In this post we demonstrate how to use the open source security and compliance tool called Checkov with Azure DevOps to verify your Azure infrastructure is secure. Introducing Checkov Checkov is a great tool for engineering teams to harness as part of their Cloud environment deployments. https://www.checkov.io/ Checkov currently supports scanning the following scanning capabilities:Continue reading “Azure DevOps and Chechov”
Category Archives: DevOps
Google Cloud first impressions
I have been working on GCP for the last five months. In this blog post I share what I have learned and observations. Global network Compared to some other public clouds, GCP has a global fibre backed network. As a result of this the GCP VPC (virtual private cloud) is a global resource that spansContinue reading “Google Cloud first impressions”
Intro to DAPR part1
What is DAPR? DAPR stands for distributed application runtime. It is an open source project started by Microsoft. As of November 2021 it is officially endorsed by the CNCF as an incubator project https://www.cncf.io/blog/2021/11/03/dapr-distributed-application-runtime-joins-cncf-incubator/ What can you use it for? DAPR is essentially a set of APIs, built on a concept of building blocks forContinue reading “Intro to DAPR part1”
Finally, Start and Stop AKS
This feature request has been around a year or so. https://feedback.azure.com/forums/914020-azure-kubernetes-service-aks/suggestions/36035578-add-a-start-stop-cluster-button-to-the-aks-panel In AKS you pay for the worker nodes, but for dev test it would be good if you could start and stop the cluster. Those ephemeral environments are costing you!! Finally we have a preview feature that allows you to do this. Enabling theContinue reading “Finally, Start and Stop AKS”
Shifting Security left – moving to a DevSecOps model
As more and more organisations shift their infrastructure and applications to Public cloud one of the biggest questions arises is how will they approach security. Organisations who are leveraging the dynamic nature of cloud with modern DevOps practices are also realising that traditional approaches to security are outdated. With the advent of Infrastructure as Code,Continue reading “Shifting Security left – moving to a DevSecOps model”
The State of DevOps
I first heard the term DevOps about 5 years ago. I was transitioning from a world where words such as Agile, scrum, iteration, product backlog were the common parlance of developer discourse. Endless debates about what scrum and Agile was and not confusing the two. At the same time is was trying to understand whatContinue reading “The State of DevOps”
Compliance via Code
Cloud Governance with Cloud Custodian – Part 1 Before talking about Cloud Custodian i would like to mention Azure policies. Azure policy is the out of the box policy engine that Microsoft provide as part of your Azure subscription. It uses a declarative syntax using JSON to define policies (security, audits and others) governing andContinue reading “Compliance via Code”
The Cloud native landscape
Over the last couple of years the Cloud native bandwagon has been gaining traction. Public cloud providers are becoming a key cornerstone in organisations strategy to disrupt, innovate and surface products and services to end consumers in ways they could never think of during the days of static infrastructure in traditional data centres. The aboveContinue reading “The Cloud native landscape”
The Cloud Native Blog 