Articles about CI/CD

Using CI/CD (continuous integration and continuous deployment) is supposed to streamline and speed up application development.

However, outdated cloud-based approaches negate many of the benefits. Buildkite's co-founder and CEO, Keith Pitt helped pioneer the hybrid CI/CD approach, which combines elements of both managed and self-hosted CI/CD. With hybrid, users control the build environment and can customize their needs. We spoke to Keith to learn more

Continue reading →

You'll often hear CI (continuous integration) and CD (continuous deployment) mentioned in the same breath, often as CI/CD, and indeed both are part of improving the quality, speed and efficiency of software development.

However, Stephen Atwell, principal product manager at Armory, argues that they shouldn't be considered as related functions. We spoke to him to find out why.

Continue reading →

Hot on the heels of this morning's story about wasted developer time comes a new survey from GitLab looking at the technologies being used to help DevSecOps teams be more productive.

The company surveyed more than 5,000 development, security, and operations professionals about everything from deployment frequency to the practices teams have adopted to learn what the most agile and efficient organizations have in common.

Continue reading →

Continuous integration and continuous delivery (CI/CD) are critical to achieving DevOps success across organizations -- offering the ability to get software changes into production safely, quickly, and sustainably. By reducing the time between when code is written and deployed, while allowing developers to maintain high quality and minimize risk, CD enables teams to release new features quickly.

However, for CD to be a success, speed cannot come at the detriment of security. By building security validation into the CI/CD pipeline, developers will see benefits in productivity by reducing time to market and build consumer trust by developing more secure apps and data.

Continue reading →

Recent high-profile supply chain attacks such as SolarWinds have highlighted how vulnerable the software development pipeline can be.

To find out more about why the CI/CD pipeline is particularly vulnerable to attacks and what can be done to prevent them, we spoke to Vickie Li, developer evangelist at ShiftLeft, which has just launched a new product, ShiftLeft CORE, aimed at reducing risk to the software code base.

Continue reading →