Topic: iac

Security, automation and developer experience: The top DevOps trends of 2024

If you ask most folks to describe the top DevOps trends in 2024, you’ll likely hear buzzwords like AI or DevSecOps. Those are certainly trendy topics. But based on the work I do on an everyday basis helping businesses plan and execute DevOps strategies, I’m noticing a different set of salient trends in the world … continue reading

Why using IaC alone is a half-baked infrastructure strategy

The shift to a developer-centric vision of infrastructure that started about 15 years ago offered users frequent updates and a way to simplify API-centric automation. Infrastructure as Code (IaC) became the standard method for software developers to describe and deploy cloud infrastructure. While on the surface, having more freedom sounds like a nearly utopian scenario … continue reading

It’s time to embrace Monitoring-as-Code

Infrastructure-as-Code (IaC) has revolutionized the management and provisioning of everything from local virtual machines to exotic AWS services. It is time for Monitoring-as-Code (MaC) to do the same in the application performance monitoring (APM) and synthetic monitoring fields — and the good news is that everyone stands to benefit. Provisioning monitoring checks by hand is … continue reading

JFrog extends support for Terraform

JFrog today announced native support for Terraform files, allowing users to maintain consistent workflows and processes across multiple cloud platforms. Terraform comes as an Infrastructure-as-Code (IaC) technology, which manages an application’s technology infrastructure as code via Terraform files.  Due to the new Artifcatory support for Terraform, developers are enabled to manage IaC configurations with existing … continue reading

Checkmarx KICS now integrated into GitLab 14.5

Checkmarx’s open-source KICS (Keeping Infrastructure as Code Secure) solution has been integrated into version 14.5 of the GitLab DevOps Platform as an infrastructure-as-code scanning tool. KICS automatically parses infrastructure-as-code files of any type to detect insecure configurations that could expose applications, data and services to attack. Users of Ansible, AWS CloudFormation, K8S or Terraform can … continue reading

Shifting hard left: Why securing IaC is the next step in compliant software development

The accelerated CI/CD practices that cloud environments have enabled has led many developer teams to create automated script tools that replace the manual configuration and provisioning of apps by communicating directly with the cloud provider’s API. This approach to software production is known as Infrastructure-as-Code (IaC), and essentially forms the building blocks upon which the … continue reading

SD Times Open-Source Project of the Week: Terratag

Terratag is a new open-source automation tool for developers and DevOps pros who want to avoid the pain of manual tagging. The project was developed by Infrastructure-as-Code (IaC) management software provider env0 for Terraform users. Terratag allows users of the popular IaC framework Terraform to streamline time-consuming resource tagging processes by enabling the automatic creation … continue reading

SD Times GitHub Project of the Week: Terratest

Gruntwork announced the Apache 2.0 open-source release of their Terratest infrastructure code testing utility at the end of last month, providing developers with a flexible tool for automating tests in their infrastructure-as-code initiatives. Gruntwork cofounder Yevgeniy Brikman hopes this new tool will alleviate an industry-wide fear that an incorrect change in an infrastructure codebase might … continue reading

DMCA.com Protection Status