Secure Continuous Delivery on Google Cloud: Implement an automated and secure software delivery pipeline on Google Cloud using native services

Galloro, Giovanni, Avery, Nathaniel, Dorbin, David

  • 出版商: Packt Publishing
  • 出版日期: 2024-04-12
  • 售價: $1,920
  • 貴賓價: 9.5$1,824
  • 語言: 英文
  • 頁數: 304
  • 裝訂: Quality Paper - also called trade paper
  • ISBN: 1805129287
  • ISBN-13: 9781805129288
  • 相關分類: CI/CDGoogle Cloud
  • 立即出貨 (庫存=1)

買這商品的人也買了...

相關主題

商品描述

Build an end-to-end continuous delivery pipeline on Google Cloud and secure your software supply chain using GCP tools and services including Cloud Code, Cloud Workstations, Cloud Build, Artifact Registry, and Cloud Deploy

Key Features
  • Gain hands-on experience building an end-to-end software delivery pipeline using Google Cloud services
  • Deploy your applications on GKE, Cloud Run, and across hybrid and multi-cloud environments
  • Secure pipelines with artifact scanning, dependency vulnerability checks, signed provenance, and admission control
  • Purchase of the print or Kindle book includes a free PDF eBook
Book Description

Continuous delivery, a cornerstone of modern software engineering, facilitates quick and secure software delivery using a robust toolkit encompassing automated builds, testing, source code management, artifact storage, and deployment. Whether you integrate tools from different providers or use a set of managed services from a single cloud provider, the goal is to streamline setup, integration, and management. This book focuses on continuous delivery on Google Cloud.

Starting with an introduction to continuous delivery and secure software supply chain concepts, this book uses hands-on exercises to demonstrate how to continuously test your application with Skaffold and Cloud Code, leverage AI-assisted code generation with Cloud Code and Cloud Workstations, and automate your continuous integration with Cloud Build. You'll see how to store and scan your software artifacts on Artifact Registry, orchestrate deployments with Cloud Deploy, and release your software on GKE and Cloud Run, configured to admit only trusted code. Using an example application, you'll implement tools for creating an end-to-end delivery pipeline using Google Cloud services.

By the end of this book, you'll be able to build a secure software delivery pipeline from development to production using Google Cloud managed services and best practices.

What you will learn
  • Create an end-to-end continuous delivery pipeline using Cloud Build, Artifact Registry, and Cloud Deploy
  • Develop, build, and deploy container-based applications with Skaffold and Cloud Code
  • Experiment with AI-assisted code generation in Cloud Code
  • Automate continuous integration with Cloud Build triggers
  • Automate deployment on GKE and Cloud Run through Cloud Deploy
  • Enhance pipeline security with Artifact Analysis, Binary Authorization, and SLSA
  • Apply best practices, including logging and monitoring
Who this book is for

This book is for DevOps, Platform, and Cloud Engineers tasked with managing application deployment and creating continuous delivery pipelines who want to automate workflows in a fully managed, scalable, and secure platform. Software developers involved in application delivery and interested in harnessing Google Cloud tools to optimize development flow status and feedback loop will also find this book useful. Prior knowledge of Google Cloud fundamentals (including Cloud APIs and IAM), software delivery, containerization, and Kubernetes will enhance the reading experience.

Table of Contents
  1. Introducing Continuous Delivery and Software Supply Chain Security
  2. Using Skaffold for Development, Build, and Deploy
  3. Developing and Testing with Cloud Code
  4. Securing Your Code with Cloud Workstations
  5. Automating Continuous Integration with Cloud Build
  6. Securely Store Your Software on Artifact Registry
  7. Exploring Runtimes - GKE, GKE Enterprise, and Cloud Run
  8. Automating Software Delivery Using Cloud Deploy
  9. Securing Your Runtimes with Binary Authorization
  10. Demonstrating an End-to-End Software Delivery Pipeline

(N.B. Please use the Look Inside option to see further chapters)

商品描述(中文翻譯)

在Google Cloud上建立一個端到端的持續交付流水線,並使用GCP工具和服務來保護您的軟體供應鏈,包括Cloud Code、Cloud Workstations、Cloud Build、Artifact Registry和Cloud Deploy。

主要特點:
- 通過使用Google Cloud服務來建立端到端的軟體交付流水線,獲得實踐經驗。
- 在GKE、Cloud Run以及混合和多雲環境中部署應用程式。
- 通過藝術品掃描、依賴性漏洞檢查、簽名來源和准入控制來保護流水線。
- 購買印刷版或Kindle電子書包括免費的PDF電子書。

書籍描述:
持續交付是現代軟體工程的基石,利用強大的工具組合,包括自動化構建、測試、源代碼管理、藝術品存儲和部署,實現快速且安全的軟體交付。無論您是集成來自不同供應商的工具還是使用單一雲供應商的一組托管服務,目標都是簡化設置、集成和管理。本書專注於Google Cloud上的持續交付。

從介紹持續交付和安全軟體供應鏈概念開始,本書通過實踐演習演示如何使用Skaffold和Cloud Code持續測試應用程式,利用Cloud Code和Cloud Workstations進行AI輔助代碼生成,以及使用Cloud Build自動化持續集成。您將了解如何在Artifact Registry上存儲和掃描軟體藝術品,使用Cloud Deploy編排部署,並配置GKE和Cloud Run以僅接受可信代碼。通過一個示例應用程式,您將實施使用Google Cloud服務創建端到端交付流水線的工具。

通過閱讀本書,您將能夠使用Google Cloud托管服務和最佳實踐從開發到生產構建一個安全的軟體交付流水線。

學到的內容:
- 使用Cloud Build、Artifact Registry和Cloud Deploy創建端到端的持續交付流水線。
- 使用Skaffold和Cloud Code開發、構建和部署基於容器的應用程式。
- 在Cloud Code中嘗試AI輔助代碼生成。
- 使用Cloud Build觸發器自動化持續集成。
- 通過Cloud Deploy在GKE和Cloud Run上自動化部署。
- 通過藝術品分析、二進制授權和SLSA增強流水線安全性。
- 應用最佳實踐,包括日誌記錄和監控。

本書適合以下讀者:
- 負責管理應用程式部署和創建持續交付流水線的DevOps、平台和雲工程師,希望在一個完全托管、可擴展和安全的平台上自動化工作流程。
- 參與應用程式交付並有興趣利用Google Cloud工具優化開發流程狀態和反饋迴路的軟體開發人員也會發現本書有用。
- 具備Google Cloud基礎知識(包括Cloud APIs和IAM)、軟體交付、容器化和Kubernetes的先備知識將增強閱讀體驗。

目錄:
1. 介紹持續交付和軟體供應鏈安全
2. 使用Skaffold進行開發、構建和部署
3. 使用Cloud Code進行開發和測試
4. 使用Cloud Workstations保護您的代碼
5. 使用Cloud Build自動化持續集成
6. 在Artifact Registry上安全存儲您的軟體
7. 探索運行時 - GKE、GKE Enterprise和Cloud Run
8. 使用Cloud Deploy自動化軟體交付
9. 使用二進制授權保護您的運行時
10. 演示端到端軟體交付流水線

(註:請使用“查看內容”選項查看更多章節)