Skip to main content

Armory Blog

Read the latest from the Armory Crew

CVE-2021-44228 – log4j (Log4Shell) – an analysis

Today marked a 0-day disclosure of a rather nasty vulnerability in one of the most commonly used frameworks for logging – log4j.  This one is nasty on multiple levels.  Note that Armory Enterprise is NOT affected by this vulnerability.  The impact on this vulnerability is likely huge and is already being exploited.  Additionally it can […]

Reducing Risk by Automating Security with Continuous Delivery

Risk avoidance has become a cardinal principle of modern enterprises. Companies like Armory have arisen to help modern organizations meet this principle. In this article, we’ll highlight the risks that an organization faces with each deployment, how to test for them, and, ultimately, how to prevent them from happening. We’ll demonstrate how Armory can help […]

How to Take the Pain of Rollbacks out of Deployments

  Software applications have become an integral part of the business climate in most modern organizations. With an ever-increasing demand for new features and enhancement of already-existing ones, software teams constantly face novel challenges, and the pace of software development is growing by the day. To keep up with this fast-paced business climate, software teams […]

Armory Policy Engine – CD Governed Admission Policy

In this demonstration, I’ve configured OPA policy at the K8s cluster, allowing only the Spinnaker service account to create a deployment via the kube-api server. Additionally, I’ve defined a policy within the pipeline via Armory Policy Engine, requiring all images be specified with a tag other than ‘latest’. This demonstrates the centralization and consolidation of […]

Announcing General Availability of Armory Policy Engine Plugin

Armory Policy Engine provides support for automating policy compliance with Spinnaker. Policy Engine Plugin is the latest version of Policy Engine and adds support for both advanced role-based access control (RBAC) use-cases and open source Spinnaker. The release of Policy Engine Plugin comes with new documentation, including a library of example policies from across Armory’s […]

Policy deployment and self governance with Spinnaker

Learn how to leverage Spinnaker for OPA Policy Deployment, and how to leverage OPA Policies to govern spinnaker.

Policy Driven Deployments

Consistent Policy Enforcement What if the industry has been thinking about continuous delivery the wrong way?  What if continuous delivery is not an extension of continuous integration, instead it is the concept of automating the rules that have been defined by your change review boards and exposing them to application teams early in the development […]

An Inside Look at the Innovation happening in OSS Spinnaker’s CVE Process

This blog post was originally posted on: https://cd.foundation/blog/2020/07/07/an-inside-look-at-the-innovation-happening-in-oss-spinnakers-cve-process/ Contributed by Rin Oliver & Beth Fuller CDF Newsletter – July 2020 Article Subscribe to the Newsletter “I once went to a security talk, and it was such a mind shift for me when they explained that the only way to guarantee a system is 100% secure, […]
Subscribe
Categories