Applications
DevOps and CI/CD
The development team often relies on third-party software packages during compilation and builds. CodeArts Artifact serves as a reliable, centralized storage hub for software packages. The build tool searches for and downloads the required dependencies from CodeArts Artifact based on the project settings. This process mitigates security risks from untrusted sources, enhances download efficiency, and reduces network-related download failures.
After the build, the generated software packages are stored in CodeArts Artifact. During deployment, you can directly pull the required packages. This enables quick package retrieval for application updates, deployments, and new environment setups, ensuring accuracy and efficiency throughout the process.
In addition, CodeArts Artifact manages software package versions, allowing team members to easily track changes and features in each version. This ensures that the correct version is selected during deployment, preventing errors caused by version mismatches. CodeArts Artifact significantly streamlines the build and deployment processes, providing strong support for DevOps practices.
Artifact Security Scanning
As open-source software is widely used, after the development team uploads artifacts containing open-source components to the repository, you can enable the artifact security scanning. This feature performs an in-depth scanning of the open-source software packages in the artifacts, comparing them against a vulnerability database to identify security risks. When a vulnerability is found, the system generates a detailed report, highlighting its location, severity, and recommended fixes. The development team can act on the report by updating open-source component versions or applying security patches, effectively mitigating risks from vulnerabilities. This ensures the security and stability of artifacts, providing a strong defense for future development, testing, and deployment.
Artifact Promotion
After coding and local tests, developers use a CI/CD tool to archive the generated artifacts to the repository in the development environment. Once the artifact passes the unit tests, the R&D team updates the version status and uses the replication function to push the artifacts to the repository in the test environment. After the test team completes a comprehensive test, the qualified artifacts are pushed to the pre-release environment for final integration verification. After all checks are passed, these artifacts are pushed to the repository in the production environment for official release. The artifact promotion feature of CodeArts Artifact helps R&D teams easily identify artifact maturity and ensure high-quality delivery.
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbot
