Pipeline Playpen
This is example CI/CD pipeline in Azure DevOps, with source in GitHub.
You'd be surprised. In my day job we're seeing that people use legacy features of ADO, to their projects detriment.
- One YAML file to define the workflow from build to production. By all means, break that up into different files or use templates, but there should be one workflow to deploy one artifact to production.
- Stages per environment. Your pipeline should run all the stages. You need to fix the issues in earlier stages. Flip the "Disable stage chooser" switch.
- Validation after deployment.
- Release pipelines. They are deprecated and you should flip the "Disable creation of classic build and classic release pipelines" switch at the Organization level. Deployment is the entire team's concern.
- More than 1 orchestration tool.
- Node, NPM, expressJS for the "app"
- Docker for containerisation
- Still deciding on container runtime
- GitHub Advanced Security for SAST, with extra Trivy
- OWASP Zap for DAST (https://marketplace.visualstudio.com/items?itemName=CSE-DevOps.zap-scanner)
Set the environment variables for subscription ID and for PAT.
Run this: terraform apply -var-file="secret.tfvars"