sensors
Article
Method for Continuous Integration and Deployment Using a
Pipeline Generator for Agile Software Projects
Ionut-Catalin Donca, Ovidiu Petru Stan * , Marius Misaros, Dan Gota
Citation: Donca, I.-C.; Stan, O.P.;
Misaros, M.; Gota, D.; Miclea, L.
Method for Continuous Integration
and Deployment Using a Pipeline
Generator for Agile Software Projects.
Sensors 2022, 22, 4637. https://
doi.org/10.3390/s22124637
Academic Editor: Marcin Woźniak
Received: 26 April 2022
Accepted: 17 June 2022
Published: 20 June 2022
Publisher’s Note: MDPI stays neutral
with regard to jurisdictional claims in
published maps and institutional affil-
iations.
Copyright: © 2022 by the authors.
Licensee MDPI, Basel, Switzerland.
This article is an open access article
distributed under the terms and
conditions of the Creative Commons
Attribution (CC BY) license (https://
creativecommons.org/licenses/by/
4.0/).
Sensors 2022, 22, 4637. https://doi.org/10.3390/s22124637
and Liviu Miclea
Department of Automation, Faculty of Automation and Computer Science, Technical University of Cluj-Napoca,
400114 Cluj-Napoca, Romania; [email protected] (I.-C.D.); [email protected] (M.M.);
[email protected] (D.G.); [email protected] (L.M.)
* Correspondence: [email protected]
Abstract: Lately, the software development industry is going through a slow but real transformation.
Software is increasingly a part of everything, and, software developers, are trying to cope with this
exploding demand through more automation. The pipelining technique of continuous integration
(CI) and continuous delivery (CD) has developed considerably due to the overwhelming demand for
the deployment and deliverability of new features and applications. As a result, DevOps approaches
and Agile principles have been developed, in which developers collaborate closely with infrastructure
engineers to guarantee that their applications are deployed quickly and reliably. Thanks to pipeline
approach thinking, the efficiency of projects has greatly improved. Agile practices represent the
introduction to the system of new features in each sprint delivery. Those practices may contain well-
developed features or can contain bugs or failures which impact the delivery. The pipeline approach,
depicted in this paper, overcomes the problems of delivery, improving the delivery timeline, the test
load steps, and the benchmarking tasks. It decreases system interruption by integrating multiple
test steps and adds stability and deliverability to the entire process. It provides standardization
which means having an established, time-tested process to use, and can also decrease ambiguity and
guesswork, guarantee quality and boost productivity. This tool is developed with an interpreted
language, namely Bash, which offers an easier method to integrate it into any platform. Based on
the experimental results, we demonstrate the value that this solution currently creates. This solution
provides an effective and efficient way to generate, manage, customize, and automate Agile-based
CI and CD projects through automated pipelines. The suggested system acts as a starting point
for standard CI/CD processes, caches Docker layers for subsequent usage, and implements highly
available deliverables in a Kubernetes cluster using Helm. Changing the principles of this solution
and expanding it into multiple platforms (windows) will be addressed in a future discussion.
Keywords: agile; containerization; version management; git; configuration management; continuous
integration; continuous delivery
1. Introduction
Nowadays, conventional software development methods are insufficient for today’s
business needs. Adapting to agile practices can increase the flexibility, efficiency, and speed
of the software development life cycle, which is what software development companies
are attracted to [1]. For this reason, many researchers and companies try to develop their
own solutions to building a product that can generate and automate the entire process
of Continuous Integration (CI), Continuous Delivery (CD), and Continuous Deployment
(CDT) [2].
The development of a product or service is achieved through iterations or rapid
development cycles carried out in a shorter time. In other words, instead of a monolithic
development strategy, agile practices involve working on chunks of projects at the same
time, which makes changes and adjustments easy and manageable. Initially, the developers
https://www.mdpi.com/journal/sensors
Sensors 2022, 22, 4637 2 of 18

will analyze the whole journey a functionality is expected to take: from the moment it is
born, to how it is defined and prioritized over other functionalities, how the team that will
implement it is chosen, how resources are allocated, and how the work is planned. Only
after all these stages are complete, will the developers look at the implementation. At first,
there is a dizzying amount of information and apparent chaos. However, with the process
of CI/CD/CDT, the most important lean and agile principles can be followed.
CI technique has several advantages; those worth mentioning lower risk, as far as
is feasible, to produce error-free and dependable software and remove limitations to the
number of times an implementation may be performed. Reduced time to market, improved
product quality, increased customer satisfaction, valid releases, boosted productivity, and
efficiency are the main benefits that drive companies to invest in CD. Nowadays, most soft-
ware and mobile development are delivered on Infrastructure as a Service (IaaS); therefore,
without a doubt, CI, CD and CDT have become a major aspect of cloud computing [3].
Well-implemented systems usually pass the overall test cases, but it is difficult for them
to be reverted to a previous version due to performance issues discovered after deployment
or if a migration has been processed [4]. System-sizing decisions are an immediate solution
to the problem, as agile processes place more emphasis on delivering products [5] within
specified deadlines. Another solution is to integrate into the pipeline the rollback process,
which means that if the monitoring thresholds or basic checks are violated, the system will
be reverted automatically to the previous version [6].
The presented paper provides a blueprint for automated CI, CDT pipelines. It explains
why well-engineered, mature delivery pipelines are important in providing both agility
and quality [7].
The remainder of this paper is arranged as follows. The next section, Section 2, de-
scribes the core concepts with respect to the related work. Section 3 presents the architecture
of the proposed solution. Section 4 elaborates, explains the solution with the selection of
tools, and also includes chunks of code (Bash scripts). This section also outlines outlines the
evaluation analysis of the proposed solution with the results and, finally, Section 5 closes
this paper with conclusions and possible directions for further research or work, and future
research challenges.

2. Literature Review
Today, the IT industry adopts CI/CDT/CD principles as one of the main technologies
for application delivery and deployment to satisfy business requirements and product
challenges. First, the related work that is available today on the market is described
and includes a short comparison between the different studies and a proposed solution;
secondly, this section describes the core concepts and principles underlying the continuous
software engineering paradigm that is adopted in this proposed solution [8].

2.1. Related Work

2.1.1. Argo CD
Like most software developed nowadays, Argo CD is an open source GitOps continu-
ous delivery tool for Kubernetes. Argo CD automatically deploys software applications to
Kubernetes, from declarative configuration files that are stored in Git. This allows the con-
figuration to be version-controlled and auditable through Git. The tool acts as a Kubernetes
controller, monitoring the state of both the source from Git and the deployed application.
It searches for differences between the two of them and provides the means to update
the deployed software application manually or automatically if the Git version has been
updated. Beside this, it also provides a visualized report of the current state of differences
via UI. Argo CD is also capable of dividing access to configuring applications through
its projects that can have defined access, based on teams of developers with role-based
access control. However, despite the above functions, this tool only covers the CD part of
an organization, and this can be considered a minus in comparison with Ramadoni’s et al.
proposed solution [9].
Sensors 2022, 22, 4637 3 of 18

Argo CD cannot manage the whole software lifecycle on its own. It is appropriate
for application deployment in the last stage of the delivery process, but it must be linked
to another platform that can conduct all previously available procedures, such as testing
and monitoring.
Academics recommend that future work should include the GitOps process [10],
which involves not only development but also CI/CD and observability [11], because it is
utilized as a study material. It is critical that there be solutions that can cover the complete
software lifecycle [12], especially for firms that wish to implement continuously [9].

2.1.2. FluxCD
FluxCD is also an open source, developed by the Cloud Native Computing Foundation.
It is described as a GitOps operator for Kubernetes [10] that synchronizes the state of
manifest in a Git repository to what is running in a cluster [13]. It runs in the cluster, and
its principal scope is to monitor a remote Git repository to apply changes in Kubernetes
manifests. This tool is easy to install and maintain because the only exclusive focus is on the
deployment part of the software delivery cycle, working specifically on the synchronization
of Git repositories–and container registries–with the version and state of workloads in a
cluster. By comparison, this tool needs to be installed in the Kubernetes cluster, which adds
workload to the management and monitorization part, whereas the solution suggested in
this paper does not require this part.
The main goal of FluxCD is to keep the Kubernetes clusters in sync with configuration
sources and to configure, automatically, the updates when needed (new code must be
deployed). FluxCD is designed from the bottom up to make use of the Kubernetes API
extension system and to interface with Prometheus and other key components of the
Kubernetes ecosystem. Flux enables multi-tenancy, as well as synchronizing an unlimited
number of Git repositories [13].
Beside these two applications, there are others that can be linked in some way with
solution proposed in this paper. It encapsulates multiple features into one solution, so it
is no longer necessary to adopt and install multiple solutions to achieve all the CI/CD
principles. The proposed solution includes the following features: pipeline generator,
versioning, pipeline building (CI), and pipeline deployment (CD); this paper, therefore,
covers all the aspects presented in default Agile organizations.

2.2. Core Concepts

2.2.1. Continuous Integration (CI)
A widely used software development practice is one in which developers integrate
code into a shared repository multiple times a day to quickly obtain feedback on the viability
of that code. CI supports automated builds and tests, so teams can quickly collaborate on a
single project. Also, CI enables software companies to have a frequent and shorter release
cycle [14].
This strategy facilitates a quick and reliable launch of the program in production by
utilizing the available practice sets. All of this is due to the regular merging of operational
software copies, which eliminates and decreases software integration difficulties and,
hence, expenses. Adherents of CI urge their development teams to create software in short
iterations and to merge their functional code into the root code as quickly as is feasible [15].

2.2.2. Continuous Delivery (CD)

Continuous delivery is a software engineering practice in which teams design, build,
test, and release software in short cycles. It relies on automation at each stage to ensure the
cycle is both fast and reliable. It employs a set of practices and automatically deploys and
delivers software to a production-like environment [14].
Basically, the CD is a software development strategy that automates the process by
which changes made by an application developer are delivered to the code repository or the
container registry, and it shows how the changes are automatically tested for errors. Thus,
Sensors 2022, 22, 4637 4 of 18

all the changes can be deployed in a live production environment by the operations team.
By doing so, CD solves the limited visibility and communication issue between DevOps
and business teams. To that end, the goal of CD is to guarantee that implementing new
code requires as little work as possible [16–18].

2.2.3. Continuous Deployment (CDT)

Continuous deployment is the process of deploying to production as soon as qualified
changes in software code or architecture are ready, and without human intervention. The
differences between CD and CDT can be a little tricky to distinguish [19]. So far, with CI,
the application has been coded, built, and tested through an automated pipeline using
code repositories and build and test systems. Once the testing is successful, the next
step is to release the new version of the application. This could be by packaging the
build application into an executable or an RPM package, or into an ISO of some kind
and making it available online so users can download and deploy the application in their
environments. Releasing the software this way, automatically through a pipeline, is known
as CD, as explained in the above section. An alternative to this step would be to take the
packaged application and automatically deploy it in a target environment, like an op-prem
cloud solution. This automatic process in the production environment with changes in
the application is referred to as Continuous Deployment [20–22]. In other words, from the
beginning, when an application code is changed and pushed to the code repository, it
is automatically built, tested through a build pipeline, and then released through an air
release management system, and finally deployed in production to a target environment, all
integrated and automated without requiring any manual intervention. In reality, applying
CDT results in high-level automation [22], since each version is automatically installed in
user acceptance testing or even production settings [13].

2.2.4. CI/CD Pipeline

When an enterprise attempts to adopt a CI/CD pipeline, it will no longer be capable of
undertaking it autonomously. First, they should practice CI to adopt CD. Whilst transferring
from CI to CD, the pipeline reduces the manual execution and ultimately the complete
method becomes automated. While adopting CD, all the stages are implemented through
automation. CI/CD pipeline refers to planning strategy, development, and deployment [8].

2.2.5. CI/CD Tools

CI/CD tools refers to applications and third-party solutions that are involved in this
research. This proposed solution uses the platform, Gitlab, where the pipelines are built,
developed, and generated. Also, this solution is written in Bash scripts, plain text files
containing a series of commands that are normally typed in the command line [19].
GitLab is a complete DevOps platform that brings development, operations, and
security teams into a single application. GitLab helps teams accelerate software delivery
from weeks to minutes, while reducing development costs and security risks. The items
described below constitute some of the tools provided by Gitlab and enable this solution to
be easily integrated and available for any project or company [23].

Version Control and Repository

Version control, also known as source control, is the practice of tracking and managing
changes to software code. Version control systems are software tools in which developers
manage changes to source code over time. The most used and popular version control-
ling system with CI/CD approaches is Git. A repository is a central place in which an
aggregation of data is kept and maintained in an organized way, usually in computer
storage. Semantic Versioning is a widely adopted version scheme; it uses a three-part
version number (Major. Minor. Patch), an optional pre-release tag, and an optional build
meta tag [24].
Sensors 2022, 22, 4637 5 of 18

Build Tools
For the Continuous Integration part, also termed the building part, this proposed
solution uses Docker [25], the containerization technology, and Kaniko [26,27].
Typically, if a developer creates a Docker environment [28], the workflow is convoluted
and most of the time relies on a trial-and-error process. Editing a specification (e.g., a
Docker file), building it into an image, instantiating the image in a container, understanding
whether it works as expected or not, identifying the cause(s) of a fault, and returning to the
first step to improve the specification are all steps in creating a Docker container. However,
Docker provides features such as caching, customizing, scaling, and security, and works
cross-platform. Another advantage of Docker, as shown by Bhimani et al. [29], is that by
using specialized controls, it is possible to decide on several Docker containers that can
run concurrently to reduce the overall execution time and avoid interruptions to work
tasks. Kaniko is a tool to build container images from a Docker file, inside a container or
Kubernetes cluster. Practically, this step prepares, wraps, and pushes the application to go
to the next step [30,31].

Automation Tests
Test automation orchestration includes unit, functional, and performance test phases.
The continuous testing approach has the benefit of a stable code base, faster response,
and easy decision-making. Automation tests are an optional feature in the proposed
solution [32].

Deployment Tools
For the Continuous Delivery and Deployment part, this solution uses Kubernetes,
and more precisely, Helm [33]. Kubernetes is an open-source system for automating
the deployment, scaling, and management of containerized applications. Helm is the
first application package manager running atop Kubernetes [34]. It allows describing of
the application structure through convenient helm-charts and managing it with simple
commands.

3. Proposed Solution Architecture

Sensors 2022, 22, x FOR PEER REVIEW 6 of 21
In Figure 1, is pictured the simple UML Diagram of the proposed solution, with the
main steps of the pipeline.

Figure 1.
Figure UML Diagram
1. UML Diagram of
of the
the proposed
proposed solution.

Figure 2 offers a better and more detailed overview of the UML Diagram of the
pipeline generator and Table 1 presents the supported flows.

Table 1. Proposed solution necessary steps.

Nr.crt. Step Observation

Sensors 2022, 22, 4637 6 of 18

Sensors 2022, 22, x FOR PEER REVIEW 7 of 21

Figure 2 offers a better and more detailed overview of the UML Diagram of the pipeline
generator and Table 1 presents the supported flows.

Figure 2.
Figure 2. Extended
Extended UML
UML Diagram of the
Diagram of the proposed
proposed solution.
solution.

The following presents the entire proposed solution flows, by describing and
explaining them individually and comprehensively. The proposed application is written
in Bash scripting language, by one script per flow.
Sensors 2022, 22, 4637 7 of 18

Table 1. Proposed solution necessary steps.

Nr.crt. Step Observation

• It discovers build and deployment files
1 (Re)generate pipeline
in the git repositories
Create Amazon (AMW) Elastic
2
Container Repository (ECR)
• Used for App code
3 Versioning with annotated git tags
• Used for Helm code
• Docker build
4 Containerization with Docker • Docker push
• Promote a Docker image
• Helm Chart Template
• Helm lint
5 Deployment with Helm • App version update in Helm’s
Chart.yaml file
• Helm upgrade

The following presents the entire proposed solution flows, by describing and explain-
ing them individually and comprehensively. The proposed application is written in Bash
scripting language, by one script per flow.

3.1. Pipeline Generator

The pipeline generator discovers build and deployment files in the git repositories
and automatically creates pipeline jobs to execute them. To ensure that pipelines that
inherit the CI/CD templates are always up to date, the pipeline will auto-regenerate on
merge requests.
The generator creates an extra job that executes the regenerate pipeline script:
• the pipeline configuration files (i.e., .gitlab-ci.yml and the files from the .ci/ folder) are
regenerated with the latest stable templates;
• if there are changes, the pipeline configuration files are pushed back to the remote
HEAD, and the current pipeline is forced to terminate.
A new pipeline is triggered each time the pipeline configuration file is changed, but
only for Merge Requests. Any changes made to the .gitlab-ci.yml or files from the .ci/
folder other than those from the pipeline generator are ephemeral. Every time a Merge
Request pipeline has been executed any changes to it will be lost. The only exception is
the .ci/custom.yml file, which can contain any custom jobs, and which is persistent between
pipeline regeneration.
The pipeline generator has two ways to regenerate: one if it is used with the default
template jobs and the if it is used with custom jobs. The default jobs are basically jobs
that are executed on most of the git repositories: code versioning, creating an AWS ECR
repository, building Docker images, and deploying Helm charts on Kubernetes. These
types of jobs are the basis of any pipeline and provide a centralized way to version, build,
and deploy the code. While projects have much in common, there are still actions that are
specific to each environment. Some projects may require uploading a file to an AWS S3
bucket, while others may need to run an extended test suite. To ensure the flexibility of this
framework, the ability to extend the default pipeline was added. To include custom jobs in
the pipeline, the need to add them to a file called .ci/custom.yml arises.
A code snippet from the Bash script used for regenerating the pipeline is depicted in
the following figure (Figure 3):
Sensors 2022, 22, 4637 8 of 18
Sensors 2022, 22, x FOR PEER REVIEW 9 of 21

Figure 3. Pipeline generator code snippet.

Figure 3. Pipeline generator code snippet.
3.2. Versioning
3.2. Versioning
This flow is performed first and is triggered when a git commit is merged into the
This flow is performed first and is triggered when a git commit is merged into the
master: the pipeline creates a lock for versioning so that other pipelines will not start until
master: the pipeline creates a lock for versioning so that other pipelines will not start until
versioning is complete. If the commit contains deployable code changes, the commit is
versioning
marked asisa complete. If the commit
release candidate, then thecontains deployable
pipeline versioning code
lock changes,Further,
is released. the commit
the is
marked
test suites are executed, and if all the tests have passed, then the commit is marked as a the
as a release candidate, then the pipeline versioning lock is released. Further,
test suites
stable are executed,
release. and if all the
Figure 4 exemplifies the tests
entirehave
flow,passed, then 5the
while Figure commitaiscode
represents marked
block as a
stable
Sensors 2022, 22, x FOR PEER REVIEW fromrelease. FigureBash
the versioning 4 exemplifies
script. the entire flow, while Figure 5 10represents
of 21 a code block
from the versioning Bash script.

Figure
Figure 4. 4.
Versioning flow described.
Versioning flow described.
Sensors 2022, 22, 4637 9 of 18

Figure 4. Versioning flow described.

Figure 5. Versioning code block.

Figure 5. Versioning code block.

3.3. Build
3.3.
In the
In the following,
following, the the CI
CI principles
principles in in just
just one
one pipeline
pipeline are
are detailed.
detailed. If there are any any
buildable
buildable code changes, the pipeline triggers a job that builds an image from the
that builds an image from the Docker Docker
file, and
file, and the
the build
build context
context as as the
the root
root of of the
the project.
project. The
The image
image isis tagged
tagged with
with two
two tags:
tags: aa
stable tag
stable tag (the
(the prefix—e.g.,
prefix—e.g., rc—and
rc—and the the branch
branch name—e.g.,
name—e.g., rc-master),
rc-master), and aa unique
unique tag
tag
(the prefix—e.g.,
(the prefix—e.g., rc—and
rc—and the the branch
branch name and the commit hash—e.g., hash—e.g., rc-master-adc11dad).
rc-master-adc11dad).
The image
The image labels
labels are
are updated
updated in in this
this way:
way: thethe generic
generic labels
labels are
are appended
appended to to the
the image
image
labels and,
labels and, afterward,
afterward, the the image
image is is published
published to to the Container
Container Repository:
Repository: the AWS AWS Elastic
Elastic
Container
Container Registry.
Registry. This flow expects to have one or or more
more Docker
Docker files
files in
in the
the repository
repository
and
and will
will do
do the
the same
same steps
steps for
for all
all of
of them.
them.
An
An image
image is is promoted
promoted only only on on the
the master
master branch
branch when
when there
there are
are deployable
deployable code
code
changes,
changes, by by adding
adding thethe semantic
semantic version
version tagstags to
to the
the latest
latest image
image built
built on
on this
this branch
branch and
and
pushing
pushing the the image
image toto the
the Container
Container Repository,
Repository,which whichcancanbebefrom
fromdifferent
differentproviders.
providers.
In Figures 6 and 7, below, an entire build step with its dependencies is exemplified.
The first figure (Figure 6) is a pipeline diagram provided by GitLab, which describes more
clearly the processes that are part of the pipeline. Figure 7 shows an alternative way of
describing the pipeline by also showing the jobs’ dependencies.
Figure 8 depicts one function that is part of the build Bash script which completes the
CI part of this solution.
In this subsection, another feature regarding Docker images is detailed, specifically,
the Docker caching layers. Docker images are made of numerous layers, each one of which
contains a set of instructions and actions defined in the Dockerfile. Layers permit Docker
to isolate a large task into smaller ones, to such an extent that when a piece of the code or
program is changed, only the corresponding layer of the modification should be changed.
The proposed solution is very focused on caching all the layers in order to improve the
speed of the build pipeline and searching for the particularly uncached layers to cache
them. Figure 9 contains a detailed view of how Docker caching works and provides related
time datasets, used to build the same image, first without cache and second with cache.
 Sensors 2022, 22, x FOR PEER REVIEW 11 of 21
The first figure (Figure 6) is a pipeline diagram provided by GitLab, which describes more
clearly the processes that are part of the pipeline. Figure 7 shows an alternative way of
describing the pipeline
In Figures 6 and 7,by also an
below, showing the jobs’
entire build dependencies.
step with its dependencies is exemplified.
The first figure (Figure 6) is a pipeline diagram provided by GitLab, which describes more
Sensors 2022, 22, 4637 10 of 18
clearly the processes that are part of the pipeline. Figure 7 shows an alternative way of
describing the pipeline by also showing the jobs’ dependencies.

Figure 6. Pipeline diagram flow.

Figure
Figure 6. Pipelinediagram
6. Pipeline diagramflow.
flow.

Figure 7. The pipeline diagram flow dependencies.

Figure 8 depicts one function that is part of the build Bash script which completes the
Figure 7. The
CI part
Figure 7. of
Thepipeline
this diagram
diagram flow
solution.
pipeline dependencies.
flow dependencies.

3.4.Figure
Deploy8 depicts one function that is part of the build Bash script which completes the
CI partThis subsection
of this covers the CD principles in one pipeline. It verifies whether there are
solution.
any object definitions or values files. The deployment pipeline is automatically triggered if
it detects any such files. This pipeline contains the linting step, which is executed to test the
chart with a specific values file, and contains the version update step, which updates the
application and chart versions in Chart.yaml file.
If the deployment step fails, a rollback job is triggered to bring the application back to
the stable variant.
This solution can be easily adapted to any type of preference or any type of customiza-
tion. It is easy to use it because the developed code can be easily integrated with multiple
third parties.
Figure 10 represents a diagram flow, presenting the entire automated pipeline which
was described in this section.
The helm installation/upgrade process encapsulated in the deploy pipeline of the
proposed solution can be easily observed in Figure 11.
Sensors 2022, 22, 4637 11 of 18
Sensors 2022, 22, x FOR PEER REVIEW 12 of 21

Sensors 2022, 22, x FOR PEER REVIEW
Figure 8. Build image function.
Figure 8. Build image function. 13 of 21
In this subsection, another feature regarding Docker images is detailed, specifically,
the Docker caching layers. Docker images are made of numerous layers, each one of which
contains a set of instructions and actions defined in the Dockerfile. Layers permit Docker
to isolate a large task into smaller ones, to such an extent that when a piece of the code or
program is changed, only the corresponding layer of the modification should be changed.
The proposed solution is very focused on caching all the layers in order to improve the
speed of the build pipeline and searching for the particularly uncached layers to cache
them. Figure 9 contains a detailed view of how Docker caching works and provides
related time datasets, used to build the same image, first without cache and second with
cache.

Figure 9. Docker-cached layers dataset.

Figure 9. Docker-cached layers dataset.
3.4. Deploy
This subsection covers the CD principles in one pipeline. It verifies whether there are
any object definitions or values files. The deployment pipeline is automatically triggered
if it detects any such files. This pipeline contains the linting step, which is executed to test
the chart with a specific values file, and contains the version update step, which updates
Sensors 2022, 22, 4637 12 of 18
Sensors 2022, 22, x FOR PEER REVIEW 14 of 21

Sensors 2022, 22, x FOR PEER REVIEW 15 of 21

Figure 10. An overall Figure 10. Ansolution
proposed overall proposed solution
flowchart flowchart diagram.
diagram.
The helm installation/upgrade process encapsulated in the deploy pipeline of the
proposed solution can be easily observed in Figure 11.

Figure 11. Helm installation/upgrade process.

Figure 11. Helm installation/upgrade process.

4. Application Effect Analysis and Experimental Results

4.1. Application Effect Analysis
Firstly, the implementation of this solution to a project that would, otherwise, build
manually its pipelines has a great impact on time-consuming deliverability, because all
the steps of a complete pipeline are generated immediately and automatically, deploying
Sensors 2022, 22, 4637 13 of 18

4. Application Effect Analysis and Experimental Results

4.1. Application Effect Analysis
Firstly, the implementation of this solution to a project that would, otherwise, build
manually its pipelines has a great impact on time-consuming deliverability, because all the
steps of a complete pipeline are generated immediately and automatically, deploying an
application from scratch in 10 min [35].
Secondly, the pipelines are well structured and written so that code duplication would
be minimal across repositories; this means that each pipeline is unique and minimal, with
nothing unused or added.
Thirdly, it reduces the financial costs because the developers and infrastructure engi-
neers (DevOps) can focus only on their day-to-day, development and optimization tasks;
they do not need to be involved in creating, managing, repairing, or monitoring the
pipelines [36].
Fourthly, decreasing the ambiguity regarding the CI/CD principles creates more
standardization and quality at the processes level in a project or company.
At the same time, the continuous integration deployment system is used to standard-
ize the information system of the continuous integration release process, which greatly
improves the recovery efficiency and effectively reduces the number of people involved
in the development, as well as the time for personnel intervention. Moreover, the de-
velopment team relieves the operating pressure, and the operation mode changes from
large-scale management to refined and intensive management [37]. Management transfor-
mation improves the comprehensive quality of information systems [36]. The professional
ability of operation and maintenance personnel has improved. The technology-driven
transformation of operation and maintenance management has achieved great success.
Data and practice show that the introduction of the continuous integration delivery system
gradually improved the reconstruction and development of the operation and maintenance
system [38].

4.2. Experimental Results

This section describes and presents the results obtained using the proposed solution
in every step of the pipeline. The GitLab runners are the abstract objects responsible for
executing one or more pipeline jobs. These runners are hosted in a Kubernetes environment
built on the Elastic Kubernetes Service (EKS) in Amazon Web Services (AWS).
The first conclusion one can draw on the obtained result is that the runners are reusable
and run-on SPOT instances, which represent AWS’s excess capacity, meaning that the price
of those instances are very low compared with on-demand prices. This proposed solution
feature manages to save around 80% of the computed costs on each triggered pipeline.
Another point worth mentioning is the advantage that comes from the proposed solu-
tion, and which is related to the build step of the pipeline. Docker-cache-layer integration
is a convenient way of speeding up the build process and transfers less data by reusing
existing layers when possible. This means that each subsequent build will be cached and
the next time a full build step is triggered, it will automatically use the cached layers. This
entire process boost the pipeline’ duration, thereby the costs are minimized and the impact
on the productivity side is tweaked.
The experimental results come from the comparison of three pipeline types: the first
was automated and managed through this proposed solution; the second was undertaken
manually, with each step being run separately and individually; and the third was imple-
mented through the Gitlab CI/CD solution, which does not have all the features of the
proposed solution, but in which the pipelines are triggered automatically. This comparison
was made to show the impact of the solution in an organization which undertakes the
CI/CD processes manually, or in an organization that has started using the automation of
CI/CD pipelines but is missing some important features.
 The experimental results come from the comparison of three pipeline types: the first
was automated and managed through this proposed solution; the second was undertaken
manually, with each step being run separately and individually; and the third was
implemented through the Gitlab CI/CD solution, which does not have all the features of
Sensors 2022, 22, 4637
the proposed solution, but in which the pipelines are triggered automatically.14This of 18
comparison was made to show the impact of the solution in an organization which
undertakes the CI/CD processes manually, or in an organization that has started using the
automation of CI/CD pipelines but is missing some important features.
Asone
As one can
can observe
observeinin Figure
Figure 12,
12, the
the duration
duration of
of jobs
jobs from
from the
the exemplified
exemplified pipeline
pipeline
described in Figures 6 and 7 is listed. It shows that the entire pipeline
described in Figures 6 and 7 is listed. It shows that the entire pipeline takes 157takes 157 ss to
to
complete 16 jobs (6 Docker builds, 6 Docker promote, and 4 versioning jobs).
complete 16 jobs (6 Docker builds, 6 Docker promote, and 4 versioning jobs).

Sensors 2022, 22, x FOR PEER REVIEW 17 of 21

Figure
Figure12.
12.Pipeline
Pipelinesteps
stepsand
andduration.
duration.
The jobs were also triggered manually, without the integration of the proposed
The jobs were also triggered manually, without the integration of the proposed solution
solution and it took around 180 s per each job. We have to specify that in this experiment
and it took around 180 s per each job. We have to specify that in this experiment the time
the time consumption of triggering the jobs were not considered. If one wants to take this
consumption of triggering the jobs were not considered. If one wants to take this time into
time into consideration, than the time execution of the the manual jobs is around 2880 s.
consideration, than the time execution of the the manual jobs is around 2880 s. The Gitlab
The Gitlab CI/CD solution also automatically triggered the above jobs, but not having the
CI/CD solution
caching layer and also
notautomatically triggered
having the relations the above
between steps,jobs, but notthe
it increased having
time the
and caching
the
layer and
costs. Fornot
thehaving the relations
third pipeline type, itbetween
took aroundsteps,
100itsincreased thewith
per each job, timeaand
totalthe costs. For
duration
the
of third
1600 pipeline
s. Figuretype, it took around
13 demonstrates the 100 s per each
difference job, between
in time with a total
the duration
three typesof 1600
of s.
Figure 13 demonstrates the difference in time between the three types of pipelines.
pipelines.

13.Pipeline
Figure13.
Figure Pipelinetype
type time differencein
time difference inseconds.
seconds.

The following short discussion resulting from the comparison is related with the
costs for running the pipelines. With the proposed solution, the costs are as minimal as
they can be, because the instances used are spot and the applications (runners) which are
running the pipeline jobs, are reusable and configured in such a way as to run multiple
Sensors 2022, 22, 4637 15 of 18

The following short discussion resulting from the comparison is related with the costs
for running the pipelines. With the proposed solution, the costs are as minimal as they can
be, because the instances used are spot and the applications (runners) which are running
the pipeline jobs, are reusable and configured in such a way as to run multiple jobs in
parallel. Taken together, these can help organizations save around 80–85% of their CI/CD
infrastructure costs, compared with the manual pipeline. The third type of pipeline is also
able to run jobs in parallel, but it is not able to run on spot instances, meaning that the
saving percentage is much less—around 10–15%—than that of the proposed solution.
Sensors 2022, 22, x FOR PEER REVIEW The
18 of 21
results of this comparison are shown in Figure 14, where the same class of instance, with
the same CPU and RAM, was used.

Figure14.
Figure 14.Pipeline
Pipeline type
type infrastructure
infrastructure costs.
costs.

Thefinal
The finalresult
resultthat
thatadds
adds value
value to to
thisthis proposed
proposed solution
solution is deployment
is the the deployment step,step,
which
iswhich is implemented
implemented via Helm. viaThis
Helm. This improves
improves the duration
the duration of the automated
of the automated pipelinepipeline
because it
because
acts like aitwrapper
acts like aand
wrapper
removesandtheremoves the microservices
microservices complexity complexity that isbyadded
that is added by
managing
managing configuration and manifest files. It provides the ability to
configuration and manifest files. It provides the ability to leverage Kubernetes packages leverage Kubernetes
packagesa single
through throughcommand,
a single offers
command, offers tothe
the ability ability toapplication
customize customize configurations
application
configurations during the deployment step, and automatically maintains
during the deployment step, and automatically maintains a database of all the versions a database of all of
the versions of deployments, so, rolling back to the previous version
deployments, so, rolling back to the previous version is easy and quick. Taking all these is easy and quick.
Taking
into all these into
consideration, theconsideration,
deployment the stepdeployment stepand
is safe, secure, is safe,
fast.secure, and fast.
The previous section detailed parts of the Docker-cached
The previous section detailed parts of the Docker-cached layers layers which
which areare linked
linked with
with the build step that is part of the continuous integration pipeline;
the build step that is part of the continuous integration pipeline; the results of an entire the results of an
entire
flow offlow of this proposed
this proposed solutionsolution are, therefore,
are, therefore, depicted
depicted next. next.
These results are based on the hardware implementation
These results are based on the hardware implementation that that this
this solution
solution requires
requires to
to demonstrate its advantages. The entire solution was deployed onto the Elastic
demonstrate its advantages. The entire solution was deployed onto the Elastic Kubernetes
Kubernetes Services platform, which is a service provided by Amazon Web Services, on
Services platform, which is a service provided by Amazon Web Services, on cloud instances
cloud instances (EC2). Once the integration was achieved, an entire pipeline of the
(EC2). Once the integration was achieved, an entire pipeline of the developed solution
developed solution was triggered in order to deploy a three pods RabbitMQ Helm Chart:
was triggered in order to deploy a three pods RabbitMQ Helm Chart: one main and two
one main and two workers. This process took around 10 min because once the pipeline
workers. This process took around 10 min because once the pipeline started, the virtual
started, the virtual machines needed to be assigned to the Kubernetes cluster. After this,
machines needed to be assigned to the Kubernetes cluster. After this, the runners started
the runners started executing the instructions defined in the pipeline manifests and
executing the instructions defined in the pipeline manifests and finished the steps with
finished the steps with a highly available and scalable RabbitMQ cluster. Figure 15 depicts
the pods deployed on EC2 instances, each being deployed on a separate instance to avoid
the probability of interruptions.
 These results are based on the hardware implementation that this solution requires
to demonstrate its advantages. The entire solution was deployed onto the Elastic
Kubernetes Services platform, which is a service provided by Amazon Web Services, on
cloud instances (EC2). Once the integration was achieved, an entire pipeline of the
developed solution was triggered in order to deploy a three pods RabbitMQ Helm Chart:
Sensors 2022, 22, 4637 16 of 18
one main and two workers. This process took around 10 min because once the pipeline
started, the virtual machines needed to be assigned to the Kubernetes cluster. After this,
the runners started executing the instructions defined in the pipeline manifests and
a highly
finishedavailable and ascalable
the steps with RabbitMQ
highly available andcluster.
scalable Figure 15 depicts
RabbitMQ the pods
cluster. Figure deployed
15 depicts
onthe
EC2 instances,
pods deployedeach being
on EC2 deployed
instances, onbeing
each a separate
deployedinstance to avoid
on a separate the probability
instance to avoid of
the probability of interruptions.
interruptions.

Figure
Figure 15.15.RabbitMQ
RabbitMQdeployed
deployed with
with the
the proposed
proposedsolution.
solution.

5. Conclusions
Continuous integration systems help project members focus various resources on key
issues, thereby reducing development time and improving software quality. The devel-
opment team can spend more resources on software design; the double integration work
is undertaken by machine. Continuous rapid feedback enables testers to be adequately
tested. The continuous integration delivery system is a breakthrough for automated opera-
tion and maintenance. It helps to improve the maturity of software projects, implement
continuous improvement of lean processes, promote the improvement of software service
levels, and promote high-quality development of software systems through operation and
maintenance mechanisms.
This paper presents a complex and automated pipeline generator with CI/CD princi-
ples for the deployment of multiple types of applications. The solution is based on Agile
practices, which are responsible for the automatic integration, testing, and delivery of
features for applications.
The proposed solution serves as a baseline for common CI/CD tasks and encapsulates
the following specifics: all code must be versioned by semantic versioning standards; builds
are created automatically by using Docker and the Docker layers are cached for later reuse;
most deliverables are submitted to the Docker Container Registry; and most deliverables
are deployed to a Kubernetes cluster via Helm. These practices ensure high availability
with no downtime, fast and easy scalability, rolling back automatically to a stable version,
scanning vulnerabilities in Docker, detecting any change in the application source code,
and triggering an entire chain of actions and events based on what has been changed. If
there are changes on the infrastructure manifests, but not on the application code, the
process of building and testing pipelines will not be triggered, thereby the same artifacts’
“pollution” is bring down. This feature, even if the same artifacts has disctinct tag, leads to
higher speed on pipeline duration.

Discussion, Limitations and Future Work

Continuous integration and continuous deployment increased the speed of delivering
new features and implementations into applications and radically changed the approach
on how entities or businesses release and upgrade their products online [31]. With the
power of cloud platforms, those integrations are built and released quite easily without
downtimes and bottlenecks [39], which places this solution in the column of tools with few
limitations on their side [40].
Given that this proposed solution was written in Bash scripts, the first improvement
could be to rewrite it in Golang [41], because this would turn it into a cross-platform
solution [42]. Also, Golang would accelerate the compilation and developments steps [43].
Another future work would be to have the ability to build and deploy applications on
multiple platforms, e.g., Windows, Arm. This feature would cover the user’s needs from a
platform perspective. Basically, by deploying the same solution across many public and
private clouds, an algorithm (controller) that determines the optimum cloud to run the
application on in terms of latency could be developed.
This proposed solution has some future research challenges as it distinguished the
difficulties that might occur because of CI/CD/CDD practices. One challenge is related
to how organizations will implement the continuous practices, and how context, percep-
tion, and limitations might impact CI/CD/CDD practice implementation. For instance,
Sensors 2022, 22, 4637 17 of 18

organizational context impacts how they do or do not maintain a repository. In spite of

the fact that some of the organizations may want to suppress merge conflicts, there are
other drivers that influence their decision in this regard. How each organization enables
testing also varies, depending on testing impact on build times and a need to do manual
or automation testing. Similarly, maintaining a fast build may seem like an ideal goal,
but it is not always possible. In conclusion, automated deployment may be influenced by
security needs and deployment privileges because organizations perceive security to be
more important than frequent deployment.

Author Contributions: Conceptualization, I.-C.D. and O.P.S.; methodology, I.-C.D. and O.P.S.; soft-
ware, I.-C.D.; validation, D.G. and M.M.; formal analysis, I.-C.D., O.P.S. and L.M.; investigation,
I.-C.D.; resources, I.-C.D., D.G. and L.M.; writing—original draft preparation, I.-C.D. and O.P.S.;
writing—review and editing, I.-C.D., O.P.S., M.M., D.G. and L.M; visualization, D.G. and M.M.; super-
vision, O.P.S. and L.M. All authors have read and agreed to the published version of the manuscript.
Funding: This research received no external funding.
Institutional Review Board Statement: Not applicable.
Informed Consent Statement: Not applicable.
Conflicts of Interest: The authors declare no conflict of interest.

References
1. Fogelstrom, N.D.; Gorschek, T.; Svahnberg, M.; Olsson, P. The impact of agile principles on market-driven software product
development. J. Softw. Maint. Evol. Res. Pract. 2010, 22, 53–80. [CrossRef]
2. Weaveworks. Building Continuous Delivery Pipelines. Available online: https://www.weave.works/assets/images/blta80840
30436bce24/CICD_eBook_Web.pdf (accessed on 10 January 2022).
3. Moreira, M. The Agile Enterprise: Building and Running Agile Organizations, 1st ed.; Apress: Berkeley, CA, USA, 2017.
4. Singh, S.; Sharma, R.M. Handbook of Research on the IoT, Cloud Computing, and Wireless Network Optimization (Advances in Wireless
Technologies and Telecommunication), 1st ed.; IGI Global Hershey: Pennsylvania, PA, USA, 2019.
5. Losana, P.; Castro, J.W.; Ferre, X.; Villalba-Mora, E.; Acuña, S.T. A Systematic Mapping Study on Integration Proposals of the
Personas Technique in Agile Methodologies. Sensors 2021, 21, 6298. [CrossRef] [PubMed]
6. Fitzgerald, B.; Stol, K.-J. Continuous Software Engineering: A Roadmap and Agenda. J. Syst. Softw. 2017, 123, 176–189. [CrossRef]
7. Awscloud. A Roadmap to Continuous Delivery Pipeline Maturity. Available online: https://pages.awscloud.com/rs/112-TZM-
766/images/A-Roadmap-to-Continuous-Delivery-Pipeline-Maturity-dev-whitepaper.pdf (accessed on 14 January 2022).
8. Arachchi, S.A.I.B.S.; Perera, I. Continuous Integration and Continuous Delivery Pipeline Automation for Agile Software Project
Management. In Proceedings of the 2018 Moratuwa Engineering Research Conference (MERCon), Moratuwa, Sri Lanka, 30
May–1 June 2018.
9. Ramadoni; Utami, E.; Fatta, H.A. Analysis on the Use of Declarative and Pull-based Deployment Models on GitOps Using
Argo CD. In Proceedings of the 2021 4th International Conference on Information and Communications Technology (ICOIACT),
Yogyakarta, Indonesia, 30–31 August 2021.
10. Beetz, F.; Harrer, S. GitOps: The Evolution of DevOps? IEEE Softw. 2021. [CrossRef]
11. Leite, L.; Rocha, C.; Kon, F.; Milojicic, D.; Meirelles, P. A survey of DevOps concepts and challenges. ACM Comput. Surv. 2019, 52,
1–35. [CrossRef]
12. Shahin, M.; Babar, M.A.; Zhu, L. Continuous Integration Delivery and Deployment: A Systematic Review on Approaches, Tools,
Challenges and Practices. IEEE Access 2017, 5, 3909–3943. [CrossRef]
13. Flux. Flux Documentation. Available online: https://fluxcd.io/docs/ (accessed on 8 May 2021).
14. Yiran, W.; Tongyang, Z.; Yidong, G. Design and Implementation of Continuous Integration scheme Based on Jenkins and Ansible.
In Proceedings of the 2018 International Conference on Artificial Intelligence and Big Data (ICAIBD), Chengdu, China, 26–28
May 2018.
15. Dusica, M.; Arnaud, G.; Marius, L. A Learning Algorithm for Optimizing Continuous Integration Development and Testing
Practice. Softw. Pract. Exp. 2019, 49, 192–213.
16. Zeller, M. Towards Continuous Safety Assessment in Context of DevOps. Comput. Saf. Reliab. Secur. 2021, 12853, 145–157.
17. Maryam, S.; Javdani, G.T.; Rasool, S. Quality Aspects of Continuous Delivery in Practice. Int. J. Adv. Comput. Sci. Appl. 2018, 9,
210–212.
18. Górski, T. Continuous Delivery of Blockchain Distributed Applications. Sensors 2022, 22, 128. [CrossRef]
19. Haibin, D.; Jun, C.; Kai, L. Design and Implementation of DevOps System Based on Docker. Command Inf. Syst. Technol. 2017, 8,
87–92.
Sensors 2022, 22, 4637 18 of 18

20. Liu, D.; Zhao, L. The Research and Implementation of Cloud Computing Platform Based on Docker. In Proceedings of the 11th
International Computer Conference on Wavelet Actiev Media Technology and Information Processing (ICCWAMTIP), Chengdu,
China, 19–21 December 2014.
21. Xia, C.; Zhang, Y.; Wang, L.; Coleman, S.; Liu, Y. Microservice-based cloud robotics system for intelligent space. Robot. Auton.
Syst. 2018, 110, 139–150. [CrossRef]
22. Górski, T. Towards Continuous Deployment for Blockchain. Appl. Sci. 2021, 11, 11745. [CrossRef]
23. Chacon, S.; Straub, B. Pro Git, 2nd ed.; Apress: Berkeley, CA, USA, 2014.
24. Zolkifli, N.N.; Ngah, A.; Deraman, A. Version Control System: A Review. Procedia Comput. Sci. 2018, 135, 408–415. [CrossRef]
25. Burns, B.; Grant, B.; Oppenheimer, D.; Brewer, E.; Wilkes, J. Borg, omega and kubernetes. Commun. ACM 2016, 14, 70–93.
26. Gitlab Inc. Build with Kaniko. Available online: https://docs.gitlab.com/ee/ci/docker/using_kaniko.html (accessed on 12
March 2022).
27. Jamal, M.; Joel, C. A Kubernetes CI/CD Pipeline with Asylo as a Trusted Execution Environment Abstraction Framework. In
Proceedings of the 2021 IEEE 11th Annual Computing and Communication Workshop and Conference (CCWC), Las Vegas, NV,
USA, 27–30 January 2021.
28. Reis, D.; Piedade, B.; Correia, F.F.; Dias, J.P.; Aguiar, A. Developing Docker and Docker-Compose Specifications: A Developers’
Survey. IEEE Access 2022, 10, 2318–2329. [CrossRef]
29. Bhimani, J.; Yang, Z.; Mi, N.; Yang, J.; Xu, Q.; Awasthi, M.; Pandurangan, R.; Balakrishnan, V. Docker Container Scheduler for I/O
Intensive Applications Running on NVMe SSDs. IEEE Trans. Multi-Scale Comput. Syst. 2018, 4, 313–326. [CrossRef]
30. Packard, M.; Stubbs, J.; Drake, J.; Garcia, C. Real-World, Self-Hosted Kubernetes Experience. In Proceedings of the Practice and
Experience in Advanced Research Computing (PEARC 2021), Boston, MA, USA, 18–22 July 2021.
31. Karamitsos, I.; Albarhami, S.; Apostolopoulos, C. Applying DevOps Practices of Continuous Automation for Machine Learning.
Information 2020, 11, 363. [CrossRef]
32. Zhou, Y.; Ou, Z.; Li, J. Automated Deployment of Continuous Integration Based on Jenkins. Comput. Digit. Eng. 2016, 44, 267–270.
33. Buchanan, S.; Rangama, J.; Bellavance, N. Helm Charts for Azure Kubernetes Service. In Introducing Azure Kubernetes Service;
Apress: Berkeley, CA, USA, 2019.
34. Fedak, V. What is Helm and Why You Should Love It? 2018. Available online: https://hackernoon.com/what-is-helm-and-why-
you-should-love-it-74bf3d0aafc (accessed on 14 March 2022).
35. Savor, T.; Douglas, M.; Gentili, M.; Williams, L.; Beck, K.; Stumm, M. Continuous Deployment at Facebook and Oanda. In
Proceedings of the 2016 IEEE/ACM 38th International Conference on Software Engineering Companion (ICSE-C), Austin, TX,
USA, 14–22 May 2016.
36. Humble, J.; Farley, D. Continuous Delivery: Reliable Software Releases through Build, Test, and Deployment Automation, 1st ed.;
Addison-Wesley Professional: Boston, MA, USA, 2010.
37. Chen, L. Continuous Delivery: Huge Benefits. but Challanges Too. IEEE Softw. 2015, 32, 50–54. [CrossRef]
38. Pulkkinen, V. Continuous Deployment of Software: Proceedings of the the seminar No. 58312107; Cloud-Based Software Engineering:
Helsinki, Finland, 2013.
39. Shahin, M.; Zahedi, M.; Babar, M.A.; Zhu, L. An empirical study of architecting for continuous delivery and deployment. Empir.
Softw. Eng. 2019, 24, 1061–1108. [CrossRef]
40. Rahman, A.A.U.; Helms, E.; Williams, L.; Parnin, C. Synthesizing continuous deployment practices used in software development.
In Proceedings of the Agile Conference, National Harbor, MD, USA, 3–7 August 2015.
41. Andrawos, M.; Helmich, M. Cloud Native Programming with Golang: Develop Microservice-Based High Performance Web Apps for the
Cloud with Go; Packt Publishing Ltd.: Birmingham, UK, 2017.
42. Whitney, J.; Gifford, C.; Pantoja, M. Distributed execution of communicating sequential process-style concurrency: Golang case
study. J. Supercomput. 2019, 75, 1396–1409. [CrossRef]
43. Yasir, R.M.; Asad, M.; Galib, A.H.; Ganguly, K.K.; Siddik, M.S. GodExpo: An Automated God Structure Detection Tool for Golang.
In Proceedings of the 2019 IEEE/ACM 3rd International Workshop on Refactoring (IWoR), Montreal, QC, Canada, 28 May 2019;
pp. 47–50.