The Pipeline: All Things CD & DevOps Podcast by The CD Foundation

The Pipeline: All Things CD & DevOps Podcast by The CD Foundation

The Pipeline: All Things CD & DevOps is hosted by the CD Foundation's Director of Ecosystem & Community Development - Jacqueline Salinas. This is a series of interviews with industry experts, leaders, and innovators. The Pipeline will cover a range of topics that are centered around CD & DevOps. The CDF’s goal is to educate, entertain, provide tips and insights to make the community better software engineers. The intent is to supply up-to-date industry news and innovations, as well as, expand your knowledge of the vast CD & DevOps ecosystem. This podcast is all about learning from your peers as well as the thought leaders in the CDF community who have been there and done that.

Episodes

November 19, 2021 15 min

Speaker: Aeva Black

With the explosion of interest in SBOMs, it's likely that you've just heard of a few projects for the first time -- even if those projects aren't new, they may be new to you, and you might be asking yourself, "how is X different from Y?" You might also be wondering which projects you should select in order to satisfy the requirements of the Executive Order!

As when starting out on any journey, ...

Share
Mark as Played

Speaker: Ayelet Sachto

Learn the considerations and strategies that can make designing for reliability in production more intentional; going beyond infrastructure into operational practices and best practices for application design and operational readiness when designing an application for production.  In this episode learn more about why & what of reliability, antipatterns and principles that about building reliable systems. 

S...
Share
Mark as Played

Speaker: Spyridon Maniotis

The session aims to provide an overview of the fundamental elements that foster a successful SRE adoption. Core to an SRE adoption elements such as; operating model, tenets, process engineering, skillset, technological capabilities/tactics, reconciliation with DevOps and ITSM, as well mechanisms such as "error budget" & "engagement models" will be outlined. All in relation to an "ad...

Share
Mark as Played

Speaker: Trevor Rosen

As you're no doubt aware, SolarWinds was hit in December 2020 with a sophisticated supply chain attack perpetrated by nation state actors. In the months since, they've been working to create an entirely new build system based on a number of CNCF and CDF projects. In this talk, you'll learn about what they're building, why it's necessary, and what it's like to be on the inside when the un...

Share
Mark as Played
October 8, 2021 12 min

Speaker: Dan Lorenc 

SupplyChainSecurityCon is a new, vendor-neutral conference for security practitioners, open source developers and those interested in software supply chain security hosted by CNCF + CDF. Due to the uptick in supply chain attacks, this event is to bring the community together to discuss supply chain threats, best practices, mitigation tactics including up and coming frameworks and specifications. 

Who Should A...

Share
Mark as Played

Speaker: Michael Friedrich

Continuous integration and delivery/deployment helps speed up development and review workflows. Developers can focus on code reliably tested in different environments. At some point, the operations team gets paged on broken pipelines and jobs being stuck. On top, the security audit unveiled plain text secret exposure and dependency exploits. The next horror story: The software cannot be deployed anymore be...

Share
Mark as Played

Speakers: Diego Lemos de Resende & Derik Evangelista

Pipelines are meant to be the road that will guide your team from code straight to production, automating everything on its way. Pipelines should be a source of joy for developers, the team's safe harbour. But the reality can be different, and many teams are struggling to get their pipelines right, spending time and energy fighting against automation instead of having thei...

Share
Mark as Played

Guest Speaker: Andreas Grabner

Andreas Grabner, DevRel at Keptn, will give us a  deep dive on the latest version of Keptn. He will explain the event-driven architecture, the recent separation of control and execution plane introduced with Keptn 0.8, and guidance on how to best get started for integrating Keptn into your existing delivery tools and processes to automate tasks around quality gates, performance & chaos engineering,...

Share
Mark as Played
September 10, 2021 20 min

Guest Speaker: Christian Hernandez 

GitOps is a practice of DevOps teams that uses Git as a source of truth for their Kubernetes platform. Using GitOps, the entire system described declaratively, the canonical desired system state versioned in Git, and approved changes that can be automatically applied to the system. This gives you the advantage to quickly restore from a disaster. This is great for stateless applications. But what a...

Share
Mark as Played
September 3, 2021 14 min

Speaker: Dibyo Mukherjee from Google

Tekton Triggers is a project that adds eventing support to Tekton i.e. it provides a mechanism to declaratively create PipelineRuns and TaskRuns based on external events. With the recent v0.15 release, Tekton Triggers now has a beta API.

So, what exactly does “beta” mean for Triggers? Tekton follows the Kubernetes deprecation policies which means that we will avoid making backwards-incompatible ch...

Share
Mark as Played
August 27, 2021 16 min

Speaker: Ricardo Castro

GitOps is a paradigm or a set of practices that empowers developers to perform tasks that typically (only) fall under the purview of operations. It’s a way to do Kubernetes cluster management and application delivery by using Git as a single source of truth for declarative infrastructure and applications. Being Git at the center of delivery pipelines, engineers use familiar tools to make pull requests to acce...

Share
Mark as Played

Speaker: Viktor Farcic

Three phrases keep popping up when talking about modern workflows and development and deployment techniques. We have continuous delivery to automate the complete lifecycle of applications from a commit to a Git repository, all the way until a release is deployable to production. Then we have GitOps to define the desired states of our environments and let the machines handle the convergence of the actual into t...

Share
Mark as Played

Speaker: Kara de la Marck

GitOps uses Git as the “single source of truth” for declarative infrastructure and enables developers to manage infrastructure with the same Git-based workflows they use to manage a codebase. Having all configuration files version-controlled by Git has many advantages, but best practices for securely managing secrets with GitOps remain contested. Join us in this presentation about GitOps and Secret Manageme...

Share
Mark as Played

Speakers: Sascha Schwarze & Adam Kaplan

Join this episode to learn more about the CDF's newest incubating project. 

Support the show (https://cd.foundation/podcast/podcast-submission-form/)

Share
Mark as Played

Guest Speaker: Katie Gamanji

Within its 7 years of existence, Kubernetes has been the centerpiece of the cloud native landscape, elevating a pluggable system that led to the diversification of the technology ecosystem. As a result, multiple areas have developed in the industry, galvanizing solutions for components that introduce standardization, guidelines, and interoperability of the tools. To innovate the developer experience and ...

Share
Mark as Played
June 4, 2021 16 min

Guest Speakers: Nikhil Kaul & Dustin Smith 

Google joins us to discuss what the State of DevOps Report is and focus areas of research for this year's survey. Tune in to learn more. 

Support the show (https://cd.foundation/podcast/podcast-submission-form/)

Share
Mark as Played

Speakers: Nima Kaviani and Manabu McCloskey

As containerization becomes an integral part of deploying software reliably, traceability and visibility over what gets deployed becomes ever more important. Ideally, as part of the deployment process, release engineers would be able to track deployed containers back to the right version of the written code, investigate changes, and gain insight over the build process. While baking code in...

Share
Mark as Played

Guest Speaker: Vincent Behar

We have been using Jenkins X since September 2018, just a few months after the initial release. With great success, because Jenkins X is now a core part of our infrastructure - but more importantly it gave us good practices, and a continually improving set of practices and platform.

And because we love open-source at Dailymotion, we started contributing back to the project, first with a few bug reports, b...

Share
Mark as Played

Guest Speaker: Yoni Leitersdorf

You want to catch security issues in your cloud infrastructure before deployment but you don’t have a lot of time to spend on it. 

What is infrastructure as code (IaC) security? How do you inject IaC security into the CI/CD pipeline to catch security risks before deployment? How do you do that without impacting the pipeline and frustrating developers? 

You will also learn how we catch common security is...

Share
Mark as Played

Speakers: Priti Desai, IBM and Jerop Kipruto, Google

What do you use to build, test, and deploy your cloud native applications? Is your choice of CI/CD solution powerful yet flexible for all of your use cases? Have you heard about Tekton? Tekton is an Open Source CI/CD pipelines execution engine. Tekton Pipelines can define Steps, Tasks (collection of steps), Custom Tasks (advanced Run objects), and Pipelines (collection of Tasks an...

Share
Mark as Played

Popular Podcasts

    If you can never get enough true crime... Congratulations, you’ve found your people.

    Dateline NBC

    Current and classic episodes, featuring compelling true-crime mysteries, powerful documentaries and in-depth investigations.

    The Daily

    This is what the news should sound like. The biggest stories of our time, told by the best journalists in the world. Hosted by Michael Barbaro. Twenty minutes a day, five days a week, ready by 6 a.m.

    Stuff You Should Know

    If you've ever wanted to know about champagne, satanism, the Stonewall Uprising, chaos theory, LSD, El Nino, true crime and Rosa Parks then look no further. Josh and Chuck have you covered.

    Around the NFL

    NFL.com's "Around the NFL" crew (Gregg Rosenthal, Dan Hanzus and Marc Sessler) break down the latest football news, with a dash of mirth.

Advertise With Us

For You

    Music, radio and podcasts, all free. Listen online or download the iHeart App.

    Connect

    © 2021 iHeartMedia, Inc.

    • Help
    • Privacy Policy
    • Terms of Use
    • AdChoicesAd Choices