Armory Blog

Read the latest from the Armory Crew

Today marked a 0-day disclosure of a rather nasty vulnerability in one of the most commonly used frameworks for logging – log4j.  This one is nasty on multiple levels.  Note that Armory Enterprise is NOT affected by this vulnerability.  The impact on this vulnerability is likely huge and is already being exploited.  Additionally it can […]
Risk avoidance has become a cardinal principle of modern enterprises. Companies like Armory have arisen to help modern organizations meet this principle. In this article, we’ll highlight the risks that an organization faces with each deployment, how to test for them, and, ultimately, how to prevent them from happening. We’ll demonstrate how Armory can help […]
Software applications have become an integral part of the business climate in most modern organizations. With an ever-increasing demand for new features and enhancement of already-existing ones, software teams constantly face novel challenges, and the pace of software development is growing by the day. To keep up with this fast-paced business climate, software teams must […]
In this demonstration, I’ve configured OPA policy at the K8s cluster, allowing only the Spinnaker service account to create a deployment via the kube-api server. Additionally, I’ve defined a policy within the pipeline via Armory Policy Engine, requiring all images be specified with a tag other than ‘latest’. This demonstrates the centralization and consolidation of […]
Armory Policy Engine provides support for automating policy compliance with Spinnaker. Policy Engine Plugin is the latest version of Policy Engine and adds support for both advanced role-based access control (RBAC) use-cases and open source Spinnaker. The release of Policy Engine Plugin comes with new documentation, including a library of example policies from across Armory’s […]
Learn how to leverage Spinnaker for OPA Policy Deployment, and how to leverage OPA Policies to govern spinnaker.
Consistent Policy Enforcement What if the industry has been thinking about continuous delivery the wrong way?  What if continuous delivery is not an extension of continuous integration, instead it is the concept of automating the rules that have been defined by your change review boards and exposing them to application teams early in the development […]
This blog post was originally posted on: https://cd.foundation/blog/2020/07/07/an-inside-look-at-the-innovation-happening-in-oss-spinnakers-cve-process/ Contributed by Rin Oliver & Beth Fuller CDF Newsletter – July 2020 Article Subscribe to the Newsletter “I once went to a security talk, and it was such a mind shift for me when they explained that the only way to guarantee a system is 100% secure, […]