Kubernetes and Tanzu Ramblings
One of the great features in TAP Developer Portal (previously TAP GUI) since the initial release, has been the app live view plugin, which can help visualize actuator data from spring based java applications as well as steeltoe based dotnet core applications. In TAP 1.6, Application Live View (ALV) has been enhanced with 2 key …
In TAP 1.5, a new installation model was introduced based on a GitOps model, utilizing the Carvel toolset under the hood, to power it all. With TAP 1.6, beyond overall bug fixes, and nice changes to the overall UX of the GitOps Installation method, a really key feature that has been added, is the integration …
Managing SSO for applications is a complex task, and since TAP 1.4, we have had a great feature called AppSSO, which is aimed at helping make the story of SSO integration much easier for developers and operators. In TAP 1.6, a major effort was put into AppSSO to make it even more streamlined, and simple …
The Metadata Store has been a key element in a secure supply chain within TAP since the GA of TAP, and it provides a central location where all CVE data and SBOMs are stored for our source code and images. In TAP 1.6, we get a great new set of functionality in the metadata store, …
TAP has many features which help with securing our software supply chain. One of the key elements of security is obviously source code and image scanning which TAP has had since GA, but as we all know, finding the vulnerabilities is one thing, but how to triage these found vulnerabilities is an entire beast in …
The new scanning model "Supply Chain Security Tools - Scan 2.0" which was introduced back in TAP 1.5, now includes some great new improvements, and has been promoted from Alpha to Beta! The new model, is much easier to extend and customize to your own organizations needs, and is built with a more scalable and …
App SSO Overview App SSO is one of the great features offered in TAP, which has received a bunch of love in TAP 1.5 App SSO provides the needed APIs for curating and consuming a "Single Sign-On as a service" offering on Tanzu Application Platform. Through App SSO, one can easily integrate TAP based workloads …
In TAP 1.5, an amazing addition was made, with the inclusion of an additional package "Spring Cloud Gateway For Kubernetes"! This is a VMware product which was initially released in February 2021 as a standalone product, and is now included as part of TAP! Spring Cloud Gateway for Kubernetes is based on the open source …
Application Accelerator Overview App Accelerator helps you bootstrap developing your applications and deploying them in a discoverable and repeatable way. You can think of app accelerator as a way to publish a software catalog to your end users, which will allow them to fill out a simple and customizable form, that will then generate a …
Continue reading "TAP 1.5 – Application Accelerator Updates"
Background TAP has always included a pluggable scanning mechanism allowing for the platform to perform source code and image scanning as part of your supply chain. By default TAP utilizes Grype as the scanner, but has added support for additional scanner over time including: Carbon Black Container Security - for image scanning Snyk - for …