Understanding CloudBees Unify features

5 minute read

CloudBees Unify is a cloud-native DevSecOps platform that integrates software delivery, security, and operations across the development lifecycle. This page explains the platform’s core capabilities, architectural foundation, and how integrated features work together to accelerate software delivery while maintaining security and compliance.

Cloud-native architecture foundation

CloudBees Unify builds on an open and integrated architecture using popular open standards and existing open-source cloud-native technologies, including Kubernetes, Tekton, OpenSearch, OAuth, OpenFeature, and Keycloak. This foundation provides several key advantages over proprietary or closed-system approaches.

The open standards foundation enables seamless integration with existing toolchains and reduces vendor lock-in concerns. Organizations can leverage their existing investments in Kubernetes infrastructure, integrate with established authentication systems through OAuth, and benefit from the broad ecosystem of tools that support these standards.

Cloud-native execution through Kubernetes and Tekton provides inherent scalability and resilience. Workloads can scale horizontally based on demand, and the platform can automatically recover from infrastructure failures without requiring manual intervention. This architecture eliminates many of the operational challenges associated with traditional CI/CD systems that require manual capacity planning and infrastructure management.

The integration approach extends beyond technical compatibility to include operational patterns. Because the platform uses standard Kubernetes deployment models, organizations can apply existing cluster management, monitoring, and security practices to their software delivery infrastructure.

Integrated workflow orchestration

CloudBees Unify enables organizations to create CI/CD workflows using CloudBees actions and YAML definitions that run natively on Tekton and Kubernetes. This approach combines the flexibility of code-based workflow definition with the operational benefits of cloud-native execution.

CloudBees actions provide reusable workflow components that encapsulate common software delivery tasks. Rather than requiring teams to implement build, test, and deployment logic from scratch, actions enable standardized approaches to recurring operations while maintaining the flexibility to customize behavior for specific needs.

The visual workflow orchestration tool bridges the gap between code-based definitions and intuitive workflow management. Teams can create and modify complex software delivery pipelines through visual interfaces, while the underlying YAML remains accessible for advanced customization and version control integration.

Native Tekton execution means that workflows inherit Kubernetes' scheduling, resource management, and monitoring capabilities. This integration eliminates the operational overhead of maintaining separate workflow execution infrastructure and provides consistent behavior across different types of workloads.

The orchestration model scales from simple linear workflows to complex multi-stage pipelines with parallel execution, conditional logic, and cross-workflow dependencies. This flexibility supports both straightforward build-test-deploy scenarios and sophisticated delivery patterns that require coordination across multiple teams and environments.

Built-in security and compliance integration

CloudBees Unify includes comprehensive security and compliance checks that span source code, binaries, cloud environments, data, and infrastructure. This integrated approach shifts security left in the development process, making it a natural part of development workflows rather than a separate verification step.

The platform performs security scanning at multiple points in the software delivery lifecycle, from initial code commit through production deployment. This continuous scanning approach identifies vulnerabilities early when they are less expensive and disruptive to address.

Security findings integrate directly with development workflows, enabling teams to address issues within their existing processes rather than requiring separate security remediation workflows. This integration reduces the friction between security requirements and development velocity.

Compliance checks operate automatically as part of workflow execution, ensuring that security and regulatory requirements are validated consistently across all deployments. This automation reduces the manual overhead associated with compliance verification and provides auditable evidence of adherence to organizational policies.

The security integration extends to secrets and credential management, where the platform provides secure storage and distribution of sensitive data required for workflow execution. This centralized approach reduces the risk of credential exposure while maintaining the operational flexibility teams need for complex deployment scenarios.

Configuration and access management

CloudBees Unify provides advanced configuration management that scales from individual users to large, complex organizations through hierarchical configuration and role-based access control (RBAC). This scalability reduces cognitive load on users while enabling platform engineers to maintain appropriate security and governance controls.

The configuration hierarchy allows common settings, policies, and resources to be defined at organizational levels and inherited by child organizations and individual projects. This approach reduces duplicated configuration work and ensures consistency across related teams and projects.

RBAC integration enables platform engineers to manage access control through team-based permissions that align with organizational structure. Rather than managing individual user permissions across multiple resources, administrators can define team roles and assign users to appropriate teams based on their responsibilities.

Secrets and tokens receive special handling through the platform’s secure credential management system. Platform engineers can define and distribute sensitive configuration data through controlled channels that maintain security while enabling teams to access necessary resources for their workflows.

The configuration model adapts to organizational complexity, supporting scenarios from individual developers working on personal projects to enterprise organizations with complex hierarchies, compliance requirements, and integration needs.

Value stream insights and visibility

CloudBees Unify includes built-in value stream dashboards for security, velocity, and value delivery that transform development lifecycle data into actionable insights. The platform ingests data from tools across the software development and deployment lifecycle, creating comprehensive visibility into delivery performance.

Data ingestion works across diverse toolchains, capturing information from source control systems, build tools, testing frameworks, deployment platforms, and monitoring systems. This broad integration provides a unified view of software delivery performance that spans organizational and technical boundaries.

The dashboard system focuses on three key areas that matter most to software delivery effectiveness. Security dashboards highlight vulnerability trends, remediation progress, and compliance status across projects and teams. Velocity dashboards track development throughput, cycle times, and delivery frequency to identify optimization opportunities. Value delivery dashboards connect development activity to business outcomes and user impact.

Actionable insights emerge from the correlation of data across different stages of the software delivery lifecycle. Teams can identify bottlenecks, understand the relationship between security practices and delivery speed, and make informed decisions about process improvements.

This visibility enables data-driven optimization of software delivery processes, helping organizations improve both the efficiency and effectiveness of their development and deployment workflows.

Feature management integration

CloudBees Unify includes feature management capabilities that allow developers and product managers to optimize feature releases and customize user experiences across development, staging, and production environments. This integration connects development workflows directly to production feature control.

Feature flags provide runtime control over feature availability, enabling teams to deploy code without immediately exposing functionality to users. This separation between deployment and release reduces the risk associated with new feature rollouts and enables more sophisticated release strategies.

Cross-environment feature control ensures consistent behavior across different stages of the software delivery pipeline. Teams can validate feature behavior in staging environments using the same flag configurations that will control production releases.

The feature management system integrates with development workflows, enabling automated feature flag updates based on deployment success, testing results, or other workflow outcomes. This automation reduces manual coordination between development and feature release processes.

Feature management also enables experimentation and personalization strategies where different user segments can experience different feature combinations. This capability supports data-driven product development approaches and enables organizations to optimize user experiences based on empirical evidence rather than assumptions.

Now that you understand CloudBees Unify’s integrated feature set, you can: