GitLab Drift Boss — config drift detection for CI/CD
Key Questions
What is GitLab Drift Boss?
GitLab Drift Boss detects config drift in CI/CD for repos, images, and runtime, integrating SBOM/SLSA. It uses OPA/SAPL/MCP for GitOps reconciliation and pull-based SSOT. Tutorials cover SLSA provenance and OIDC cosign.
How does GitLab Duo AI fix broken pipelines?
GitLab Duo AI provides agentic demos for chat analysis and merge request generation to fix pipelines. A 3:48 YouTube video demonstrates the process. It automates remediation in CI/CD workflows.
How to set up GitLab CI/CD for Kubernetes deployment?
Configure GitLab CI/CD with stages like linting, TruffleHog secrets scan, Hadolint, and osv-scanner for Node/ECR/Helm. Full YAML tutorials deploy to Kubernetes. It includes K8s deployment best practices.
What are key features of GitLab CI for secure builds?
GitLab CI supports repro builds, OIDC, and cosign for SLSA provenance. It detects drift and integrates security scanning. Upcoming prototypes include OTel and webhook support.
How does GitLab handle GitOps reconciliation?
GitLab Drift Boss uses pull-based SSOT for reconcilation with OPA/SAPL/MCP. It monitors drift in runtime and images. Duo AI enhances pipeline fixes via agentic workflows.
Drift detection repos/images/runtime, SBOM/SLSA; OPA/SAPL/MCP; GitOps reconcil/pull-based SSOT. GitLab CI tutorial on SLSA provenance/OIDC cosign/repro builds. New: Duo AI agentic demo for pipeline fixes (chat analysis, MR gen); K8s deployment tutorial (full YAML stages: linting/TruffleHog secrets/Hadolint/osv-scanner deps, Node/ECR/Helm); Cosign/Sigstore K8s image provenance enforcement via GitLab CI. Next: OTel/webhook prototypes/Duo prod workflows.