Managing Credentials in Jenkins Securely
Jenkins is a widely adopted tool for automating CI/CD pipelines, and it often needs access to sensitive information such as passwords, API tokens, and SSH keys to interact with different systems.
Archive
Latest posts
Switching Docker to Rootless Mode: A Hands-On Guide
In this hands-on guide, I take you step-by-step through switching my local Docker server to rootless mode. From reconfiguring services to tackling real-world challenges, discover how to transform your Docker environment into a more secure and robust system, even on a home server. Let’s dive in!
Annotated vs. Lightweight Tags in Git: Which One Should You Use?
Git tags are crucial for marking important points in your repository's history, such as version releases. But not all tags in Git are created equal. There are two types of tags you can use: annotated and lightweight tags. Understanding the differences between these tags is vital.
Jenkins Security: Protecting Your Pipelines and Credentials
Security is a critical aspect of any CI/CD pipeline. As Jenkins often plays a central role in the software development lifecycle, handling everything from building code to deploying applications, it's essential to ensure that it is properly secured.
Setting Up Jenkins on Kubernetes
Kubernetes has emerged as a leading platform for orchestrating containerized applications, providing flexibility, scalability, and resilience. When combined with Jenkins, it enables teams to efficiently manage their CI/CD pipelines, automatically scaling Jenkins agents as needed.
How to Run Docker Daemon as a Non-Root User: Enhancing Security and Reducing Risk
Running the Docker daemon as a non-root user is a key security measure to minimize system risks. This post provides a detailed guide on why it's important, how to configure Docker for non-root operation using Rootless Mode, and how to troubleshoot common issues.
Using Git Tags to Mark Version Releases
Git tags are an essential part of software versioning and release management. They allow you to mark specific points in your repository's history as important milestones, such as a version release. Unlike branches, which continue to evolve over time, tags are immutable and serve as fixed pointers.
Automatically Applying Infrastructure Changes with Jenkins
In today's cloud-native world, managing infrastructure changes efficiently and reliably is crucial for any organization's success. CI/CD pipelines, particularly with tools like Jenkins, enable teams to automate application code and infrastructure deployment and management.
Understanding Docker Bench for Security Scores
Docker Bench for Security provides a comprehensive audit of your Docker environment, comparing it against CIS benchmarks to highlight potential security risks. At the end of the scan, a score is generated, reflecting how well your setup adheres to best practices.
Pros and Cons of Squashing Commits in Feature Branches
In the world of software development, maintaining a clean commit history is essential for collaboration and future maintenance. One of the effective ways to achieve this is through squashing commits. This technique allows developers to condense multiple commits into a single, cohesive commit.
Setting Up a GitOps Workflow with Jenkins
GitOps has emerged as a powerful paradigm for managing application delivery and infrastructure. By utilizing Git as the single source of truth for both application code and operational configurations, GitOps streamlines deployment processes.
Troubleshooting Docker Networking Problems
Docker networking is a crucial aspect of containerization, enabling communication between containers and between containers and external services. However, like any complex system, Docker networking can encounter issues that may disrupt application functionality and deployment.