Modal Title
Cloud Native Ecosystem Containers Edge Computing Microservices Networking Serverless Storage
Top 3 Application Security Must-Haves
May 26th 2023 7:59am, by Guilherme (Gui) Alvarenga
Cloud Native Skill Gaps are Killing Your Gains 
May 22nd 2023 7:15am, by Victoria Wright
A Boring Kubernetes Release
May 19th 2023 12:23pm, by Alex Williams
Why Upgrade to Observability from Application Monitoring?
May 19th 2023 11:49am, by George Hamilton
How Otomi Helped the City of Utrecht Move to Kubernetes
May 15th 2023 10:00am, by Sander Rodenhuis
How to Protect Containerized Workloads at Runtime
May 30th 2023 4:00am, by Kevin Casey
How to Containerize a Python Application with Packeto Buildpacks
May 29th 2023 5:00am, by Sylvain Kalache
Can Rancher Deliver on Making Kubernetes Easy?
May 27th 2023 7:00am, by Jack Wallen
Red Hat Podman Container Engine Gets a Desktop Interface
May 23rd 2023 7:30am, by Joab Jackson
Scan Container Images for Vulnerabilities with Docker Scout
May 20th 2023 6:00am, by Jack Wallen
Gothenburg, Sweden Used Open Source IoT to Drastically Cut Water Waste
May 23rd 2023 6:58am, by Alex Handy
Building a Plant Monitoring Tool with IoT
May 8th 2023 9:27am, by Zoe Steinkamp
How to Choose and Model Time Series Databases
Apr 28th 2023 3:00am, by Robert Kimani
How to Optimize Queries for Time Series Data
Apr 27th 2023 12:00pm, by Robert Kimani
Calyptia Core 2.0 Tackles Fleet Management for Observability
Apr 26th 2023 6:49am, by Jelani Harper
Case Study: A WebAssembly Failure, and Lessons Learned
May 25th 2023 7:00am, by Susan Hall
RabbitMQ Is Boring, and I Love It
May 15th 2023 6:30am, by Josh Long
How OpenSearch Visualizes Jaeger's Distributed Tracing
May 11th 2023 10:00am, by Derek Ho and Jonah Kowall
Spring Cloud Gateway: The Swiss Army Knife of Cloud Development
May 8th 2023 6:47am, by Juergen Sussner
Return of the Monolith: Amazon Dumps Microservices for Video Monitoring
May 4th 2023 7:23am, by Joab Jackson
Don't Force Containers and Disrupt Workflows
May 25th 2023 3:10pm, by Alex Williams
How to Decide Between a Layer 2 or Layer 3 Network
Apr 25th 2023 10:00am, by Gino Dion
Linkerd Service Mesh Update Addresses More Demanding User Base
Apr 11th 2023 6:17am, by Joab Jackson
Wireshark Celebrates 25th Anniversary with a New Foundation
Mar 28th 2023 5:00am, by Joab Jackson
This Week in Computing: Malware Gone Wild
Mar 25th 2023 7:10am, by Joab Jackson
Microsoft Fabric Defragments Analytics, Enters Public Preview
May 23rd 2023 8:00am, by Andrew Brust
Forrester on WebAssembly for Developers: Frontend to Backend
May 17th 2023 6:00am, by Loraine Lawson
Return of the Monolith: Amazon Dumps Microservices for Video Monitoring
May 4th 2023 7:23am, by Joab Jackson
IBM's Quiet Approach to AI, Wasm and Serverless
May 4th 2023 6:00am, by Loraine Lawson
Cloud Control Planes for All: Implement Internal Platforms with Crossplane
Apr 13th 2023 10:00am, by Bassam Tabbara
Raft Native: The Foundation for Streaming Data’s Best Future
May 30th 2023 9:44am, by Doug Flora
Why the Document Model Is More Cost-Efficient Than RDBMS
May 25th 2023 9:24am, by Rick Houlihan
Amazon Aurora vs. Redshift: What You Need to Know
May 25th 2023 6:27am, by Casey Samulski
Boost DevOps Maturity with a Data Lakehouse
May 17th 2023 10:20am, by Guido Deinhammer
Vercel Offers Postgres, Redis Options for Frontend Developers
May 1st 2023 9:00am, by Loraine Lawson
Frontend Development Software Development Typescript WebAssembly Cloud Services Data Machine Learning Security
Bluesky vs. Nostr — Which Should Developers Care About More?
May 30th 2023 7:51am, by
Bad by Design: The World of Intentionally Awful User Interfaces
May 28th 2023 6:00am, by
Dev News: New Microsoft Edge Tools and Goodbye Node.js 16
May 27th 2023 6:00am, by
4 Anti-Patterns That Microsoft Recommends Web Devs Avoid
May 26th 2023 6:56am, by
New Image Trends Frontend Developers Should Support
May 25th 2023 6:00am, by
How AI Can Learn from Open Source Struggles
May 30th 2023 11:43am, by
Oracle Support for MySQL 5.7 Ends Soon, Key Upgrades in 8.0
May 30th 2023 10:35am, by
Raft Native: The Foundation for Streaming Data’s Best Future
May 30th 2023 9:44am, by
Building AI-Driven Applications with a Multimodal Approach 
May 30th 2023 8:44am, by
Cloud Security: Don’t Confuse Vendor and Tool Consolidation
May 30th 2023 6:24am, by
Dev News: New Microsoft Edge Tools and Goodbye Node.js 16
May 27th 2023 6:00am, by
Dev News: Angular v16, plus Node.js and TypeScript Updates
Apr 22nd 2023 4:00am, by
This Week in Computing: Malware Gone Wild
Mar 25th 2023 7:10am, by
TypeScript 5.0: New Decorators Standard, Smaller npm
Mar 24th 2023 11:25am, by
JavaScript or WebAssembly: Which Is More Energy Efficient and Faster?
Jan 30th 2023 9:51am, by
Case Study: A WebAssembly Failure, and Lessons Learned
May 25th 2023 7:00am, by
New Image Trends Frontend Developers Should Support
May 25th 2023 6:00am, by
Could WebAssembly Be the Key to Decreasing Kubernetes Use?
May 22nd 2023 6:00am, by
Forrester on WebAssembly for Developers: Frontend to Backend
May 17th 2023 6:00am, by
Dev News: Dart 3 Meets Wasm, Flutter 3.10, and Qwik ‘Streamable JavaScript’
May 13th 2023 9:00am, by
Cloud Dependencies Need to Stop F---ing Us When They Go Down
May 25th 2023 10:00am, by
Microsoft Fabric Defragments Analytics, Enters Public Preview
May 23rd 2023 8:00am, by
A Boring Kubernetes Release
May 19th 2023 12:23pm, by
Optimizing Mastodon Performance with Sidekiq and Redis Enterprise
May 18th 2023 10:30am, by and
Datadog’s $65M Bill and Why Developers Should Care
May 17th 2023 10:56am, by
Oracle Support for MySQL 5.7 Ends Soon, Key Upgrades in 8.0
May 30th 2023 10:35am, by
Raft Native: The Foundation for Streaming Data’s Best Future
May 30th 2023 9:44am, by
Building AI-Driven Applications with a Multimodal Approach 
May 30th 2023 8:44am, by
Alteryx Announces AiDIN for AI-Powered Features
May 26th 2023 8:06am, by
Proprietary AI Models Are Dead. Long Live Proprietary AI Models 
May 26th 2023 6:13am, by
Alteryx Announces AiDIN for AI-Powered Features
May 26th 2023 8:06am, by
Proprietary AI Models Are Dead. Long Live Proprietary AI Models 
May 26th 2023 6:13am, by
AI Talk at KubeCon
May 24th 2023 1:36pm, by
Better Data Logistics Is the Key to Effective Machine Learning
May 24th 2023 10:00am, by
FAQ: What Is Automated Incident Response?
May 24th 2023 6:04am, by
How to Integrate OpenShift with Keycloak
May 30th 2023 11:00am, by
Cloud Security: Don’t Confuse Vendor and Tool Consolidation
May 30th 2023 6:24am, by
How to Protect Containerized Workloads at Runtime
May 30th 2023 4:00am, by
Top 3 Application Security Must-Haves
May 26th 2023 7:59am, by
Better Security with ChatGPT: Using AI's Defensive Strengths
May 26th 2023 6:00am, by
Platform Engineering Operations CI/CD Tech Life DevOps Kubernetes Observability Service Mesh
Take a Platform Engineering Deep Dive at PlatformCon 2023
May 26th 2023 10:00am, by Carrie Tang
Developer Platforms: Key Findings from a Forrester Snapshot
May 19th 2023 10:52am, by Aeris Stewart
How Otomi Helped the City of Utrecht Move to Kubernetes
May 15th 2023 10:00am, by Sander Rodenhuis
IBM Cloud CTO: Pros Outweigh the Cons with Platform Engineering
May 5th 2023 6:00am, by Loraine Lawson
Infrastructure as Code or Cloud Platforms — You Decide!
May 2nd 2023 9:34am, by Venkat Thiruvengadam
How to Protect Containerized Workloads at Runtime
May 30th 2023 4:00am, by Kevin Casey
Meet The Hobbyists Building Their Own DIY Cyberpunk Devices
May 29th 2023 6:00am, by David Cassel
Cloud Dependencies Need to Stop F---ing Us When They Go Down
May 25th 2023 10:00am, by Jeff Martens
AI Talk at KubeCon
May 24th 2023 1:36pm, by Alex Williams
Better Data Logistics Is the Key to Effective Machine Learning
May 24th 2023 10:00am, by Michael Tanenbaum
Is DevOps Tool Complexity Slowing Down Developer Velocity?
May 17th 2023 6:29am, by Heather Joslyn and Lawrence E Hecht
AI Has Become Integral to the Software Delivery Lifecycle
May 12th 2023 11:01am, by Richard MacManus
4 Core Principles of GitOps
May 11th 2023 2:17pm, by Alex Williams
5 Version-Control Tools Game Developers Should Know About
May 9th 2023 10:00am, by Sharone Zitzman
Mitigate Risk Beyond the Supply Chain with Runtime Monitoring
May 8th 2023 10:00am, by Mike Long
Bluesky vs. Nostr — Which Should Developers Care About More?
May 30th 2023 7:51am, by Richard MacManus
Meet The Hobbyists Building Their Own DIY Cyberpunk Devices
May 29th 2023 6:00am, by David Cassel
Bad by Design: The World of Intentionally Awful User Interfaces
May 28th 2023 6:00am, by David Cassel
Is Open Source the Original Product-Led Growth?
May 25th 2023 7:32am, by Kim McMahon
AppSec 'Worst Practices' with Tanya Janca 
May 24th 2023 8:08am, by Taylor Armerding
Cloud Security: Don’t Confuse Vendor and Tool Consolidation
May 30th 2023 6:24am, by Rani Osnat
Take a Platform Engineering Deep Dive at PlatformCon 2023
May 26th 2023 10:00am, by Carrie Tang
Developer Guide: A New Way to Build on the Slack Platform
May 26th 2023 8:30am, by Lauren Gil
Better Security with ChatGPT: Using AI's Defensive Strengths
May 26th 2023 6:00am, by Jeff Goldman
Is Open Source the Original Product-Led Growth?
May 25th 2023 7:32am, by Kim McMahon
How to Protect Containerized Workloads at Runtime
May 30th 2023 4:00am, by Kevin Casey
Can Rancher Deliver on Making Kubernetes Easy?
May 27th 2023 7:00am, by Jack Wallen
Don't Force Containers and Disrupt Workflows
May 25th 2023 3:10pm, by Alex Williams
Overcoming the Kubernetes Skills Gap with ChatGPT Assistance
May 23rd 2023 11:00am, by Dev Nag
Could WebAssembly Be the Key to Decreasing Kubernetes Use?
May 22nd 2023 6:00am, by Loraine Lawson
Red Hat Ansible Gets Event-Triggered Automation, AI Assist on Playbooks
May 24th 2023 6:22am, by Joab Jackson
Observability: Working with Metrics, Logs and Traces
May 22nd 2023 8:23am, by Jessica Wachtel
Why Upgrade to Observability from Application Monitoring?
May 19th 2023 11:49am, by George Hamilton
Datadog’s $65M Bill and Why Developers Should Care
May 17th 2023 10:56am, by Loraine Lawson
How OpenSearch Visualizes Jaeger's Distributed Tracing
May 11th 2023 10:00am, by Derek Ho and Jonah Kowall
Don't Force Containers and Disrupt Workflows
May 25th 2023 3:10pm, by Alex Williams
Linkerd Service Mesh Update Addresses More Demanding User Base
Apr 11th 2023 6:17am, by Joab Jackson
How to Create Zero Trust Architecture for Service Mesh
Mar 27th 2023 7:00am, by Joe Fay
Ambient Mesh: Sidestepping the Sidecar
Mar 1st 2023 8:44am, by Jeff Goldman
Service Mesh Demand for Kubernetes Shifts to Security
Oct 27th 2022 11:04am, by B. Cameron Gain
CI/CD / Cloud Native Ecosystem

The Tools You Need to Run GitOps-Based Automated Deployments

Here is a list of the tools and software you'd need to set up a fully-function GitOps automated workflow.
Sep 9th, 2019 11:54am by
Featued image for: The Tools You Need to Run GitOps-Based Automated Deployments
Feature image via Pixabay.

GitOps is a profound new way of looking at the operation process. GitOps focuses on making use of a version control system (such as Git) to house all information, documentation, and code for a Kubernetes deployment, setting the stage for automated deployment and even programmable infrastructure.

It’s an incredibly complex system with benefits on a level many businesses have never before experienced. Key benefits for GitOps include:

  • Increased productivity with continuous deployment automation.
  • Enhanced developer experience by pushing code and not containers.
  • Improved stability, thanks to an automated audit log of all cluster changes.
  • Higher reliability from Git’s built-in revert/rollback and fork and from a single source of truth.
  • Consistency and standardization of end-to-end workflows.
  • Stronger security, due to Git’s strong correctness and the cryptography used to track and manage changes.
  • Cost effectiveness from lower downtimes and vastly improved productivity.

If you’re sold on the idea of GitOps, your next question will be what are the tools required to make GitOps actually happen? It should come as no surprise that there are a number of tools that comprise the GitOps process.

Let’s take a look at some of the necessary pieces of software which can be used for GitOps, and what each tool does.

Kubernetes

Clearly, you cannot have GitOps without the tool at the heart of the process. Kubernetes is probably one of the most impactful systems to have arrived in the world of business IT in years. Without a Kubernetes cluster up and running, you cannot implement GitOps. For those that aren’t aware of Kubernetes, by definition, it is an open-source system for automating deployment, scaling, and management of containerized applications. Everything GitOps starts and ends with Kubernetes.

Docker

Kubernetes cannot function without the help of Docker. In fact, in order to install Kubernetes on your server, you must first install Docker. For those that have never used or been introduced to Docker, this tool serves as a set of platform-as-a-service products to deliver software in packages called containers.

Git

Git stands right behind Kubernetes as one of the most important tools for GitOps. After all, you cannot spell GitOps without git. Git stands as the central hub for GitOps. It is within Git that all of your documentation, configurations, and code necessary to deploy and maintain your cluster lives. But Git doesn’t only serve as a repository for instructions and code, used by humans to make the Kubernetes cluster function. Instead, there are automators which function with Git to make everything seamless and automatic. Configurations are read from Git and, if changes are found, the cluster is updated as dictated by the changes.

Helm

Helm is the official tool for managing Kubernetes charts, which are packages of pre-configured Kubernetes resources. With Helm, installing and managing Kubernetes packages is greatly streamlined. Helm can be used to find and use popular software (packaged as Helm charts), share your custom applications, create reproducible builds, intelligently manage your Kubernetes manifest files, and manage releases of Helm packages. In a sense, Helm is like the apt, yum, or homebrew for Kubernetes.

Flagger

Flagger is a progressive delivery operator which automates the promotion of canary deployments (a pattern for rolling out releases to a subset of users or servers). Flagger uses Istio, Linkerd, App Mesh, NGINX or Gloo routing for both traffic shaping and Prometheus metrics (for canary analysis). Flagger measures key performance indicators (such as the success rate of HTTP requests) while implementing a control loop to gradually shift traffic to the canary deployment. With regards to GitOps, Flagger is in charge of ensuring that any change made in the Git repository is viable for the cluster.

Prometheus

And speaking of Prometheus… here we have an open source monitoring solution that is the heart of the GitOps alerting system. With Prometheus, admins are alerted, in real-time, if a change (discovered by Flagger) isn’t viable. The addition of Prometheus also allows other automators (within the GitOps flow) to keep the alert system apprised if something has changed within the system.

Terraform

HashiCorp’s Terraform is an open source tool that allows you to provision any infrastructure with a consistent workflow. Terraform enables the provisioning of infrastructure through the use of a wide ecosystem of plugins. With regards to GitOps, you write a terraform file in Git to provision a Kubernetes cluster. Terraform also enables you to safely and predictably write, plan, and provision infrastructure as code. It’s that predictability which is key for GitOps.

Flux

Flux is a key component within the realm of GitOps. Flux is the central operator that makes GitOps possible within your Kubernetes cluster. With Flux in place, your cluster configuration will always match that of the configurations found in your Git repository. Flux also enables the continuous delivery of container images to the cluster. With the help of version control Flux can ensure deployment is:

  • Reproducible
  • Predictable
  • Auditable
  • Revertible

So long as Flux is in place, your team can be confident any change made to the cluster can easily be reverted.

Jenkins X

Jenkins X is an open source automation server, managed by CloudBees, that facilitates continuous integration and delivery for your Kubernetes cluster. Jenkins X automates the management of environments and the promotion of new versions between environments. Within the realm of GitOps, Jenkins X is used for rapid creation of clusters, quickstarts in many programming languages to deploy greenfield applications, importing existing brownfield applications, automated setup of containerized application deployment, automated promotions, and automated rollbacks.

Quay

The Red Hat-managed Quay is an image registry that allows you to easily manage your container images, with a high level of security and reliability. Instead of depending on the likes of GitHub, you’ll want your GitOps workflow to use an on-premises image registry. For that, your best bet is Quay.

And those are just some of the pieces that come together to form the GitOps puzzle.

Group Created with Sketch.
SHARE THIS STORY
RELATED STORIES
CircleCI CTO on How to Quickly Recover from a Malicious Hack AI Has Become Integral to the Software Delivery Lifecycle Slim.AI: Automating Vulnerability Remediation for a Shift-Left World A Better Way to Shift Security Left Simplify CI/CD with a General-Purpose Software Catalog
TNS owner Insight Partners is an investor in: Docker.
RELATED STORIES
Slim.AI: Automating Vulnerability Remediation for a Shift-Left World Usenix: Continuous Integration Is Just SRE Alerting 'Shifted Left' Tech Backgrounder: Slim.AI Makes Container Hardening Easier How 2 Founders Sold Their Startup to Aqua Security in a Year How Testcontainers Is Demonstrating Value as a Key CI Tool
THE NEW STACK UPDATE A newsletter digest of the week’s most important stories & analyses.