Secure Continuous Delivery on Google Cloud: Implement an automated and secure software delivery pipeline on Google Cloud using native services
暫譯: 在 Google Cloud 上實現安全的持續交付:使用原生服務實現自動化和安全的軟體交付管道
Galloro, Giovanni, Avery, Nathaniel, Dorbin, David
- 出版商: Packt Publishing
- 出版日期: 2024-04-12
- 售價: $1,920
- 貴賓價: 9.5 折 $1,824
- 語言: 英文
- 頁數: 304
- 裝訂: Quality Paper - also called trade paper
- ISBN: 1805129287
- ISBN-13: 9781805129288
-
相關分類:
CI/CD、Google Cloud
立即出貨 (庫存=1)
買這商品的人也買了...
-
$229區塊鏈技術原理及底層架構
-
$403DAG 區塊鏈技術:原理與實踐
-
$454分佈式微服務架構:原理與實戰
-
$659Linux 高效運維實戰
-
$740高性能 Linux 服務器運維實戰:shell 編程、監控告警、性能優化與實戰案例
-
$599$569 -
$1,760$1,672 -
$539$512 -
$299$284 -
$680$476
相關主題
商品描述
Build an end-to-end continuous delivery pipeline on Google Cloud and secure your software supply chain using GCP tools and services including Cloud Code, Cloud Workstations, Cloud Build, Artifact Registry, and Cloud Deploy
Key Features- Gain hands-on experience building an end-to-end software delivery pipeline using Google Cloud services
- Deploy your applications on GKE, Cloud Run, and across hybrid and multi-cloud environments
- Secure pipelines with artifact scanning, dependency vulnerability checks, signed provenance, and admission control
- Purchase of the print or Kindle book includes a free PDF eBook
Continuous delivery, a cornerstone of modern software engineering, facilitates quick and secure software delivery using a robust toolkit encompassing automated builds, testing, source code management, artifact storage, and deployment. Whether you integrate tools from different providers or use a set of managed services from a single cloud provider, the goal is to streamline setup, integration, and management. This book focuses on continuous delivery on Google Cloud.
Starting with an introduction to continuous delivery and secure software supply chain concepts, this book uses hands-on exercises to demonstrate how to continuously test your application with Skaffold and Cloud Code, leverage AI-assisted code generation with Cloud Code and Cloud Workstations, and automate your continuous integration with Cloud Build. You'll see how to store and scan your software artifacts on Artifact Registry, orchestrate deployments with Cloud Deploy, and release your software on GKE and Cloud Run, configured to admit only trusted code. Using an example application, you'll implement tools for creating an end-to-end delivery pipeline using Google Cloud services.
By the end of this book, you'll be able to build a secure software delivery pipeline from development to production using Google Cloud managed services and best practices.
What you will learn- Create an end-to-end continuous delivery pipeline using Cloud Build, Artifact Registry, and Cloud Deploy
- Develop, build, and deploy container-based applications with Skaffold and Cloud Code
- Experiment with AI-assisted code generation in Cloud Code
- Automate continuous integration with Cloud Build triggers
- Automate deployment on GKE and Cloud Run through Cloud Deploy
- Enhance pipeline security with Artifact Analysis, Binary Authorization, and SLSA
- Apply best practices, including logging and monitoring
This book is for DevOps, Platform, and Cloud Engineers tasked with managing application deployment and creating continuous delivery pipelines who want to automate workflows in a fully managed, scalable, and secure platform. Software developers involved in application delivery and interested in harnessing Google Cloud tools to optimize development flow status and feedback loop will also find this book useful. Prior knowledge of Google Cloud fundamentals (including Cloud APIs and IAM), software delivery, containerization, and Kubernetes will enhance the reading experience.
Table of Contents- Introducing Continuous Delivery and Software Supply Chain Security
- Using Skaffold for Development, Build, and Deploy
- Developing and Testing with Cloud Code
- Securing Your Code with Cloud Workstations
- Automating Continuous Integration with Cloud Build
- Securely Store Your Software on Artifact Registry
- Exploring Runtimes - GKE, GKE Enterprise, and Cloud Run
- Automating Software Delivery Using Cloud Deploy
- Securing Your Runtimes with Binary Authorization
- Demonstrating an End-to-End Software Delivery Pipeline
(N.B. Please use the Look Inside option to see further chapters)
商品描述(中文翻譯)
在 Google Cloud 上建立端到端的持續交付管道,並使用 GCP 工具和服務(包括 Cloud Code、Cloud Workstations、Cloud Build、Artifact Registry 和 Cloud Deploy)來保護您的軟體供應鏈
主要特點
- 獲得使用 Google Cloud 服務建立端到端軟體交付管道的實作經驗
- 在 GKE、Cloud Run 及混合雲和多雲環境中部署您的應用程式
- 透過工件掃描、依賴性漏洞檢查、簽名來源和入場控制來保護管道
- 購買印刷版或 Kindle 書籍可獲得免費 PDF 電子書
書籍描述
持續交付是現代軟體工程的基石,透過一套強大的工具包促進快速且安全的軟體交付,該工具包包括自動化構建、測試、源代碼管理、工件存儲和部署。無論您是整合來自不同供應商的工具,還是使用單一雲供應商的一組管理服務,目標都是簡化設置、整合和管理。本書專注於 Google Cloud 上的持續交付。
本書從持續交付和安全軟體供應鏈概念的介紹開始,通過實作練習展示如何使用 Skaffold 和 Cloud Code 持續測試您的應用程式,利用 Cloud Code 和 Cloud Workstations 進行 AI 輔助的代碼生成,並使用 Cloud Build 自動化您的持續集成。您將學會如何在 Artifact Registry 上存儲和掃描您的軟體工件,使用 Cloud Deploy 協調部署,並在 GKE 和 Cloud Run 上釋放您的軟體,配置為僅接受受信任的代碼。通過一個示例應用程式,您將實作使用 Google Cloud 服務建立端到端交付管道的工具。
在本書結束時,您將能夠使用 Google Cloud 管理服務和最佳實踐,從開發到生產建立一個安全的軟體交付管道。
您將學到的內容
- 使用 Cloud Build、Artifact Registry 和 Cloud Deploy 創建端到端的持續交付管道
- 使用 Skaffold 和 Cloud Code 開發、構建和部署基於容器的應用程式
- 在 Cloud Code 中實驗 AI 輔助的代碼生成
- 使用 Cloud Build 觸發器自動化持續集成
- 通過 Cloud Deploy 自動化在 GKE 和 Cloud Run 上的部署
- 通過工件分析、二進位授權和 SLSA 增強管道安全性
- 應用最佳實踐,包括日誌記錄和監控
本書適合誰
本書適合負責管理應用程式部署和創建持續交付管道的 DevOps、平台和雲工程師,這些工程師希望在完全管理、可擴展和安全的平台上自動化工作流程。參與應用程式交付並希望利用 Google Cloud 工具來優化開發流程狀態和反饋循環的軟體開發人員也會發現本書有用。對 Google Cloud 基礎知識(包括 Cloud APIs 和 IAM)、軟體交付、容器化和 Kubernetes 的先前了解將增強閱讀體驗。
目錄
- 介紹持續交付和軟體供應鏈安全
- 使用 Skaffold 進行開發、構建和部署
- 使用 Cloud Code 進行開發和測試
- 使用 Cloud Workstations 保護您的代碼
- 使用 Cloud Build 自動化持續集成
- 安全地在 Artifact Registry 上存儲您的軟體
- 探索運行時 - GKE、GKE Enterprise 和 Cloud Run
- 使用 Cloud Deploy 自動化軟體交付
- 使用二進位授權保護您的運行時
- 演示端到端的軟體交付管道
(注意:請使用「查看內部」選項以查看更多章節)