Google announced Google Cloud Deploy to make continuous delivery to GKE faster, easier, and more reliable. The service is managed and opinionated in its delivery. Deploying container image artifacts into a variety of environments remains difficult to many.
Victor Szalvay, the Google Cloud product manager, wrote in a blog post saying that Google Cloud Deploy is the product of discussions with more than 50 customers, to gain insights into challenges faced when doing continuous delivery to GKE.
What Google learned
From cloud-native to more traditional businesses, Szalvay says that three themes emerged; the cost of ownership, security, and audit. The operational cost of Kubernetes continuous delivery is on the higher end. At the same time, researching the best and repeatable practices take up resources and time that could have been spent on the core business.
That is why Google Cloud Deploy eliminates scaling and maintenance responsibilities that usually are part of self-managed continuous delivery solutions.
The service also provides a structure with defined pipelines and targets.
Not only is the service touted as comprehensive, easy-to-use, and cost-effective, but also the key to DevOps’ ability to build an efficient software development team.
On the security front
When it comes to security, Google Cloud Deploy leverages execution-level security discrete resource access control and fine-grained restriction. Users can also take advantage of flow management features like approvals, rollback, and promotion.
Cloud Audit Logs audits user-initiated Google Deploy actions, to provide awareness into who promoted a specific release or updated a delivery pipeline.
For integration, it uses the GKE delivery tooling ecosystems in three ways, including connectivity to CI systems, support for leading configuration (rendering), tooling, and Pub/Sub notifications to enable third-party integrations.