Checkov, the open-source tool for finding infrastructure misconfigurations, has been updated with new CI/CD configuration policies. These policies can be applied across popular CI/CD frameworks like GitHub Actions, GitLab Runners, BitBucket Pipelines, CircleCI, and Argo. Checkov has a developer-first approach to supply chain security, so it embeds these CI/CD policies directly into existing DevOps workflows … continue reading
The following is a listing of CI/CD tool providers, along with a brief description of their offerings. CloudBees provides the leading software delivery platform for enterprises, enabling them to continuously innovate in a world powered by the digital experience. CloudBees enables organizations with highly-complex environments to deliver scalable, compliant, governed, and secure software from the … continue reading
In the past, the CI/CD pipeline was simply a place to integrate code. Developers would write their code in GitHub, pass it through the pipeline, and then deploy it. However, with the emergence of shift left security and newer automation practices, the pipeline has become a much more critical piece of the software delivery lifecycle. … continue reading
Armory announced the general availability of Armory Continuous Deployment-as-a-Service to deliver declarative deployments across multiple environments that support advanced progressive strategies. “Our goal is to give companies a solution that’s simple to use but will grow with them as complexity increases,” said Jim Douglas, president and CEO of Armory. “The new product enables development teams … continue reading
Mattermost 7.0 offers users the ability to develop custom apps and integrations so that users can communicate securely with native voice calls and screen sharing. Users can also leverage out-of-the-box workflow templates to improve technical team productivity and operations. The Mattermost developer collaboration platform now features enhanced capabilities to enable real-time collaboration for critical developer … continue reading
Octopus Deploy, provider of continuous deployment orchestration software, today announced that it has expanded support for teams that are containerizing their applications and services. With the latest updates, DevOps teams now have the ability to modernize CI/CD practices at their own pace as well as manage new and older applications all in the same tool. … continue reading
The CD Foundation has announced CDEvents, a vendor-neutral specification for defining the format of event data. A standardized set of specifications will enable an ecosystem of tools that can collect, store, visualize and analyze events across CD platforms to help measure DevOps metrics and performance and visualize end-to-end workflows. “CDEvents open the doors to scalable … continue reading
Codefresh, the continuous integration/delivery (CI/CD) solution, today announced that its CD platform will be made available as a fully-hosted solution for GitOps teams looking to achieve frictionless, GitOps based continuous software delivery in the cloud. This new hosted offering works to provide Argo CD as a Service as well as introduces new DORA dashboards and … continue reading
The Harness CI/CD platform is now available through a free, source-available community edition. The company recently announced that it released the CD component of its platform as an open-source tool, whereas previously only the CI component had an open source version. According to the company, Harness uses machine learning to determine deployment quality and can … continue reading
Over the past year, software development has seen an increase in the adoption of Lean software delivery practices. According to the “2021 State of Continuous Delivery Report” conducted by the Continuous Delivery Foundation, 74% of developers are currently utilizing some kind of DevOps practice. However, the software development community as a whole remains in the … continue reading
Perforce Software announced new functionality to speed the remediation of discovered defects in automated scans. This is delivered through integration with Secure Code Warrior (SCW) in which Klocwork customers can instantly connect to resources that explain how to mitigate vulnerabilities. By Connecting the relevant SCW learning resources to the security vulnerabilities as they are detected … continue reading
OutSystems has launched a preview of Project Neo, the codename of a platform that combines dynamic scaling cloud architecture and modern CI/CD practices with a low-code environment. “OutSystems is breaking the boundaries of traditional software development. With Project Neo, we’ve architected a platform that allows any development team to build any app at internet scale,” … continue reading