Skip to content

Tag: ci-cd

All the articles with the tag "ci-cd".

Argo Workflows vs Tekton

Argo Workflows vs Tekton

Two Kubernetes-native pipeline engines from CNCF — Argo Workflows and Tekton. Different philosophies, same goal: stop using Jenkins. Honest comparison.

Multi-Platform Docker Builds with buildx

Multi-Platform Docker Builds with buildx

· Updated:

Build ARM64 and AMD64 images from one machine using Docker buildx. Setup, syntax, pushing multi-arch manifests, and when you actually need it.

Automating Docker via Ansible

Automating Docker via Ansible

· Updated:

Automate Docker container deployment with shell scripts, cron, and Ansible — stop SSHing in and restarting things by hand.

Stop Living Dangerously on :latest Docker

Stop Living Dangerously on :latest Docker

· Updated:

Using :latest in production is a ticking time bomb. Pin your Docker image versions or watch a surprise update break everything at 2 AM.

ko vs Jib vs Buildpacks

ko vs Jib vs Buildpacks

Build container images without writing a single Dockerfile — ko for Go, Jib for Java, Paketo Buildpacks for everything else. Real benchmarks, real tradeoffs.

Cosign Keyless: Sign Without Keys

Cosign Keyless: Sign Without Keys

Cosign keyless signing uses GitHub OIDC + Fulcio + Rekor to sign container images without managing private keys. Here's how it actually works and why you want it.

Docker Bake vs Compose Build

Docker Bake vs Compose Build

Orchestrating multi-image Docker builds: docker buildx bake vs compose build, matrix targets, multi-arch, caching, and when each one actually wins.

SBOMs and Supply Chain Security

SBOMs and Supply Chain Security

A Software Bill of Materials tells you exactly what's in your software. Syft generates one, Grype scans it for CVEs. Together they're your supply chain paper trail.