8 Ways CI/CD Pipelines Are Evolving - Part 2
July 15, 2021

Jayne Groll
DevOps Institute

CI/CD pipelines enable your teams to deliver higher quality software, quickly and efficiently. By combining the practices of continuous integration and either continuous delivery or continuous deployment, dev teams can spend more time on projects and less time on manual tasks.

However, CI/CD pipelines are still evolving. As we incorporate security measures, become more deployment-centric, and move towards full automation, there is a lot to consider when building your own CI/CD pipeline.

I asked several speakers and sponsors for the upcoming SKILup Day as well as several DevOps Institute Ambassadors to weigh in on how they think CI/CD pipelines are evolving. Here's what they had to say in Part 2 of this two-part series:

Start with: 8 Ways CI/CD Pipelines Are Evolving - Part 1

Speaker, Ravi Lachhman
Evangelist, Harness

CI/CD pipeline is becoming more deployment-centric; potentially, any change should be deployed as software design is becoming more incremental, pipelines are the core conduit from idea to the end-users e.g., production. With the rise in container orchestrators, the art of the possible such as the pipelines enforcing state/conformance of changes in a declarative fashion is now possible.

Speaker, Anders Wallgren
VP of Technology Strategy, CloudBees

Increasingly, software pipeline platforms support defining pipelines-as-code using domain-specific languages, in fact, it's pretty much table stakes these days. Being able to define pipelines as code allows for better documentation, testing and change management of pipelines. It also allows them to be more easily integrated into GitOps-style workflows.

Mark Peters
Technical Lead, Novetta

CI/CD pipelines are the crown jewels associated with good DevOps and Agile practices. Since these practices advocate functional delivery and self-organizing teams, each team may have its own CI/CD solution based on its particular problem. CI/CD options are cooking, not baking; ingredients have to be included, but the measurements are up to the chef to adjust based on how a project responds, matching the taste to the customer.

One of the more important parts of the CI/CD pipeline is that each team should have its own environment, or set of environments to work in. Virtual environments allow mirroring between functionalities. The more each environment can mirror the ultimate delivery environment, the more successful the pipeline is likely to be.

Tracy Ragan
CEO and Co-founder, DeployHub

CI/CD is moving from old ways of imperative practices to new thinking of declarative models. Event- based CI/CD will be the future of continuous delivery.

Savinder Puri
DevOps Evangelist, Zensar Technologies

Observability. It's one thing to have automated build and deployments, it's totally another to analyse the patterns of usage over time and then derive conclusions and take proactive actions. For example, for one customer, the analysis told us that while the frond-end builds were good, a couple of modules of the Java application typically had a lot more build breaks, and they were coming from a new team. Further digging identified a training need for the team.

Sharath Dodda
IT Development Manager, TD

CI/CD pipelines are evolving with full automation (subject to the maturity of the company, team). From the time code is checked-in with all security scans in place (code smells, vulnerabilities, etc.), an artifact is created and deployed successfully. The more shift left security is included in this automation, the better it is for the company and its assets.

Pawel Piwosz
Lead Systems Engineer, EPAM Systems

CI/CD has become the backbone of DevOps-driven organizations. CI/CD is not only the platform to deliver software to environments but to deliver solutions end-to-end. Infrastructure as code, security as code (shift left), etc., are part of CI/CD now and will be incorporated in autonomic processes more and more.

Craig Cook
Principal Engineer, Catapult CX

What's interesting is that developers no longer have to own and set up the necessary infrastructure for CI/CD. There's a shift away from building the pipeline from scratch yourself, towards using a pipeline through a cloud provider such as GitLab, Bitbucket or Github. The growing number of tools and integrations with third-party services also changes the process involved. For example, in the past, at the end of a build step, we would have to collect the results and store the data ourselves — now though, there are third-party services that keep records of it for us. There are, however, some limitations to this. While it certainly helps speed up the process, I worry sometimes that there is too much focus on the pipelines shipping code and the operations side of DevOps gets neglected. To overcome this, at Catapult CX, we find it helpful to have service dashboards that include real-time stats from the pipeline alongside service level metrics, closing the feedback loop from an operations standpoint.

Learn more about CI/CD and similar topics, by registering for an upcoming SKILup Day. Or, start your upskilling journey by learning more about the benefits of DevOps Institute membership.

Jayne Groll is CEO of DevOps Institute
Share this

Industry News

March 27, 2024

WaveMaker has updated its platform in response to customer demand for more sophisticated API and code management tools.

March 27, 2024

Vercara announced the launch of UltraAPI™, a product suite that protects APIs and web applications from malicious bots and fraudulent activity while ensuring regulatory compliance.

March 27, 2024

Legit Security announced the launch of its standalone enterprise secrets scanning product, which can detect, remediate, and prevent secrets exposure across the software development pipeline.

March 26, 2024

Progress announced a strategic partnership with Veeam® Software, the #1 leader by market share in Data Protection and Ransomware Recovery, to provide customers with an enterprise-ready cyber defense solution that strengthens the security of their business-critical data.

March 26, 2024

GitGuardian released its Software Composition Analysis (SCA) module.

March 26, 2024

DataStax announced a milestone in its journey to simplify enterprise retrieval-augmented generation (RAG) for developers by integrating with Microsoft Semantic Kernel.

March 25, 2024

Check Point® Software Technologies Ltd. is collaborating with NVIDIA to enhance the security of AI cloud infrastructure. Integrating NVIDIA BlueField DPUs, which feature a broad range of purpose-built, innovative security capabilities, the new Check Point AI Cloud Protect solution will help prevent threats at both the network and host levels.

March 25, 2024

Sentry announced the release of Autofix, an AI-powered feature to debug and fix code in minutes, saving important time and resources.

March 25, 2024

Apiiro announced a product integration and partnership with Secure Code Warrior, the agile developer security training platform, to extend its ASPM technology and processes to the people layer.

March 21, 2024

Progress announced that Progress® Semaphore™, its metadata management and semantic AI platform, was named a Champion in SoftwareReviews’ 2024 Metadata Management Emotional Footprint Awards.

March 21, 2024

The Cloud Native Computing Foundation® (CNCF®) has partnered with Udemy, an online skills marketplace and learning platform.

March 21, 2024

GitLab has acquired Oxeye, the provider of a cloud-native application security and risk management solution.

March 21, 2024

GitHub announced that code scanning autofix, powered by GitHub Copilot and CodeQL, is available in public beta for all GitHub Advanced Security (GHAS) customers.

March 21, 2024

NetApp is collaborating with NVIDIA to advance retrieval-augmented generation (RAG) for generative AI applications.

March 21, 2024

CalypsoAI launched the CalypsoAI Platform, an advanced SaaS-based security and enablement solution for generative AI applications within the enterprise.