SOURCES SOUGHT
99 -- Alternate Sources - SonaType Nexus - Artifact Repository/Repository Management for CI/CD
- Notice Date
- 7/30/2024 1:19:26 PM
- Notice Type
- Sources Sought
- NAICS
- 513210
—
- Contracting Office
- FA8307 AFLCMC HNCK C3IN SAN ANTONIO TX 78243-7007 USA
- ZIP Code
- 78243-7007
- Solicitation Number
- RFI_HNC_SonaType
- Response Due
- 8/8/2024 9:00:00 AM
- Archive Date
- 08/23/2024
- Point of Contact
- Karin Werner, Marisa Flores
- E-Mail Address
-
karin.werner.1@us.af.mil, marisa.flores.2@us.af.mil
(karin.werner.1@us.af.mil, marisa.flores.2@us.af.mil)
- Description
- Our goal is to identify a solution that can provide a repository manager that organizes, stores and distributes development artifacts in a DevSecOps environment. The repository should provide a single point of reference for approved application containers and software artifacts for users. The repository will store, integrate with keycloak identity credential and access management (ICAM) and make available to operational organizations for evaluation and operational acceptance that have been through Continuous Integration (CI) and automated Continuous Deployment (CD) pipelines. Thereby, creating a DevSecOps compliant express lane for certification to field (CtF) and deployment of applications. The following are some of the key characteristics that we are using to meet our organizational objectives. While this list is not exhaustive, it does provide a snapshot of some of the most important requirements for our environment: Ability to store artifacts in AWS S3 Create Docker repository mirrors Available as a helm chart / containerized deployment for Kubernetes Supports SAML or OIDC authentication and authorization (Group assertions from the Idp are honored) Role-based access control management (RBAC) for local images Supports the creation and use of apt, docker, raw, maven2, rpm, pypi, npm, conda, go, gitlfs, helm, nuget, r, and yum repositories. Supports the use of api tokens / personal access tokens to retrieve software programmatically Supports the use of subdomain routing, and the use of multiple subdomains for assigning to repositories Support for multiple authentication systems Proxy access to external repositories Ability to record use in auditable logs so that activity can be traced to a single user Optimized for automation
- Web Link
-
SAM.gov Permalink
(https://sam.gov/opp/294ff093ae2c45f9903698d306ff0e6b/view)
- Place of Performance
- Address: San Antonio, TX 78205, USA
- Zip Code: 78205
- Country: USA
- Zip Code: 78205
- Record
- SN07149648-F 20240801/240730230125 (samdaily.us)
- Source
-
SAM.gov Link to This Notice
(may not be valid after Archive Date)
| FSG Index | This Issue's Index | Today's SAM Daily Index Page |