and Run Your Application
10
Chapter 7: Exploring Runtimes – GKE, GKE Enterprise, and Cloud Run
Chapter 7: Exploring Runtimes – GKE, GKE Enterprise, and Cloud Run
Understanding containers
Understanding Google Kubernetes Engine
Understanding GKE Enterprise
Understanding Cloud Run
Summary
References
11
Chapter 8: Automating Software Delivery Using Cloud Deploy
Chapter 8: Automating Software Delivery Using Cloud Deploy
Technical requirements
Exploring the Cloud Deploy architecture
Understanding Cloud Deploy target types
Using the Kubernetes manifest and Kustomization
Using a Skaffold configuration
Preparing your project
Creating a delivery pipeline
Creating a release
Examining a release
Verifying your deployment
Using a deployment strategy
Summary
12
Chapter 9: Securing Your Runtimes with Binary Authorization
Chapter 9: Securing Your Runtimes with Binary Authorization
Technical requirements
Understanding Binary Authorization concepts
Setting up Binary Authorization
Setting up attestations
Configuring Binary Authorization policies
Summary
13
Part 4: Hands-On Secure Pipeline Delivery and Looking Forward
Part 4: Hands-On Secure Pipeline Delivery and Looking Forward
14
Chapter 10: Demonstrating an End-to-End Software Delivery Pipeline
Chapter 10: Demonstrating an End-to-End Software Delivery Pipeline
Technical requirements
Software delivery pipeline overview
Building your software delivery pipeline
Running your pipeline
Summary
15
Chapter 11: Integrating with Your Organization’s Workflows
Chapter 11: Integrating with Your Organization’s Workflows
Technical requirements
Connecting a Cloud Build trigger to a third-party repository
Integrating Cloud Deploy with automated testing
Integrating Cloud Deploy approval with third-party workflow management tools
Summary
16
Chapter 12: Diving into Best Practices and Trends in Continuous Delivery
Chapter 12: Diving into Best Practices and Trends in Continuous Delivery
Best practices for deploying secure delivery pipelines
Anticipating the future
Summary
References
17
Index
Index
Why subscribe?
18
Other Books You May Enjoy
Other Books You May Enjoy
Packt is searching for authors like you
Share Your Thoughts
Download a free PDF copy of this book

Introduction to CD

CD is a set of practices and principles that aim to streamline and automate software delivery from commit to production. Teams and organizations practice with the goal of deploying software to production on demand at any time without impacting service availability. The main objective of CD is that software should always be in a deployable state and software release should be a fast, repeatable process.

This section is a quick overview of CD, what it consists of, and how it can help your organization achieve better and faster software delivery.

CD practices

Some of the practices that underpin CD are set out here:

  • CI: CI means that code changes are integrated into the source code repository quickly and regularly. Automated builds and tests are triggered with each code commit, providing rapid feedback to developers. Consistent, reliable builds are at the foundation of a trustworthy CD process.
  • Continuous testing: This includes unit tests, integration tests, and end-to-end (E2E) tests. Test suites are executed automatically during the pipeline to catch regressions early and increase your confidence in the quality of the system.
  • Small, frequent releases: Instead of large, infrequent releases, CD tries to break down features and changes into small, manageable chunks that can be released more frequently. This reduces the risk of introducing regressions and makes it easier to identify and fix problems.
  • Trunk-based development: A software development methodology in which developers divide their work into small batches and merge each batch into the trunk at least once a day. This approach is in contrast to more complex branching strategies such as feature branching or Gitflow, in which developers create separate branches for different features or bug fixes.
  • Deployment pipeline: The entire release process, from building the code to deploying it to production, is automated using a pipeline. The automated pipeline can run such tasks as the following:
    • Compiling code
    • Executing unit tests
    • Building software artifacts as container images
    • Progressively deploying the app on different pre-production environments where different kinds of automated or manual tests can be performed
    • Finally releasing the application to production

The following diagram represents an example pipeline, starting when there is a new commit in the source code repository. The tasks represented in the diagram and the ones listed previously are examples. The exact pipeline sequence changes depending on factors such as the application itself, the programming language, and the framework, as well as specific organizational contexts:

Figure 1.1 – A high-level look at a software delivery pipeline

Figure 1.1 – A high-level look at a software delivery pipeline

That process, with those practices, can help you achieve improved software delivery performance, as described in the next section.

The impact of CD on software delivery performance

The DevOps Research and Assessment (DORA) research program has identified CD as one of the main capabilities driving software delivery performance, as measured by DORA’s four key metrics.

The following list shows those four metrics and how they can help you improve your software delivery performance:

  • Deployment Frequency: How often code changes are deployed to production.

    CD encourages more frequent deployments because it automates the deployment process and ensures that code changes are always production ready. Teams practicing CD can deploy changes to production on demand, often multiple times a day. Compare this to traditional approaches that might have longer release cycles.

  • Lead Time for Changes: The time it takes to go from code commit to a production-ready release.

    CD streamlines the software development process, enabling faster development cycles and reducing delays. CD automates steps in the delivery pipeline, such as building, testing, and deploying, which reduces manual intervention and wait times.

    With CD, code changes are continuously integrated, tested, and delivered, shortening the time from development to production. Frequent, small releases accelerate TTM.

  • Change Failure Rate: The percentage of changes or deployments that fail or require rollback.

    CD emphasizes continuous testing, including unit tests, integration tests, and acceptance tests. This reduces the chance that defects and errors make their way into production.

    Automation, in general, makes the release process repeatable and less error-prone because almost nothing is left to interpretation. Frequent, smaller releases make it easier to identify and fix issues early in the development process, reducing the likelihood of catastrophic failures in production.

  • Time to Restore Services: The average time it takes to restore services after a production failure.

    CD practices typically include automated monitoring and alerting in production environments. This helps teams detect issues quickly. When issues do occur, CD enables rapid rollback or forward fixes. Automated deployments make it easier to apply fixes and quickly get the system back to a working state.

See https://dora.dev/ for more info on DORA and the four key metrics.

In the rest of this chapter, we describe the most important underlying CD practices in more detail, starting with CI.

End of Section 2
Next Section
bookmark search playlist download
font-size

Change the font size

margin-width

Change margin width

day-mode

Change background colour

Close icon Search
Country selected
Close icon Your notes and bookmarks

Delete Bookmark

Modal Close icon
Are you sure you want to delete it?
Cancel
Yes, Delete

Confirmation

Modal Close icon
claim successful
Order Page Read Now

Buy this book with your credits?

Modal Close icon
Are you sure you want to buy this book with one of your credits?
Close
YES, BUY