GitOps now supports policy as code in its latest release. This allows for automated trusted application delivery and secure infrastructure operations.
Weaveworks, a GitOps company announced the general availability of Weave GitOps2022.03. This is the most popular full-stack GitOps platform for trusted application delivery and secure infrastructure operations, on premise, in cloud, and at the edge. The latest release includes policy-as-code capabilities in Weave GitOps. This allows applications teams to deploy and manage applications safely for faster innovation, agility and competitive advantage.
Many enterprises that have zero trust security models are turning to GitOps in order to provide DevOps for cloud-native application development, IT operations, and other services.
GitOps shifts application operations
The industry is used to a method where configuration is verified after deployment, and problems are corrected after the fact. Alexis RichardsonWeaveworks’ founder and CEO. Integrating policy code into GitOps allows for vulnerabilities and errors to be detected before they reach production. This prevents them from becoming costly. GitOps’ declarative approach to security and compliance will make trusted application delivery a standard feature in enterprises’ use.
Recommendations for AI News:Cloudflare and Cloudways Partner to Launch a New Enterprise-level Integration
DevSecOps is integrated into the 2022.03 Weave GitOps releases. These are the features that make Trusted Application Delivery possible:
- Continuous security and complianceIntegrating policy as code into GitOps pipelines. Configuration and security policies are stored in Gits version Control. Changes can be made, reviewed, and fed through an automated pipeline which verifies, deploys, and monitors each update and change.
- Deployment guardrails:You can ensure the highest level compliance and governance while ensuring the fastest deployment frequency. Pre-flight checks are automatically run before deployments can take place, which reduces the amount of steps that development teams have to remember.
- Application of custom policies:Users can decide where and how policies will be applied based on their environment, work load, geography, or any other criteria.
- Multi-layered protection:The GitOps policy as code engine protects the system throughout the software lifecycle – during code commit, deployment and at runtime. Each leaf cluster can run its own engine with Weave GitOps, which ensures that policy evaluations are ongoing in the event of network disruptions.
- Continuous compliance monitoringAny policy violation in any environment across applications and clusters will trigger an alert at the central management console.
“A growing number of enterprises running a zero-trust security model are turning to GitOps to bring DevOps to cloud-native application development and IT operations, said Paul NashawatyEnterprise Strategy Group Senior Analyst. We believe that integrating security in GitOps automated pipelines will provide agility and speed similar to how DevOps disrupted the infrastructure management. This will prevent errors during CI/CD, and protect against attacks that could cause the platform to be shut down.
Weave GitOps Application Administration
Weave GitOps Core– the free and open source extension forFlux– has been enhanced with an application observability UI. It displays the Flux system health as well as the status of GitOps-enabled workloads. Flux users who are already using Flux can easily upgrade to the UI.
The Weave GitOps release also contains numerous enhancements to improve self-service speed and application operations velocity. Customers can use profile catalog to create a list of common services that can be deployed by development teams. For example, specific databases or Kubernetes extension. These extensions can be added to cluster deployment to ensure that all requirements are met. For example, security tools must be installed in all clusters. Layered profiles make it possible to deploy entire application stacks on self-service platforms.
Recommendations for AI News:In collaboration with INPI Brazil, CAS uses AI-driven Approach to Transform Patent Examinations
Terraform Flux integration Technology Preview: Terraform with GitOps allows you to create a full-stack environment on any cloud. A managed database can be created in one GitOps process during application deployment. Terraform controller makes Terraform’s ecosystem of Terraform module available in GitOps. You can configure resources on any cloud (AWS Azure, Google, etc.) as well as different parts of your software stack, such networking, security, databases, and security. Terraform resources are constantly reconciled to ensure that there is no drift in the runtime from the deployed resource.
GitOps for Visual Studio Code Tech Preview: The GitOps Extension for Visual Studio Code brings GitOps to your IDE. Developers can deploy workloads and update them, as well as check their health. It’s easy to add GitOps any Kubernetes cluster with special support for Azure Arc clusters. With just a few clicks, you can create deployments then use GitOps for pushing them to your clusters. We welcome feedback on the preview release.
Recommendations for AI News:Qumulo simplifies Kubernetes Workflows for Unstructured Data using a New Container Storage Interface
[To share your insights with us, please write to[email protected]]