This repo demostrates CI/CD for GKE with Google Cloud tools Google Cloud Deploy, Cloud Build, and Artifact Registry. The example app is based on a simple Python Flask example app named "Population Stats" and uses Kustomize overlays to enable configuration differences across three different environments: test, staging, and prod..
This demo relies on you making git check-ins to simulate a developer workflow. So you'll need your own copy of these files in your own Github.com repo.
If you've already done that, you can start the setup tutorial below.
The following tutorial walks you through all the setup needed to configure Google Cloud services needed to run this demo. Clicking this button provisions a Cloud Shell Editor and launches an interactive tutorial which steps you through the process. Google Cloud account and project required.
If you don't want to run the tutorial in Cloud Shell, you can view the md file here.
Notes:
To view the security insight panel inside of Cloud Deploy, You might need to alter the permissions of the service account
- Artifact Registry Reader
- Container Analysis Occurrences Viewer
- Service Usage Consumer
- Cloud Repositories 2nd Gen
- Security Insights Panel
- SLSA build provenance
- Docker Registry
- local python repo
- remote python repo
- virtual python repo
- Scan on push
- OS level vuln scans
- python package vuln scans
- Approvals
- Canary
- Verification
- Pre-deployment Hook
- Multiple Stages
- Promotions between stages
- Security Insights panel
- Multi-target deployment for prod
Simple web app that pulls population data based on U.S. address queries. Note, other countries are currently not supported.
Population data gathered from the U.S. Census Bureau Population Estimate API.
Feedback and contributions welcomed!
demo 7