Delivery Direction

1. You are here:
2. GitLab Direction
3. Delivery Direction

• Overview
  • What is Delivery?
  • Relationship to Continuous Delivery and Deployment
• GitLab's Delivery Vision
• Jobs To Be done
  • Market
• Strategy
  • Kubernetes First
  • A connected platform
• Roadmap
  • Current Position
  • Focus for Fy24
    • Integrating Flux with the agent for Kubernetes
    • Improving our support of complex, multi-project release orchestration
    • Building out a flexible delivery framework
  • What we aren't focused on now
• Challenges
• Opportunities
• Key Capabilities for Delivery
• Competitive Landscape
  • GitHub Actions
  • Harness
  • Spinnaker
  • Waypoint
  • Argo
  • Weaveworks

Overview

The delivery direction covers the deployment and release functionality of GitLab. Users of both cloud-native and legacy infrastructures should benefit from the delivery direction. This direction brings them high-level automations that just work out of the box following GitLab conventions and low-level integration points that enable users to build their own flavor of deployment and release functionality. Legacy infrastructures are served through GitLab CI/CD, while cloud-native infrastructures, especially Kubernetes, is supported with the agent for Kubernetes.

What is Delivery?

Delivery is when you promote a coded, integrated, and built software application to a production environment. Once you deliver an application, users derive value from it. Delivery is part of GitLab's Ops section. Delivery is composed of two parts, deployment and release. Deployment covers the processes and actions needed to deploy a new version of the software to a target infrastructure. This includes both production and non-production infrastructures. Release includes the processes and actions needed to make a deployed application available to the users. As delivery starts with a tested artifact, like a container, it might take several deployments into various environments and a final release or set of releases for the container to serve users.

Delivery is difficult, however, with the competition in the market today, increased velocity and stability are a necessity. Delivery is where development and operations meet and the focus turns to operations. Delivery is a team sport. It requires empowered developers and it requires guard rails set by operators. In overcoming these hurdles, teams must:

• Enable Developers: Delivery is simple when done alone. It's hard when done across even a small number of teams. Doing it well requires automation, orchestration, coordination, and collaboration.
• Increase Frequency: Release frequency is a competitive advantage. Products must deploy frequently to capture value sooner and recieve feedback quicker. Increasing deployment and release frequency decreases risks and sets the team up for continuous improvements. Teams need fast, repeatable, compliant and safe ways to deliver software to their users.
• Accommodate Target Variety: Deployment used to involve copying new files to a specific server. Today, deployment targets span environments (dev/staging/production), infrastructure types (VM and container). Adding to the complexity, some environments and their infrastructure are ephemeral. The release mechanisms differ by deployment targets. A release might take many forms, like switching a feature flag, reconfiguring a load-balancer, etc. Operations teams need to provide a consistent interface for deploying and releasing in different targets environments.

Ephemeral infrastructure blurs the line between infrastructure configuration and software release. As a result, we include our Configure and Release stages in our Delivery direction. At the same time, we acknowledge that Delivery does not exist in a vacuum. As already mentioned, Delivery is where the focus shifts from development to operations. As a result, the Delivery direction starts with a secure packaged artifact and should support and integrate well with Day-2 operations. These are covered by the Secure, Package and Monitor stages of GitLab, respectively.

Relationship to Continuous Delivery and Deployment

This direction is about delivery, in general. As a result, we speak about delivery overarching deployment and release functionalities. There are nevertheless two industry terms, "continuous delivery" and "continuous deployment" that might confuse the reader of this page. Martin Fowler defines these related terms as follows:

Continuous Delivery is a software development discipline where you build software in such a way that the software can be released to production at any time. … Continuous Deployment means that every change goes through the pipeline and automatically gets put into production, resulting in many production deployments every day. … Continuous Integration usually refers to integrating, building, and testing code within the development environment. Continuous Delivery builds on this, dealing with the final stages required for production deployment.

The Delivery direction includes both Continuous Delivery and Continuous Deployment, while Continuous Integration is covered by the Verify stage.

GitLab's Delivery Vision

GitLab's Delivery vision is to enable your organization to be an elite performer in DevOps by making the hardest part of DevOps - software delivery - easy, flexible and secure.

We will accomplish this by

1. Empowering Priyanka (Platform Engineer) and Ingrid (Infrastructure Operator) to define and automate DevOps practices that have security and compliance guard rails built directly into the process.
2. Using the tools and standards built by Priyanka and Ingrid enables developers to own their specific deployment operations without toil, yet retain flexibility, efficiency, and scalability.
3. Taking advantage of the data available in the connected GitLab platform, from planning input, artifact storage to observability and incident data, to make release operations, such as scaling rollouts or rollbacks automatic.

Jobs To Be done

• When a developer is using the development platform, I want the developer to be more productive by not having to spend time figuring out how to deploy yet enable them to comply with security and compliance requirements.
• When operating the development platform, I do not want to slow down the development teams and limit what they need to do to improve and deploy their service so that there's no downside to using the platform.
• When operating the development platform, I empower engineers while retaining control with RBAC, Audit trails, secret management, progressive delivery, and auto-scaling deployments and rollbacks.
• When configuring my delivery pipelines, I can decide the people and teams with rights to deploy and release, so the pipeline can support the company culture and processes.
• When changing something in my organization's DevOps process, I do not want to create extra work for my development teams yet enable them to still benefit from the improvements in the process.
• When managing my environments, I want to see and understand what is currently running, so that I can make decisions on what I need to do.
• When delivering my application, it doesn't matter if I am delivering to legacy servers or to Kubernetes, it all just works.
• When releasing updates to my application, I feel confident my changes will not disrupt the existing environment and I know exactly what will be impacted.
• When releasing updates to my application, I feel confident about the delivery system and I know how I can recover from a failed delivery with minimal downtime.
• When looking for improvements in the delivery process, I can understand how my organization is performing, so that I can pinpoint actionable improvement areas.
• When delivering my application, I want to orchestrate the entire process, so that delivery pipeline users can use a well-functioning system.

Market

The total addressable market (TAMkt) for DevOps tools targeting the Release and Configure stages was $1.79B in 2020 and is expected to grow to $3.25B by 2024 (13.8% CAGR) (i). This analysis is considered conservative as it focuses only on developers and doesn't include other users. External market sizing shows even more potential. For example, continuous delivery alone, which does not include categories such as infrastructure as code, is estimated to have a market size of $1.62B in 2018 growing to $6B by 2026 (17.76% CAGR). This, like the Ops market in general, is a deep value pool and represents a significant portion of GitLab's expanding addressable market.

The delivery tooling market is evolving and expanding. There are now many more options than just adding a deployment job to your CI/CD pipeline. Release Orchestration, advanced releases, GitOps, infrastructure provisioning, platform as a service, progressive delivery, and feature flags are all methodologies that help teams deliver software more easily, frequently, and confidently. Completeness of feature set from vendors is becoming increasingly important as teams want the benefits from all worlds; traditional, table stakes deployment features alongside modern, differentiating features.

To increase deployment frequency and be competitive in the market, enterprises have turned to centralized cloud teams or cloud center of excellence that are responsible for helping development teams be more efficient and productive. These teams have centralized buying power for DevOps and delivery tools. They may also have organizational support to build a DIY DevOps platform. For cloud-native DIY platforms, we've found (through customer interviews) that open-source point deployment solutions (such as Flux or ArgoCD) are the primary options because of their focus on cloud-native principles and early adoption of pull-based deployment. These tools often come with auxilliary tooling for release management, like Flagger and Argo Rollouts Otherwise, enterprises, even existing GitLab customers, sometimes buy commercial tools for deployment, such as Octopus, Harness, and CloudBees electric flow.

Strategy

In Delivery, we are targeting the central platform team personas in Priyanka (Platform Engineer) and Ingrid (Infrastructure Operator). They are responsible for setting up the systems that development teams use to develop, test, ship, and operate their applications. It is likely they work at an enterprise where there is a mix of delivery targets. They also face the challenges of ever-increasing complexity; as more contributors, more services, more infrastructure, more databases, and a mix of technologies are added to their applications. They are looking for ways to create a system to manage the complexity.

Our investment will focus on two strategic pillars.

Kubernetes First

In 2021, we have seen that Kubernetes has officially gone main stream.

There are two compelling reasons why we want to be Kubernetes first (not Kubernetes only).

First, we have seen that our customers are reaching out to GitLab after they have decided to modernize on Kubernetes as a platform. With the clear impetus to modernize, we want to meet our customers where they are at and provide capabilities that enables to benefit from their modernization efforts.

Second, targeting Kubernetes enables us to be more efficient. As Kubernetes becomes more and more ubiquitous, building against Kubernetes is a shortcut around building specific integrations with cloud vendors. We now also have the foundational tool, the GitLab agent for Kubernetes to take advantage of the Kubernetes ecosystem. Given that the agent has permission to act within the cluster, we can enable integration with the rich ecosystem of K8s tools to enable powerful workflows all from within GitLab, while following Kubernetes' operator pattern. With it, we can do exciting things like connect GitLab environments to the actual environment of the running application! Lastly but not least, Kubernetes is API driven. As such, we can move fast building on top of Kubernetes, instead of complicated undertakings such as figuring out how to connect with load balancers, building on top of Kubernetes easily allows us to implement things like advanced deployments.

A connected platform

Deploying modern applications is complex. As one of the last steps in delivering change to users, it is imperative to support automation and enable transparency and collaboration in each of the steps that lead up to a release. We plan to focus on improving the connection between releases, environments, Kubernetes clusters, Observability and integrating with GitLab CI/CD and DORA metrics for a full user experience.

The delivery direction primarily affects the Configure and Release stages. Given the scope of work, we want to deliver the integrations in alignment and with the support of the Package, Monitor, Secure, Verify and Manage stages.

Roadmap

Current Position

GitLab has a market-leading CI/CD solution. Deployment and release using GitLab's CI/CD pipelines work well for many use cases. In particular, CI/CD pipelines are great for individual projects which deploy independently. GitLab users love the developer enablement provided by our robust pipeline definition language, but they find it painful to write and manage hundreds of lines of code to describe their custom delivery logic.

Independent software deliveries - for the delivery of individual projects that can be deployed in an automated fashion without coordination, developers deploy using CI/CD pipelines in the following ways:

• Writing customized pipeline definitions
  • Custom pipeline can take advantage of functionalities made available in containers, including ones published by GitLab
• Including pipeline definitions provided by their platform teams
• Using GitLab provided deployment templates (such as Pages, AWS, Fastlane, Serverless, 5 Minute App, etc)
• Utilizing GitLab's AutoDevOps defined deployment process

Kubernetes deployments - for deployments to Kubernetes, we have support for pull-based GitOps via the Kubernetes Agent and FluxCD, while push-based GitOps is supported by CI/CD tunnel. Supporting both push- and pull-based deployments, GitLab can be used to migrate to full GitOps approaches of Kubernetes management and can support even dynamic usecases that pull-based only approaches struggle supporting.

Orchestrated delivery - for complex releases, particularly those that require orchestration across multiple projects, release managers use Releases to gather artifacts. Sometimes release managers collaborate on the delivery process using GitLab's release.

None of these methods are duplicative and each serves different use cases.

Focus for Fy24

GitLab supports modern, GitOps deployments to Kubernetes using the agent for Kubernetes; custom-built deployment and release pipelines are supported on top of GitLab CI/CD for legacy infrastructures.

We are working on a few key themes:

• Integrating Flux with the agent for Kubernetes to provide a market-leading pull-based deployment experience.
• Improving our support of complex, multi-project release orchestration.
• Building out a flexible delivery framework.

We want to measure our success by focusing on the combined SMAU metric of the Configure and Release stages.

Integrating Flux with the agent for Kubernetes

We decided to drop our in-house GitOps solution in favor of a Flux integration. Our plan is to provide value-add on top of a stand-alone Flux installation by

• integrating access management to avoid the management of Deploy Keys with Flux
• providing graphical insights into Flux deployments as part of the GitLab UI
• providing conventions

Together with some other changes, we want to reach a point where we can finally remove the deprecated certificate-based integration.

Improving our support of complex, multi-project release orchestration

Complex, large-scale deliveries need orchestrated releases, aggregated insights and management with the possibility to drill down to the details.

• Integrating the GitOps workflow with CI pipelines for pre- and post-deployment automation.
• Creating group-level environments will provide an aggregated view of environments that provides a single view for a team-level overview of applications.
• Integrate with GitLab DORA metrics for deployment frequencies and lead time to change.
• Integrating GitLab Observability into environments should provide the entry points to metrics, logs and tracing and improve the user experience to get an overview about the status of an environment.
• Close the loop of secure software supply chains.

Building out a flexible delivery framework

While today users can use GitLab CI to code their delivery pipelines, they have to maintain the custom logic. We want to offer a fully declarative and flexible definition to describe delivery pipelines. We call this the GitLab Delivery Framework.

The framework is currently in the planning phase. More details are shared on the Deployment management direction. In line with our Kubernetes first strategy, first, we want to add support for delivery pipelines targeting Kubernetes, later followed by other deployment and release targets.

The framework should

• integrate applications for core use cases (e.g. ingress, certificate manager),
• provide a code-based deployment framework that allows describing the desired state of environments and how envrionments are promoted in a fully-automated way,
• provide a GUI to make the code-based deployment framework accessible to everyone,
• add support for advanced deployment and release strategies,
• expand our solution beyond Kubernetes to other strategic deployment targets,

What we aren't focused on now

There are important things we won't work on to focus on our one year plan.

1. Auto DevOps Deployments - While we will enable the creation of Auto DevOps style templates and experiences for the developers in their organization by platform teams, we will not be making significant strides to make Auto DevOps deployments cover a broader set of delivery targets at this time.
2. Progressive Delivery - By focusing on where platform teams are today, we'll forgo pushing further on our current progressive delivery capabilities like Feature Flags and A/B Testing.
3. Cost Optimization - We should first improve adoption of our Kubernetes Management capabilities before focusing more on cluster costs. Enterprises want views into costs beyond clusters. Building capabilities like environment management precedes cost optimization tooling.
4. Non-Kubernetes Cloud-native - Distinguishing from Kubernetes-native, which is our initial focus area. We will not be focused on other cloud-native solutions, such as Docker Swarm, Apache Mesos, and Amazon ECS, because they're not nearly as successful as Kubernetes.
5. Building more Deployment Methods - Actively adding templates or improving existing templates is not our main focus. Nor is building customized images for deploying to cloud providers. The CI/CD pipeline is flexible and enables GitLab users to create what they need as is. It is worthwhile to examine how we can enable the wider GitLab community, including our customer success teams, to share and reuse similar templates and treat them as lego blocks that can be adopted and put to use quickly. These will be most beneficial for common deployment targets, such as Fargate and Lambda.

Challenges

The Ops section challenges are applicable to delivery. Some challenges are worth expanding on with some additional highlights:

• CNCF/cloud-native open-source solutions can disrupt GitLab's one application vision. They are marketed to a huge and engaged audience. If they're successful in growing adoption, it introduces a barrier to adopting GitLab. For delivery, a risky and highly visible part of the SDLC process, organizations may be more reticent to switch to GitLab's one application solution.
• GitLab's pipeline-based deployment solution targets the developer as the primary persona. As a deployment tool, it may be less effective relative to solutions that target the platform engineer as the primary persona with specific tooling made for their primary jobs.

Opportunities

The Ops section opportunities apply to delivery. GitLab also has some important opportunities to take advantage of specific to delivery:

• Delivery is critical and painful: As a DevOps platform, GitLab is the ideal tool for solving an industry-wide problem. DevOps adoption is stalling. Organizations state that delivering software quickly is the heart of their DevOps transformation, yet only 10% are elite performers in deployment frequency, nearly two-thirds take more than one week to deploy code to production, and 50% need more than a day to restore an unplanned outage. Organizations lack the resources to manage efficient delivery capabilities as they scale. Large organizations are hindered by the complexity of multiple deployment targets and increased frequency across teams.
• GitLab is well positioned to help: GitLab has a significant advantage for organizations already utilizing GitLab CI/CD. While delivery is not the same as the fully automated pipelines prescribed by Continuous Deployment, GitLab customers are already used to defining their automation directly within their DevOps Platform. Beyond being adjacent, GitLab's single platform can make collaboration and feedback from deployments and releases smart, faster and more actionable.
• Cloud-Native requires new tools: When organizations make a determination to move toward Kubernetes, this often becomes an opportunity to modernize their delivery toolchain. They want a tool that can help them deploy, manage, and operate their clusters. GitLab is well-positioned to help DevOps teams automate and manage deliveries on Kubernetes.
• Cloud-agnostic: Having delivery tools tied to specific cloud deployment targets is best solved by the cloud vendor themselves. GitLab can help customers deploy to any target, including all of the common public clouds. This is a potential differentiator compared to GitHub and Microsoft.

Key Capabilities for Delivery

Enterprises are increasingly choosing to have a cloud-first strategy. Furthermore, with the increasing adoption of microservices architecture and infrastructure as code, traditional release tools are inadequate. This, coupled with the traditional delivery requirements of governance, compliance, and security, means that delivery tools have to meet a high bar and address a set of evolving technology and compliance requirements. The primary themes for these capabilities are that first organizations need collaboration and transparency, then control and compliance and before requiring measurement and advanced patterns. We list these key capabilities of deployment platforms in priority order of user need:

Collaboration and Transparency

1. Environment management: Organizations typically operate multiple environments, each serving different needs. Delivery tools should help to make managing environments easy and intuitive.
2. Everything as code: Delivery tooling, including pipelines, releases, infrastructure, environments, and monitoring tools, are constantly evolving. If they can be stored as code and version-controlled, it will enable organizations to more effectively collaborate and avoid costly mistakes.

Control and Compliance

1. GitOps: Simply checking code into a repository will not prevent drift to occur between code and what is deployed. GitOps solves this problem by automatically managing changes using the single source of truth reflected in the source repository providing more control by preventing drift.
2. Release Orchestration & Quality gates: Organizations need to control what can be deployed and in which sequence. Enabling reviews and approvals built right into the deployment workflow and supporting policy tools is a critical requirement. The ability to perform automatic rollback, environment freeze, and scaling deployment also enables organizations to be more in control.

Measurement and Advanced Patterns

1. Feedback: Delivery is a critical part of the DevOps feedback loop. A successful release depends on immediate feedback from Monitoring and Observability tools to ensure a healthy rollout. Furthermore, knowing that a delivery was successful is not just about knowing whether the application deployed is healthy, it also requires understanding the impact to downstream neighbors and the environment as a whole.
2. Reporting: Understanding how the DevOps team and the entire organization is performing, such as using the DORA metrics, is important to enable iteration towards stronger performance.
3. Progressive delivery: Delivery can be risky. To mitigate risks, progressive delivery techniques, such as using feature flags, canary and rolling deployments can help mitigate the risk by limiting the impact until the delivery teams are confident that their changes are good to go.

Competitive Landscape

GitHub Actions

GitHub Actions are an automation workflow integrated with GitHub repositories. Each action is triggered by one or multiple events. Using GitHub Actions, users can define any number of jobs, including deployment jobs. Microsoft has setup actions to be like lego pieces, and has built a workflow around finding and reusing actions in an actions marketplace.

GitHub Actions recently introduced environments which can help users set specific rules based on environments to automate deployment workflows. Furthermore, environment scoped secrets enables different secrets for different tiers, separating deployment from development to meet compliance and security requirements.

Harness

Harness is a modern, ambitious CI/CD platform that can be a single platform to build, test, deploy and verify any application. Read more about Harness in our DevOps tools comparison page.

Spinnaker

Spinnaker, born out of Netflix, is an open-source, cloud-native, multi-cloud continuous delivery platform for releasing software changes.

It views its solution in three parts. First, application management which enables users to visualize and manage cloud resources. Second, application deployment is a powerful and flexible pipeline management system with integrations to the major cloud providers and treats deployments as a first-class citizen. Lastly, managed delivery combines application management and delivery, and enables users to specify what they want in declarative format.

Spinnaker's advantage points are:

• Provides easy application deployment across cloud providers. We have also recognised this as one of our top vision items and are working to natively support hypercloud deployments.
• Supports several deployment strategies which we are working on expanding in Advanced Deploys.
• Allows configuring an environment in standby for easy rollback, which is closely tied to gitlab#35409.
• Provides a user interface that allows you to view your infrastructure and to see exactly where your code is residing.
• Acts as an operator that performs rollback when needed without the need to provide a script to do so (similar to Kubernetes).
• Ability to manage multiple Kubernetes clusters, which is also supported by GitLab.

There is additional analysis that can be found in gitlab#197709 and in gitlab#35219.

Waypoint

Waypoint, by Hashicorp, provides a modern workflow to build, deploy, and release across platforms. Waypoint uses a single configuration file and common workflow to manage and observe deployments across platforms such as Kubernetes, Nomad, EC2, Google Cloud Run, and more. It maps artifacts to runtime after the test and build phases. Waypoint sits alongside the source code, and enables declarative deployment - it takes the manifest of how the platform is configured and will execute the steps sequentially unique for each platform. Waypoint can be used with GitLab CI and even with the Auto DevOps workflow with deployments being done by Waypoint.

Argo

Argo CD is part of the Argo Project which is a incubation project in CNCF. Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. Argo CD is installed as an application in its own namespace in a cluster. Optionally, you can also register additional clusters to do multi-cluster deployments.

Beyond enabling users to practice GitOps, Argo CD does a great job reporting and visualizing the differences between your target state and live state, which greatly facilitates learning and understanding for operators.

Combined together with the other Argo Project capabilities, including Workflow, Rollouts, and Events, using Argo is a fairly complete way to manage the entire Kubernetes Development lifecycle.

Weaveworks

Weaveworks positions itself as a Kubernetes platform, enabling devops teams to do GitOps, to manage cluster lifecycles, and to monitor applications. Weaveworks operates a SaaS solution that operates the various open source projects it maintains. Of the open source tools, particularly notable in the deployment context is Flux which enables GitOps, Flagger which enables canary deployments. Scope which enables visualization of Kubernetes, and Cortex which enables monitoring.