Maintained by: Kat Cosgrove, kat.cosgrove@gmail.com, @dixie3flatline
When you’re new to an industry, you encounter a lot of new concepts. This can make it really difficult to get your feet underneath you on an unfamiliar landscape, especially for junior engineers. What does DevOps really mean? What’s all this software? What’s all this jargon? Is DevOps a methodology, or a toolset? Is any of this actually going to make my life easier, or is it just a bunch of industry buzzwords? I’ll answer all of these questions (and more) during this hands-on workshop, and get you set up with an end-to-end DevOps solution to automate your build artifact storage, vulnerability detection, testing, and deployment. For profit and glory!
Attendees do not need to be experts in or have experience using any of the technologies or pre-requisites involved in conducting this workshop, aside from a functional understanding of Git and GitHub. The intended audience is people still in school, junior developers, or anyone from a technical or tech-adjacent background who has no hands-on experience with DevOps practices and tooling.
-
This is free, no credit card required. It includes access to Artifactory, Pipelines, and Xray, with a limited amount of storage, transfer, and build minutes. NOTE: To follow this workshop, you must choose either AWS or Azure as your cloud provider. JFrog Pipelines is not currently available on GCP.
-
Docker
The Docker client should be installed and configured on your machine.
-
Python3
We will need to package a simple Python application. Python 3.6 or higher is required.
-
Git + GitHub A GitHub account is required so that you can fork this repository, and Git must be configured in your terminal.
-
Code editor
Whatever you are most comfortable with. I will be using SublimeText.
- What is the definition of DevOps?
- What does DevOps mean for developers?
- What is all of this jargon?
- What is binary repository manager?
- What are build artifacts?
- Why might you need to manage your build artifacts?
- Binary repository setup in Artifactory
- Docker
- PyPi
- Why do devs need to worry about vulnerability detection and license compliance?
- Security and License policies
- Scan a Build
- Running Reports
- Reading Results
- What is CI/CD?
- Pipelines Integrations
- Writing a “Hello World” pipeline