Explore Products

Best Sellers

New Releases

Books

Videos

Audiobooks

Free Learning

Secure Continuous Delivery on Google Cloud

You're reading from Secure Continuous Delivery on Google Cloud Implement an automated and secure software delivery pipeline on Google Cloud using native services

Product type Paperback

Published in Apr 2024

Publisher Packt

ISBN-13 9781805129288

Length 304 pages

Edition 1st Edition

Languages

Go

Tools

Kubernetes

Concepts

Continuous Delivery

Authors (3):

Nathaniel Avery

David Dorbin

Giovanni Galloro

View More author details

Table of Contents (19) Chapters

Preface

1. Part 1:Introduction and Code Your Application

2. Chapter 1: Introducing Continuous Delivery and Software Supply Chain Security FREE CHAPTER

3. Chapter 2: Using Skaffold for Development, Build, and Deploy

4. Chapter 3: Developing and Testing with Cloud Code

5. Chapter 4: Securing Your Code with Cloud Workstations

6. Part 2: Build and Package Your Application

7. Chapter 5: Automating Continuous Integration with Cloud Build

8. Chapter 6: Securely Store Your Software on Artifact Registry

9. Part 3: Deploy and Run Your Application

10. Chapter 7: Exploring Runtimes – GKE, GKE Enterprise, and Cloud Run

11. Chapter 8: Automating Software Delivery Using Cloud Deploy

12. Chapter 9: Securing Your Runtimes with Binary Authorization

13. Part 4: Hands-On Secure Pipeline Delivery and Looking Forward

14. Chapter 10: Demonstrating an End-to-End Software Delivery Pipeline

15. Chapter 11: Integrating with Your Organization’s Workflows

16. Chapter 12: Diving into Best Practices and Trends in Continuous Delivery

17. Index

Why subscribe?

18. Other Books You May Enjoy

Configuring Binary Authorization policies

A Binary Authorization policy is a set of rules for determining whether an image can be deployed on a platform. You can define this policy using one of two methods:

The Google Cloud console
gcloud commands

The following procedure describes how to do this using the Google Cloud console.

Creating the policy

Follow these steps to configure a Binary Authorization policy:

From the Google Cloud Console’s main menu, select Security | Binary Authorization.
Select EDIT POLICY.

Figure 9.27 – The EDIT POLICY dialog

Figure 9.27 – The EDIT POLICY dialog

Select Require attestations and enter the name of the attestor you created in the previous section.

Figure 9.28 – Choosing the default rule for the policy – Require attestations

Figure 9.28 – Choosing the default rule for the policy – Require attestations

Select ADD ATTESTORS.

Figure 9.29 – The Attestors dialog

Figure 9.29 – The Attestors dialog

The Add attestors dialog...

The rest of the chapter is locked

Register for a free Packt account to unlock a world of extra content!

A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.

Unlock this book and the full library FREE for 7 days

Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of

Start free trial

Renews at €18.99/month. Cancel anytime

Authors (3)

Galloro

Galloro

Giovanni Galloro has been working at Google since 2017 as a customer engineer specializing in container-based runtimes, DevOps tools, and application networking. He works with multiple organizations across EMEA, helping them to leverage these capabilities and improve their software delivery practices. Giovanni is a community ambassador for the Continuous Delivery Foundation and is a frequent speaker at developer conferences. Before Google, he worked at Microsoft, Red Hat, VMware, and HP, following the evolution of application platforms over the past 20 years.

See other products by Galloro

Avery

Avery

Nathaniel Avery works at Google as an outbound product manager for the Google Cloud Application Ecosystem group, specializing in DevOps tools, and has spoken to many Fortune 500 companies about DevOps tooling solutions. Before joining Google, Nate spent more than 20 years in IT designing, planning, and implementing complex systems, integrating custom-built and COTS applications for federal government customers. Currently, he's working on better ways to build and use cloud resources to help customers deliver better products, safely and securely, without sacrificing velocity.

See other products by Avery

Dorbin

Dorbin

David Dorbin has been a technical writer for more than three decades. He's been with Google for more than a dozen years, documenting payment applications, internal tools, and Google Cloud DevOps products. Before Google, he worked with numerous start-ups and established companies, documenting technologies in payment processing, digital publishing and rights management, consumer electronics, and cryptography for financial institutions. In his free time, Dave enjoys playing bass and banjolele (but never at the same time), or doing more damage to his Achilles' heel on the streets and trails of northern New Jersey.

See other products by Dorbin

Personalised recommendations for you

Based on your interests and search pattern

Mastering PowerShell Scripting

Mastering PowerShell Scripting

PowerShell scripts provides a convenient method for automating tasks, using them proficiently can be challenging. This all-inclusive guide begins at the basics and covers advanced concepts, equipping you with tips to become an expert in PowerShell Core 7.3 scripting.

May 2024 27h 32m

Network Automation with Nautobot

Network Automation with Nautobot

This book will help you understand why a network source of truth is needed for long-term network automation success, which will in turn save you hundreds of hours in deploying and integrating Nautobot into network automation.

May 2024 27h 12m

NGINX HTTP Server

NGINX HTTP Server

Explore the power of NGINX with this guide covering an array of essential practical topics, including securing your infrastructure with automatic TLS certificates, placing NGINX in front of your existing applications, and much more.

May 2024 8h 44m

Mastering Azure Virtual Desktop

Mastering Azure Virtual Desktop

This updated edition will help you plan an Azure Virtual Desktop Architecture, implement its infrastructure, and manage its access and security. With content aligned with the exam objectives, it'll help you ace the Microsoft AZ-140 exam.

Jul 2024 23h 56m

Learn Ansible will teach you how to write Ansible Playbooks for deploying simple apps. This updated edition covers the latest Ansible features, helping you confidently implement Ansible in your daily workflows.

May 2024 13h 48m

HashiCorp Terraform Associate (003) Exam Guide

HashiCorp Terraform Associate (003) Exam Guide

This book will help you explore HashiCorp Terraform and prepare for Associate (003) certification, from understanding core concepts to advanced modules. You'll gain hands-on expertise, troubleshoot with confidence, and more.

May 2024 11h 28m

Kubernetes – An Enterprise Guide

Kubernetes – An Enterprise Guide

Navigate the complexities of Kubernetes and fully leverage its capabilities for enterprise applications. This edition dives into advanced deployments, groundbreaking techniques, and insights that will elevate your skills and redefine your expertise.

Aug 2024 22h 44m

Atlassian DevOps Toolchain Cookbook

Atlassian DevOps Toolchain Cookbook

Master setting up a DevOps toolchain using Atlassian tools and Open DevOps as a framework with this recipe-driven guide to automated testing, integration, deployment, observability, and incident management for streamlining development processes.

Jul 2024 16h 48m

AWS Certified Developer Associate Certification and Beyond

AWS Certified Developer Associate Certification and Beyond

This is your guide to passing the challenging AWS Certified Developer – Associate certification exam and setting yourself up for a rewarding career. Through a sample project, it explains how to design, architect, and implement applications on AWS.

Jul 2024 23h 40m

Implementing GitOps with Kubernetes

Implementing GitOps with Kubernetes

This book provides step-by-step tutorials and hands-on examples for effectively implementing GitOps practices in your Kubernetes deployments. You'll learn how to automate, monitor, and secure your infrastructure for efficient application delivery.

Aug 2024 14h 48m