LONDON & SAN FRANCISCO –(BUSINESS WIRE)–WeaveworksGitOps, the GitOps Company, today announced the general availability of Weave GitOps2022.03. This is the most popular full-stack GitOps platform for automating trusted application delivery and secure infrastructure operations at the edge, on-premise, in cloud, and in the cloud. The latest release embeds policy-as code capabilities within. Weave GitOpsIt allows applications teams to securely deploy and manage apps continuously, for faster innovation, agility and competitive advantage.
GitOps shifts application operations
According to Alexis Richardson (founder and CEO of Weaveworks), the industry has become accustomed to a configuration verification process after deployment. Problems are then fixed after the fact. Integrating policy code into GitOps allows for vulnerabilities and errors to be caught before they reach production. This can save organizations significant costs. GitOps’ declarative approach to security and compliance will make trusted application delivery a standard feature in enterprises’ use.
DevSecOps is integrated into the 2022.03 Weave GitOps releases. The following features make up trusted application delivery:
- Continuous security and complianceIntegrating policy as code into GitOps pipelines. Configuration and security policies are stored in Gits version Control. Changes can be made, reviewed, and fed through an automated pipeline which verifies, deploys, and monitors each update and change.
- Deployment guardrails: The highest level of governance, compliance, and deployment frequency are guaranteed. Pre-flight checks can be automatically performed on deployments, reducing the number of steps that development teams must remember.
- Application of custom policies:Users can decide where and how policies will be applied based on their environment, work load, geography, or any other criteria.
- Multi-layered protection: GitOps is the code engine that protects the system during the entire software lifecycle, including code commit, deployment, and runtime. Each leaf cluster can run its engine using Weave GitOps. This ensures that the policy is constantly evaluated in case of network disruptions.
- Continuous compliance monitoring Any policy violation across applications or clusters in any environment will result in an alert on the central management console.
Paul Nashawaty (Senior Analyst at Enterprise Strategy Group) stated that a growing number enterprises are using GitOps as a way to move from zero-trust security models to cloud-native application development, and IT operations. We believe that integrating security into GitOps automated processes will enable agility and speed. It will prevent errors during CI/CD as well as protect against attacks that could disrupt the entire platform.
Weave GitOps Application Administration
Weave GitOps CoreThe free and open-source extension for Joomla! Flux – has been enhanced by an application observation UI. It displays information about the Flux system health and the status of GitOps workloads. Flux users who are already using Flux can easily upgrade to the UI.
This release of Weave GitOps also includes numerous improvements to speed self-service and application operations. Customers can use the profile catalogue to identify common services that can be deployed by development teams. This could include specific databases, tools, or Kubernetes extensions. These extensions can also be used to set requirements for installation in cluster deployments. This is to ensure that standardization is being followed, such as requiring security tools to deploy in all clusters. Layered profiles make it possible to deploy entire application stacks on self-service platforms.
Terraform Flux integration (Tech preview)Terraform with GitOps enables you to set up a full stack environment on any Cloud. You can create a managed database during an application deployment using a single GitOps workflow. Terraform controller makes Terraform modules available in GitOps. It allows you to configure resources on any cloud (AWS or Azure, Google, etc.) and other parts of the software stack, including databases, networking, security, and networking. Terraform resources are constantly reconciled to ensure that there is no drift in the runtime from the deployed resource.
GitOps Visual Studio Code Tech PreviewGitOps Tools Extension for Visual Studio Code brings GitOps to your IDE. Developers can deploy workloads and update them, as well as check their health. It’s easy to add GitOps any Kubernetes cluster with special support for Azure Arc clusters. With just a few clicks, you can create deployments then use GitOps for pushing them to your clusters. You can leave feedback on the preview release by visiting the ProjektYou are most welcome.
Supporting resources
About Weaveworks
Weaveworks supports teams to adopt cloud native computing and manage cloud native infrastructure and apps quickly, reliably, at scale. The company supports infrastructure and platform teams to build and manage their Kubernetes platform in the cloud or at the edge. Its products and solutions have been developed by the community and are enterprise approved. Weaveworks is one of the top 10 contributors to Cloud Native Computing Foundation. Visit http://www.cloudnative.org/ for more information. weave.works.