A current survey of greater than 400 skilled builders worldwide explored their experiences with platform engineering instruments throughout three important domains: workflow automation, software supply, and safety and compliance administration.
The applied sciences featured have been chosen by the Cloud Native Computing Basis and its Finish Consumer Neighborhood primarily based on relevance and significance to the cloud-native panorama. The report charges instruments on usefulness, outlined as how effectively a know-how meets mission necessities, and maturity, which pertains to its stability and reliability. Primarily based on these scores, utilization, and advice chance, the applied sciences are categorized into three teams: Undertake, Trial, and Assess. ‘Undertake’ applied sciences are thought-about dependable for many use circumstances, ‘Trial’ instruments are value exploring for particular wants, and ‘Assess’ applied sciences require cautious analysis earlier than deployment.
This analysis supplies a vital barometer for figuring out which platform engineering instruments are gaining momentum amongst skilled builders and helps determine rising patterns in know-how adoption.
Technology Radar Highlights
The report highlights a number of key applied sciences positioned for adoption by cloud-native groups. In software supply, Helm, Backstage, and kro are positioned within the ‘undertake’ place on the know-how radar. For workflow automation, a bigger group of 5 applied sciences made the ‘undertake’ listing: GitHub Actions, Armada, Buildpacks, Jenkins, and ArgoCD. Lastly, the safety and compliance administration radar identifies Keycloak, Open Coverage Agent (OPA), and cert-manager as ‘undertake’ applied sciences.Workflow Automation: Maturity and Philosophical Suggestions
The workflow automation class reveals a nuanced image of reliability and developer sentiment. Armada obtained the best maturity scores, with 96% of acquainted builders offering a 4- or 5-star score. Nonetheless, each GitHub Actions and the veteran device Jenkins noticed the next proportion of 5-star scores (45% and 47%, respectively). Whereas Armada is seen as a extremely dependable and secure know-how, GitHub Actions and Jenkins—which possess a considerably bigger person base with greater tenure—are exceeding expectations for a larger proportion of their customers. This near-universal excessive score for Armada might recommend self-selection for customers whose wants completely align with its options, but it solidly secures its place as an ‘undertake’ know-how.
By way of suggestions, GitHub Actions is the clear chief, with 91% of builders recommending it, and greater than half (53%) being ‘extremely doubtless’ to suggest it, reflecting a extremely glad developer viewers pushed by robust usefulness and maturity scores. Conversely, Jenkins illustrates a counteracting drive: older instruments could also be seen as much less attention-grabbing. Regardless of excessive maturity scores and broad utilization, its usefulness rating was much less spectacular, which suggests builders might give attention to its weaknesses or gaps in comparison with newer alternate options. This choice for newer instruments can also be mirrored within the excessive advice rating for Crossplane, which performs strongly on maturity however decrease on usefulness. This means that builders are supporting the aspirational growth philosophy of utilizing Kubernetes APIs to deal with every thing, recommending the strategy quite than simply the present capabilities of the device.Software Supply and Provide-Chain Safety Maturity
In software supply, Helm maintains a agency main place in maturity scores (94% 4- or 5-star scores, 49% 5-star). Notably, Helm can also be probably the most broadly adopted know-how amongst software supply instruments (34%), confirming that its maturity is acknowledged throughout a broad developer viewers. The comparatively new device, kro, secured the second-highest maturity score. Its robust efficiency, composed primarily of 4-star evaluations (56%), suggests builders view it as dependable and secure—doubtless attributable to its connection to the Kubernetes mission—however are reserving 5-star scores till it has extra time to determine itself. kro additionally has the best proportion of doubtless suggestions from these conversant in it, at 91%. This excessive degree of advice appears to additional mirror a person base that has a whole lot of hope and pleasure about its future.
For safety and compliance administration, cert-manager leads on maturity with 87% of acquainted builders giving a 4- or 5-star score. This success factors to its efficient implementation strategy as a important but invisible infrastructure element as soon as configured. Nonetheless, instruments important for supply-chain integrity present a broader hesitancy. in-toto ranks final in maturity (55% 4- or 5-stars) however receives no unfavorable scores, as a substitute having a big proportion of 3-star scores (45%). This means a ‘cautious neutrality’ presumably stemming from the deep pipeline integration required, main builders to really feel they lack ample hands-on expertise to completely assess its stability. Sigstore, which supplies infrastructure for instruments like in-toto, additionally obtained a equally low maturity score. Mixed, this means that the tooling on this important safety space should be ready to show itself at scale in builders’ operations.
The report famous that Financial institution-Vaults is the know-how that receives the best proportion of suggestions on this class from these conversant in it, with 98% being both doubtless or extremely prone to suggest it. BankVaults’ excessive advice fee doubtless displays its captive viewers amongst HashiCorp Vault customers, for whom it’s an virtually computerized advice, given how considerably it simplifies an in any other case complicated integration. Keycloak additionally sees a really excessive fee of advice, 95%, amongst these conversant in it. Keycloak has the most important variety of customers among the many respondent builders and is a extra established device, notably for enterprise options, for dealing with id and entry administration each past and inside Kubernetes environments. Given the broad adoption and utility throughout environments, builders are seeing many causes to suggest it to others.
Platform Possession and the AI Workflow Problem
The survey additionally offered insights into organizational constructions for inner platforms. The commonest strategy reported was having a number of groups collaboratively deal with platform capabilities (41%). Relating to managing the rising problem of AI workflows, most organizations are utilizing a hybrid platform strategy (35%).
Nonetheless, the delegation of platform duties creates stark variations in AI adoption technique. For organizations the place a number of groups deal with the platform, a hybrid strategy turns into considerably extra widespread (46%), doubtlessly as a result of a single unified platform possession is missing. In distinction, builders working at organizations with a platform workforce that builds inner customized platforms are the one group most definitely to have prolonged their present platform to assist AI workflows (28% over 25% hybrid). These groups, with full management over their inner platform, are greatest positioned to combine AI capabilities immediately. They’re additionally the least prone to develop a separate devoted AI platform (11%), suggesting that fragmentation is incongruent with the perfect of a customized, unified system. Organizations that primarily curate third-party instruments or enable particular person workforce selection present a near-identical and break up distribution throughout devoted, hybrid, and vendor platforms. This means each teams are pushed by particular developer requests for capabilities, quite than a broad philosophy of platform consolidation.
The survey was developed by SlashData, an AI analyst agency with 20 years of expertise monitoring software program know-how traits, with help from the Steady Supply Basis.
