View Blog Post

Automating Penetration Testing in a CI/CD Pipeline (Part 3)

Continuous Security: Security in the Continuous Delivery Pipeline is a series of articles addressing security concerns and testing in the Continuous Delivery pipeline. This is the eighth article in the series. Introduction In this third and final post we’ll cover fully integrating the work we did in the first two posts into a CI/CD pipeline for Read more…

View Blog Post

DevOps in AWS Radio: AWS CodeCommit and CodePipeline using CloudFormation (Episode 1)

In this episode, Paul Duvall and Brian Jakovich from Stelligent cover recent DevOps in AWS news and do a deep dive into automating the integration of AWS CodeCommit and CodePipeline using CloudFormation. Finally, they bring you into a Stelligent roundtable to discuss recent DevOps in AWS engagements with customers. About DevOps in AWS Radio On Read more…

View Blog Post

Automating ECS: Orchestrating in CodePipeline and CloudFormation (Part 2)

In this second and last part of this two-part series, I will demonstrate how to create a deployment pipeline in AWS CodePipeline to deploy changes to ECS images. In doing this, you’ll see not only how you can automate the creation of the infrastructure but also automating the deployment of the application and its infrastructure via Docker containers. This way you can commit infrastructure, application and deployment changes as code to your version-control repository and have these changes automatically deployed to production or production-like environments. Read more…

View Blog Post

Automating ECS: Provisioning in CloudFormation (Part 1)

In this two-part series, you’ll learn how to provision, configure, and orchestrate the EC2 Container Service (ECS) applications into a deployment pipeline that’s capable of deploying new infrastructure and code changes when developers commit changes to a version-control repository so that team members can release new changes to users whenever they choose to do so: Continuous Delivery. Read more…

View Blog Post

Security Integration Testing (Part 3): Integrating with a Continuous Delivery pipeline

Continuous Security: Security in the Continuous Delivery Pipeline is a series of articles addressing security concerns and testing in the Continuous Delivery pipeline. This is the seventh article in the series. Introduction The purpose of this blog series is to show how AWS Config and Lambda can be used to add Security Integration tests to a Continuous Read more…

View Blog Post

Automating Penetration Testing in a CI/CD Pipeline (Part 2)

Continuous Security: Security in the Continuous Delivery Pipeline is a series of articles addressing security concerns and testing in the Continuous Delivery pipeline. This is the sixth article in the series. In the first post, we discussed what OWASP ZAP is, how it’s installed and automating that installation process with Ansible. This second article of Read more…

View Blog Post

Create a Pipeline for Elastic Beanstalk in CodePipeline using CloudFormation and CodeCommit

In Building Continuous Deployment on AWS with AWS CodePipeline, Jenkins and AWS Elastic Beanstalk, AWS describes how to manually configure CodePipeline to deploy an Elastic Beanstalk application. In this post, after describing how to create and connect to a new CodeCommit repository, I’ll explain how to fully automate the provisioning of all of the AWS resources Read more…

View Blog Post

Security Integration Testing (Part 2): Building and deploying a testing framework on AWS

Continuous Security: Security in the Continuous Delivery Pipeline is a series of articles addressing security concerns and testing in the Continuous Delivery pipeline. This is the fifth article in the series. Introduction The purpose of this blog series is to show how AWS Config and Lambda can be used to add Security Integration tests to a Continuous Read more…