Browse Library
Sign In Start Free Trial
Close icon Search icon
Account
Browse Library Advanced Search Sign In Start Free Trial

Add to playlist

Create a Playlist

Modal Close icon
You need to login to use this feature.
  • Book Overview & Buying Secure Continuous Delivery on Google Cloud
  • Table Of Contents Toc
  • Feedback & Rating feedback
Secure Continuous Delivery on Google Cloud

Secure Continuous Delivery on Google Cloud

By : Galloro, Avery, Dorbin
5 (3)
Buy this Book
close
close
Secure Continuous Delivery on Google Cloud

Secure Continuous Delivery on Google Cloud

5 (3)
By: Galloro, Avery, Dorbin
Buy this Book

Overview of this book

Continuous delivery, a cornerstone of modern software engineering, facilitates quick and secure software delivery using a robust toolkit encompassing automated builds, testing, source code management, artifact storage, and deployment. Whether you integrate tools from different providers or use a set of managed services from a single cloud provider, the goal is to streamline setup, integration, and management. This book focuses on continuous delivery on Google Cloud. Starting with an introduction to continuous delivery and secure software supply chain concepts, this book uses hands-on exercises to demonstrate how to continuously test your application with Skaffold and Cloud Code, leverage AI-assisted code generation with Cloud Code and Cloud Workstations, and automate your continuous integration with Cloud Build. You’ll see how to store and scan your software artifacts on Artifact Registry, orchestrate deployments with Cloud Deploy, and release your software on GKE and Cloud Run, configured to admit only trusted code. Using an example application, you’ll implement tools for creating an end-to-end delivery pipeline using Google Cloud services. By the end of this book, you’ll be able to build a secure software delivery pipeline from development to production using Google Cloud managed services and best practices.
Table of Contents (19 chapters)
close
close
close
Preface
Preface
Who this book is for
What this book covers
To get the most out of this book
Download the example code files
Conventions used
Get in touch
Share Your Thoughts
Download a free PDF copy of this book
1
Part 1:Introduction and Code Your Application
Part 1:Introduction and Code Your Application
Free Chapter
2
Chapter 1: Introducing Continuous Delivery and Software Supply Chain Security
chevron up
Chapter 1: Introducing Continuous Delivery and Software Supply Chain Security
Introduction to CD
Understanding continuous integration
Understanding continuous testing
Understanding deployment automation
Securing your software delivery pipeline
Summary
3
Chapter 2: Using Skaffold for Development, Build, and Deploy
Chapter 2: Using Skaffold for Development, Build, and Deploy
Technical requirements
Understanding Skaffold’s capabilities and architecture
Installing Skaffold
Using Skaffold with your application
Summary
4
Chapter 3: Developing and Testing with Cloud Code
Chapter 3: Developing and Testing with Cloud Code
Technical requirements
About Cloud Code
Continuously deploying and testing locally while you code
Creating a GKE cluster from your editor
Continuously deploying and testing a Kubernetes app remotely while you code
Debugging
Code with AI assistance
Cleaning up
Summary
5
Chapter 4: Securing Your Code with Cloud Workstations
Chapter 4: Securing Your Code with Cloud Workstations
Technical requirements
Introduction to Cloud Workstations
Configuring workstations for developers
Customizing Cloud Workstations
Coding on Cloud Workstations
Cleaning up
Summary
6
Part 2: Build and Package Your Application
Part 2: Build and Package Your Application
7
Chapter 5: Automating Continuous Integration with Cloud Build
Chapter 5: Automating Continuous Integration with Cloud Build
Technical requirements
Cloud Build architecture and capabilities
Building your application manually
Customizing your build workers
Generating security information for your build
Automating builds
Summary
8
Chapter 6: Securely Store Your Software on Artifact Registry
Chapter 6: Securely Store Your Software on Artifact Registry
Technical requirements
Managing container images with Artifact Registry
Managing language package distribution with Artifact Registry
Using virtual and remote repositories
Using vulnerability scanning to detect threats
Summary
References
9
Part 3: Deploy and Run Your Application
Part 3: Deploy and Run Your Application
10
Chapter 7: Exploring Runtimes – GKE, GKE Enterprise, and Cloud Run
Chapter 7: Exploring Runtimes – GKE, GKE Enterprise, and Cloud Run
Understanding containers
Understanding Google Kubernetes Engine
Understanding GKE Enterprise
Understanding Cloud Run
Summary
References
11
Chapter 8: Automating Software Delivery Using Cloud Deploy
Chapter 8: Automating Software Delivery Using Cloud Deploy
Technical requirements
Exploring the Cloud Deploy architecture
Understanding Cloud Deploy target types
Using the Kubernetes manifest and Kustomization
Using a Skaffold configuration
Preparing your project
Creating a delivery pipeline
Creating a release
Examining a release
Verifying your deployment
Using a deployment strategy
Summary
12
Chapter 9: Securing Your Runtimes with Binary Authorization
Chapter 9: Securing Your Runtimes with Binary Authorization
Technical requirements
Understanding Binary Authorization concepts
Setting up Binary Authorization
Setting up attestations
Configuring Binary Authorization policies
Summary
13
Part 4: Hands-On Secure Pipeline Delivery and Looking Forward
Part 4: Hands-On Secure Pipeline Delivery and Looking Forward
14
Chapter 10: Demonstrating an End-to-End Software Delivery Pipeline
Chapter 10: Demonstrating an End-to-End Software Delivery Pipeline
Technical requirements
Software delivery pipeline overview
Building your software delivery pipeline
Running your pipeline
Summary
15
Chapter 11: Integrating with Your Organization’s Workflows
Chapter 11: Integrating with Your Organization’s Workflows
Technical requirements
Connecting a Cloud Build trigger to a third-party repository
Integrating Cloud Deploy with automated testing
Integrating Cloud Deploy approval with third-party workflow management tools
Summary
16
Chapter 12: Diving into Best Practices and Trends in Continuous Delivery
Chapter 12: Diving into Best Practices and Trends in Continuous Delivery
Best practices for deploying secure delivery pipelines
Anticipating the future
Summary
References
17
Index
Index
Why subscribe?
18
Other Books You May Enjoy
Other Books You May Enjoy
Packt is searching for authors like you
Share Your Thoughts
Download a free PDF copy of this book

Understanding deployment automation

Deployment automation allows software to be easily and automatically deployed to pre-production and production environments, at the push of a button. This is crucial for minimizing risks during production rollouts and results in rapid feedback on software quality. By enabling teams to perform extensive testing immediately after updates, deployment automation ensures prompt assessment and enhances overall software quality. Implementing deployment automation doesn’t necessarily mean that you are doing continuous deployment. Continuous deployment is when you try to deploy every code change to production as soon as possible, and this can or cannot be applicable to your environment. You can do CD and automate your deployments but still have gated releases, feature flags, or even manual switches to formally light up the release.

An automated deployment process has the following inputs:

  • Software artifacts (created by CI) that are ready for deployment in any environment, including production
  • Configuration details unique to each environment
  • Scripts for setting up the environment, deploying packages, and conducting deployment tests

Now, let’s look at how to automate your deployments.

Implementing deployment automation

Here is a list of fundamental principles and practices that a team should follow to implement deployment automation:

  • Implement a uniform deployment process across all environments, including production. This ensures the deployment method is thoroughly tested before it’s used in production.
  • Enable automated deployment of any artifact version to any environment by anyone with the right permissions. A process is not fully automated if it requires that someone file a ticket or manually prepare an environment.
  • Use identical packages across all environments and maintain environment-specific configurations separately. This ensures packages deployed in production are the same as those tested.
  • Ensure each environment’s state can be re-created using version control. This makes deployment repeatable and enables deterministic production restoration in disaster recovery (DR) scenarios.

That covers deployment automation. In the next section, we introduce software delivery security.

End of Section 5
Next Section
bookmark search playlist download
font-size

Change the font size

margin-width

Change margin width

day-mode

Change background colour

Close icon Search
Country selected
Close icon Your notes and bookmarks

Delete Bookmark

Modal Close icon
Are you sure you want to delete it?
Cancel
Yes, Delete

Confirmation

Modal Close icon
claim successful
Order Page Read Now

Buy this book with your credits?

Modal Close icon
Are you sure you want to buy this book with one of your credits?
Close
YES, BUY