February - 2024

It has been a couple of months since we had our last release and our team has been working hard on bringing the best of Ozone to our users, as you will see in the following release notes for February.

While the main focus has been on adding a host of new features like an onboarding flow and launching the Ozone AI engine, there have been many other key enhancements as well. Read on to know more!

New Features:

Enhanced Helm Management:

1. Users can view, edit, and upgrade all their helm releases from the same page for consistency and ease of use.

2. Helm chart uploads can now be done for each specific channel.

3. To enable ease of use, in case a private Helm provider is not created before-hand, the same can be done while uploading Helm charts itself.

Ozone AI: While we debuted the Ozone AI engine at Kubecon Chicago last year, we have made it more accessible and accurate in the last couple of months to include the following:

1. Deployment Verification: While creating a microservice, you can select the algorithm’s sensitivity to detect anomalies across APM data, logs, events, and metrics, while having an option to initiate a rollback pipeline.

1. Pipeline conversion and generation: Users can use simple prompts to generate a Tekton pipeline YAML with GenAI. They can also convert their existing Jenkins, GitLab, or Azure pipelines into Tekton YAMLs, thus making migrations from legacy to Tekton with Ozone, a piece of cake.

And here’s what a converted pipeline YAML looks like:

New task additions to the Ozone Task Catalog: The platform ships with 100+ Tekton task templates and we endeavour to add new tasks to this catalog on every new release.

1. The following new task YAMLs have been added to the catalog: NPM and Sysdig scans for FE testing, Kubevela, Kubevirt, Selenium, JFrog scan, Backstage, Codecov Python, and Kaniko build along with many other

2. Stackhawk CLI: This was added to the catalog for performing dynamic application security tests and managing StackHawk configuration files. The StackHawk CLI is made up of various sub-commands, for example, hawk scan, which can be used to perform a scan of your running web application, just like using the stackhawk/hawkscan Docker image.

DevSecOps: This release has focused majorly on the security features of Ozone by providing a dedicated security module with a dedicated dashboard for vulnerability monitoring. More details below:

1. Security Dashboard: A slight update on the side-bar in this release has made way for the security module which navigates users to a dashboard where they can monitor the severity of vulnerabilities across pipelines, microservices, and environments.
2. Security Policies: The dashboard also makes way for defining the severity of security policies across the global level and for microservices, clusters, and environments. Pipelines can be configured to stop running in case a security policy fails.
3. Task editions in the catalog: Many DevSecOps Tekton tasks have gone into the catalog like Grype for vulnerability scanning, Sonatype, Gitleaks for SAST, and many many more.

On-boarding flow: Given the increasing user base for the Ozone platform, this new release includes a hand-held onboarding flow with on-screen guides that take a user through the process of using bootstrapped resources (repos, registries, pipelines, cluster, etc) to run their first pipeline. The whole process takes less than 3 minutes (including a virtual cluster creation!), and is a great way to help users understand the product UX and workflow.

Tags and categories for pipelines and tasks: With the growing number of pipeline and task templates on the product, categorization has been introduced for easier navigation across the lists. Categories such as Build, Monitor, Cloud, Test, Publish, etc have been introduced in keeping with the various phases of CI/CD.

Enhanced task catalog view with cards: The task view screen now has more contextual names and descriptions that convey what each task is expected to do.

Other enhancements in this release include:

1. UI enhancements to the Ozone Pipeline Studio, task catalog, pipeline run views, and every major list view for microservices, pipeline templates, etc

2. Sign-up with GitHub is now added as an option to ease user onboarding

3. Category-based segregation of providers for ease of onboarding integrations. Name search is also now supported for quicker navigation

4. Exporting audit trails now includes more comprehensive data points

5. Providers and other resources like registries, clusters, and more can be imported across projects

6. Backstage users can now re-run pipelines from the Backstage UI itself

7. Grafana dashboard can be set to a minimum update interval of >1 min to prevent back-to-back alerts

8. Logs for task runs and backups are now accessible to be exported