Secure Continuous Delivery on Google Cloud: Implement an automated and secure software delivery pipeline on Google Cloud

Build an end-to-end continuous delivery pipeline on Google Cloud and secure your software supply chain using GCP tools and services including Cloud Code, Cloud Workstations, Cloud Build, Artifact Registry, and Cloud Deploy
Key Features

Gain hands-on experience building an end-to-end software delivery pipeline using Google Cloud services
Deploy your applications on GKE, Cloud Run, and across hybrid and multi-cloud environments
Secure pipelines with artifact scanning, dependency vulnerability checks, signed provenance, and admission control
Purchase of the print or Kindle book includes a free PDF eBook

Book Description

Continuous delivery, a cornerstone of modern software engineering, facilitates quick and secure software delivery using a robust toolkit encompassing automated builds, testing, source code management, artifact storage, and deployment. Whether you integrate tools from different providers or use a set of managed services from a single cloud provider, the goal is to streamline setup, integration, and management. This book focuses on continuous delivery on Google Cloud.

Starting with an introduction to continuous delivery and secure software supply chain concepts, this book uses hands-on exercises to demonstrate how to continuously test your application with Skaffold and Cloud Code, leverage AI-assisted code generation with Cloud Code and Cloud Workstations, and automate your continuous integration with Cloud Build. You'll see how to store and scan your software artifacts on Artifact Registry, orchestrate deployments with Cloud Deploy, and release your software on GKE and Cloud Run, configured to admit only trusted code. Using an example application, you'll implement tools for creating an end-to-end delivery pipeline using Google Cloud services.

By the end of this book, you'll be able to build a secure software delivery pipeline from development to production using Google Cloud managed services and best practices.
What you will learn

Create an end-to-end continuous delivery pipeline using Cloud Build, Artifact Registry, and Cloud Deploy
Develop, build, and deploy container-based applications with Skaffold and Cloud Code
Experiment with AI-assisted code generation in Cloud Code
Automate continuous integration with Cloud Build triggers
Automate deployment on GKE and Cloud Run through Cloud Deploy
Enhance pipeline security with Artifact Analysis, Binary Authorization, and SLSA
Apply best practices, including logging and monitoring

Who this book is for

This book is for DevOps, Platform, and Cloud Engineers tasked with managing application deployment and creating continuous delivery pipelines who want to automate workflows in a fully managed, scalable, and secure platform. Software developers involved in application delivery and interested in harnessing Google Cloud tools to optimize development flow status and feedback loop will also find this book useful. Prior knowledge of Google Cloud fundamentals (including Cloud APIs and IAM), software delivery, containerization, and Kubernetes will enhance the reading experience.
Table of Contents

Introducing Continuous Delivery and Software Supply Chain Security
Using Skaffold for Development, Build, and Deploy
Developing and Testing with Cloud Code
Securing Your Code with Cloud Workstations
Automating Continuous Integration with Cloud Build
Securely Store Your Software on Artifact Registry
Exploring Runtimes - GKE, GKE Enterprise, and Cloud Run
Automating Software Delivery Using Cloud Deploy
Securing Your Runtimes with Binary Authorization
Demonstrating an End-to-End Software Delivery Pipeline

(N.B. Please use the Look Inside option to see further chapters)