Secure Continuous Delivery on Google Cloud: Implement an automated and secure software delivery pipeline on Google Cloud using native services - Couverture souple

Galloro, Giovanni; Avery, Nathaniel; Dorbin, David

 
9781805129288: Secure Continuous Delivery on Google Cloud: Implement an automated and secure software delivery pipeline on Google Cloud using native services
Couverture souple
ISBN 10 : 1805129287 ISBN 13 : 9781805129288
Editeur : Packt Publishing, 2024

Synopsis

Build an end-to-end continuous delivery pipeline on Google Cloud and secure your software supply chain using GCP tools and services including Cloud Code, Cloud Workstations, Cloud Build, Artifact Registry, and Cloud Deploy

Key Features
  • Gain hands-on experience building an end-to-end software delivery pipeline using Google Cloud services
  • Deploy your applications on GKE, Cloud Run, and across hybrid and multi-cloud environments
  • Secure pipelines with artifact scanning, dependency vulnerability checks, signed provenance, and admission control
  • Purchase of the print or Kindle book includes a free PDF eBook
Book Description

Continuous delivery, a cornerstone of modern software engineering, facilitates quick and secure software delivery using a robust toolkit encompassing automated builds, testing, source code management, artifact storage, and deployment. Whether you integrate tools from different providers or use a set of managed services from a single cloud provider, the goal is to streamline setup, integration, and management. This book focuses on continuous delivery on Google Cloud.

Starting with an introduction to continuous delivery and secure software supply chain concepts, this book uses hands-on exercises to demonstrate how to continuously test your application with Skaffold and Cloud Code, leverage AI-assisted code generation with Cloud Code and Cloud Workstations, and automate your continuous integration with Cloud Build. You'll see how to store and scan your software artifacts on Artifact Registry, orchestrate deployments with Cloud Deploy, and release your software on GKE and Cloud Run, configured to admit only trusted code. Using an example application, you'll implement tools for creating an end-to-end delivery pipeline using Google Cloud services.

By the end of this book, you'll be able to build a secure software delivery pipeline from development to production using Google Cloud managed services and best practices.

What you will learn
  • Create an end-to-end continuous delivery pipeline using Cloud Build, Artifact Registry, and Cloud Deploy
  • Develop, build, and deploy container-based applications with Skaffold and Cloud Code
  • Experiment with AI-assisted code generation in Cloud Code
  • Automate continuous integration with Cloud Build triggers
  • Automate deployment on GKE and Cloud Run through Cloud Deploy
  • Enhance pipeline security with Artifact Analysis, Binary Authorization, and SLSA
  • Apply best practices, including logging and monitoring
Who this book is for

This book is for DevOps, Platform, and Cloud Engineers tasked with managing application deployment and creating continuous delivery pipelines who want to automate workflows in a fully managed, scalable, and secure platform. Software developers involved in application delivery and interested in harnessing Google Cloud tools to optimize development flow status and feedback loop will also find this book useful. Prior knowledge of Google Cloud fundamentals (including Cloud APIs and IAM), software delivery, containerization, and Kubernetes will enhance the reading experience.

Table of Contents
  1. Introducing Continuous Delivery and Software Supply Chain Security
  2. Using Skaffold for Development, Build, and Deploy
  3. Developing and Testing with Cloud Code
  4. Securing Your Code with Cloud Workstations
  5. Automating Continuous Integration with Cloud Build
  6. Securely Store Your Software on Artifact Registry
  7. Exploring Runtimes - GKE, GKE Enterprise, and Cloud Run
  8. Automating Software Delivery Using Cloud Deploy
  9. Securing Your Runtimes with Binary Authorization
  10. Demonstrating an End-to-End Software Delivery Pipeline

(N.B. Please use the Look Inside option to see further chapters)

Les informations fournies dans la section « Synopsis » peuvent faire référence à une autre édition de ce titre.

À propos de l?auteur

Giovanni Galloro has been working at Google since 2017 as a Customer Engineer specialized on container based runtimes, DevOps tools and application networking. He works with multiple organizations across EMEA helping them to leverage the above capabilities and improve their software delivery practices. Giovanni is a Community Ambassador for the Continuous Delivery Foundation and is a frequent speaker at developer conferences. Before joining Google, he worked at Microsoft, Red Hat, VMware, and HP, following the evolution of application platforms over the past 20 years.<br /><br />Nathaniel (Nate) Avery works with Google as an Outbound Product Manager for Google Cloud Application Ecosystem group specializing in DevOps tools and has spoken to multiple Fortune 500 companies about DevOps tooling solutions. Before joining Google, Nate Avery spent over 20 years in IT designing, planning, and implementing complex systems integrating custom-built and COTS applications on Windows, UNIX, Linux, and VMware OSes for Federal Government customers. He's held positions as architect, engineer, sys admin, DBA, network admin, and also served as a manager of diverse teams to meet customer goals. Currently he's working on ways to better build, and use cloud resources to help customers deliver better products in a safe and secure manner without sacrificing velocity.<br /><br />David (Dave) Dorbin has been a technical writer for more than three decades. He's been with Google for more than a decade, documenting payments applications, internal tools, and Google Cloud DevOps products. Before Google, he worked with numerous start-ups and established companies, documenting technologies in payments processing, digital publishing and rights management, consumer electronics, and cryptography for financial institutions. In his free time, Dave enjoys playing bass or banjolele (but never at the same time), or doing more damage to his Achilles' heel on the streets and trails of northern New Jersey.

Les informations fournies dans la section « A propos du livre » peuvent faire référence à une autre édition de ce titre.

Éditeur
Packt Publishing
Date d'édition
2024
Langue
anglais
ISBN 10 
1805129287
ISBN 13 
9781805129288
Reliure
Broché
Numéro d'édition
1
Nombre de pages
304
Coordonnées du fabricant
non disponible
Personne responsable
non disponible