Subscribing to SHIP-HATS
Want to get started on SHIP-HATS? Check out the subscription launched on 1 October 2020.
Subscription is on a monthly basis and available only to agencies as account holders. Agencies can extend subscriptions to non-agency users (e.g. Vendors). Each subscription is based on a tier plus any number of optional add-ons. Tiers include Starter, Squad, Team, and Tribe. The table below summarises resources and services allotted in each tier.
Services that SHIP-HATS brings to you, adhering to security and compliance requirements:
Jira, Confluence, Bitbucket
Used to track work, document, and manage code versioning respectively. Users listed in the table above refer to named users: discrete accounts whose activities will be audited and should not be shared. Content (eg. Confluence) configured for anonymous access do not need a named user to view.
Continuous Integration (CI) orchestrator. CI agents (aka pipeline agents) come in 2 configurations: Elastic and Dedicated. Pipelines configured for elastic agents access them from a large common pool shared with other pipelines.
In specific situations where agent availability needs to be more predictable, or configuration needs to be nuanced to the environment, dedicated agents can be subscribed to. As the name implies, these agents are available only to the subscriber.
Nexus Repo/Nexus IQ
Artifact repository/artifact vulnerability scanner respectively.
Automated test farm (pCloudy)
Executes automated tests on browsers (desktop, mobile) and mobile apps. Mobile devices are physical equipment, managed via a desktop web browser. Automation is triggered from Bamboo using Robot Framework. Subscribers subscribe to dedicated mobile device add-on to restrict device availability to themselves. Physical device procurement is included in subscription.
Base languages (15) include:
Additional languages are charged per million lines of code, and include:
WebInspect/ Fortify SCA apps
Aligning to the products' commercial licensing model, an 'app' describes a code repository deployable to production. Each add-on includes WebInspect and Fortify.
Prisma Cloud Compute Edition (formerly TwistLock)
Container vulnerability scanner protecting custom container images that subscribers configure.
Digital.ai Release and Deploy
Continuous Deployment (CD) orchestrator simplifying and supporting controlled release techniques such as Blue/ Green and Canary deployment.
All tiers are bundled with Basic support, available Mon to Fri from 9am to 5.30pm except holidays. Extended support operates Mon to Fri from 5.30pm to 10pm except public holidays, on top of Basic support.
The table will be updated as the Toolchain teams release new services. They may be bundled in the categories (eg. Develop, Build) above, or be available as add-ons. Existing subscribers do not need to pay to immediately enjoy those bundled into categories (subscription allotments apply). GitLab Basic (by 2020) for example will be bundled into the Develop category.
Services listed above are commercial products. Vendors should be familiar with their high level functionality or domain; refer to FAQs for product documentation list.
Q: How do I get subscription pricing information?
Contact the supporting agency for pricing details.
Q: Where do I get more technical information on the products listed?
Q: Are quality metrics across products consolidated?
Yes! Thinking HATS is a testing tool dashboard aggregating metrics from SonarQube, Fortify SCA, WebInspect, NexusIQ and Jira.
Last updated 11 November 2020