Subscribing to SHIP-HATS | Singapore Government Developer Portal
Have feedback? Please

Want to get started on SHIP-HATS? Check out the subscription launched on 1 October 2020.

Summary

Subscription is on a monthly basis and available only to agencies as account holders. Agencies can extend subscriptions to non-agency users (e.g. Vendors). Each subscription is based on a tier plus any number of optional add-ons. Tiers include Starter, Squad, Team, and Tribe. The table below summarises resources and services allotted in each tier.

Services

Services that SHIP-HATS brings to you, adhering to security and compliance requirements:

  1. Jira, Confluence, Bitbucket

    Used to track work, document, and manage code versioning respectively. Users listed in the table above refer to named users: discrete accounts whose activities will be audited and should not be shared. Content (eg. Confluence) configured for anonymous access do not need a named user to view.

  2. Bamboo

    Continuous Integration (CI) orchestrator. CI agents (aka pipeline agents) come in 2 configurations: Elastic and Dedicated. Pipelines configured for elastic agents access them from a large common pool shared with other pipelines.

    In specific situations where agent availability needs to be more predictable, or configuration needs to be nuanced to the environment, dedicated agents can be subscribed to. As the name implies, these agents are available only to the subscriber.

  3. Nexus Repo/Nexus IQ

    Artifact repository/artifact vulnerability scanner respectively.

  4. Automated test farm (pCloudy)

    Executes automated tests on browsers (desktop, mobile) and mobile apps. Mobile devices are physical equipment, managed via a desktop web browser. Automation is triggered from Bamboo using Robot Framework. Subscribers subscribe to dedicated mobile device add-on to restrict device availability to themselves. Physical device procurement is included in subscription.

  5. SonarQube

    Base languages (15) include:

    C#
    VB.NET
    TypeScript
    Kotlin
    Ruby

    Java
    JavaScript
    Python
    PHP
    HTML

    CSS
    XML
    Flex
    Go
    Scala

    Additional languages are charged per million lines of code, and include:

    C
    C++
    Obj-C

    Swift
    ABAP
    T-SQL
    PL/SQL

  6. WebInspect/ Fortify SCA apps

    Aligning to the products' commercial licensing model, an 'app' describes a code repository deployable to production. Each add-on includes WebInspect and Fortify.

  7. Prisma Cloud Compute Edition (formerly TwistLock)

    Container vulnerability scanner protecting custom container images that subscribers configure.

  8. Digital.ai Release and Deploy

    Continuous Deployment (CD) orchestrator simplifying and supporting controlled release techniques such as Blue/ Green and Canary deployment.

  9. Support

    All tiers are bundled with Basic support, available Mon to Fri from 9am to 5.30pm except holidays. Extended support operates Mon to Fri from 5.30pm to 10pm except public holidays, on top of Basic support.

New services

The table will be updated as the Toolchain teams release new services. They may be bundled in the categories (eg. Develop, Build) above, or be available as add-ons. Existing subscribers do not need to pay to immediately enjoy those bundled into categories (subscription allotments apply). GitLab Basic (by 2020) for example will be bundled into the Develop category.

Assumptions

Services listed above are commercial products. Vendors should be familiar with their high level functionality or domain; refer to FAQs for product documentation list.

FAQs

Q: How do I get subscription pricing information?

Contact the supporting agency for pricing details.

Q: Where do I get more technical information on the products listed?

Jira
Confluence
Bitbucket
Bamboo
Digital.ai Release
Digital.ai Deploy
Robot Framework

Nexus Repository Pro
Nexus IQ Lifecycle
pCloudy
WebInspect
Fortify SCA
SonarQube
Prisma Cloud

Q: Are quality metrics across products consolidated?

Yes! Thinking HATS is a testing tool dashboard aggregating metrics from SonarQube, Fortify SCA, WebInspect, NexusIQ and Jira.

Last updated 11 November 2020