Roadie customers are not affected by Backstage’s RCE vulnerability
Last week, the Oxeye research team published a report of a vulnerability found in Backstage caused by an outdated vm2 third-party library. Roadie customers are unaffected by this vulnerability because their instances are upgraded regularly (currently at v1.8) and due to extra security measures in the Scaffolder implemented in Roadie from the beginning.
Backstage consolidating its role in the Cloud native ecosystem
At the moment, Thoughtworks, Red Hat, Gartner, VMWare, and the Linux Foundation endorse Backstage as a viable solution for improving the developer experience of growing engineering teams through a Developer Portal.
Wrap up: BackstageCon and KubeCon NA 2022
Backstage made its way to the center stage last week in Detroit, as maintainers, contributors, and adopters deepened their relationship and shared their excitement about the framework with the wider Cloud Native community.
Roadie now keeps the catalog in sync with your GitHub with the webhooks API!
As a Roadie user, editing a Backstage YAML file in your GitHub repo will result in those changes almost immediately appearing in your Catalog. Our team designed and implemented a GitHub integration based on webhooks to replace the default poll-based discovery shipped in Backstage.
Roadie Has Achieved SOC2 Type 2 Compliance
We have achieved SOC2 Type 2 compliance. We have a set of mature and robust security and availability practices at Roadie and wanted to validate them against industry standards. We see this achievement of SOC2 Type 2 compliance as a milestone in our ever-improving security journey.
The Backstage scaffolder is now generally available on Roadie
When we first launched hosted Backstage, we made the hard decision to disable the scaffolder for security reasons. Today we are launching a re-designed and hardened scaffolder architecture which is safe for Roadie customers to use.
Deploy a GitHub pages website with the Roadie Backstage scaffolder
Learn how to deploy a GitHub pages website from a predefined skeleton. The Backstage Scaffolder will automatically create a GitHub repo, fill it with templated code, call the GitHub API to enable GitHub pages and hook our new website to a monitoring tool.
GitHub Apps - How to avoid leaking your customer’s source code with GitHub apps
How to avoid leaking your customer’s source code with GitHub apps.