From the course: Microservices: Security
Join today to access over 22,600 courses taught by industry experts or purchase this course individually.
Secure pipelines
- [Instructor] DevOps pipelines are a key enabler to achieving the rapid delivery cadence that draws most development teams towards microservices. If you think of a pipeline as a function, it accepts commits from a developer as inputs. And in the ideal scenario, outputs a container running the software the commit was made against. A lot happens between these two points. First, the code needs to be written and committed, which triggers the CI portion of the pipeline, where the software is built and tested. Then it's packaged into a container image stored in the artifact repository. When the CD portion of the pipeline is invoked, it pulls the container out of the repository and deploys it onto the container runtime using an orchestrator. In this flow, there is ample opportunity to inject automated security controls into the process. These controls act as gates that prevent vulnerable code or images from ever being deployed.…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.