A complete end-to-end DevSecOps project showcasing how to automate, secure, and monitor infrastructure and applications using modern tools — from Terraform to Kubernetes, Jenkins to Trivy, and everything in between.
Built to demonstrate real-world DevSecOps workflows for CI/CD, cloud automation, security integration, and observability — all in one Netflix-themed application. 🍿
This project simulates a real enterprise-grade setup where a React-based Netflix Clone is deployed and managed through a secure, automated DevOps pipeline.
- Infrastructure as Code with Terraform (AWS provisioning)
- State management using Terraform Cloud
- CI/CD automation with GitHub Actions and Jenkins
- Security Scanning with Trivy & OWASP Dependency Check
- Containerization with Docker
- Kubernetes Deployment (unmanaged cluster setup)
- Monitoring Stack for Jenkins, Kubernetes, and the app itself
.
├── Application-Code # Frontend Netflix Clone app built with React + Vite
│ ├── Dockerfile # Docker image build instructions
│ ├── package.json # Dependencies and scripts
│ ├── src/ # Main source code
│ └── public/ # Static assets
│
├── Jenkins
│ └── Jenkinsfile # CI/CD pipeline configuration (build → test → deploy)
│
├── Kubernetes
│ ├── deployment.yml # App deployment manifest
│ └── service.yml # K8s service exposure
│
└── Terraform
├── main.tf # AWS resource definitions
├── backend.tf # Terraform Cloud backend configuration
├── iam.tf # IAM roles and policies
├── vpc.tf # Network setup
├── variables.tf # Input variables
├── dev.auto.tfvars # Environment variables
└── gather.tf # Data sources and dependencies| Category | Tools / Technologies |
|---|---|
| Infrastructure | Terraform, AWS EC2, Terraform Cloud |
| CI/CD | Jenkins, GitHub Actions |
| Security | Trivy, SonarQube, OWASP Dependency Check |
| Containerization | Docker |
| Orchestration | Kubernetes (Unmanaged Cluster) |
| Monitoring | Node Exporter, Prometheus, Kube State Metrics |
| Frontend | React, Vite, TMDB API |
- Automate the entire infrastructure and application deployment lifecycle
- Integrate security and quality checks early in the pipeline
- Establish a fully observable, monitored system for reliability
- Showcase end-to-end DevSecOps workflow — ideal for portfolio and interviews
This project is documented through a 5-Part YouTube Series, each building upon the previous one.
| Part | Title | Description |
|---|---|---|
| 🧩 Part 1 | Terraform + GitHub Actions + AWS Setup | Infrastructure setup & automation |
| ⚙️ Part 2 | Jenkins, Docker, SonarQube, Trivy Setup | Core CI/CD pipeline foundations |
| 🧠 Part 3 | SonarQube + Trivy + TMDB + Pipeline Run | Running secure pipelines |
| ☸️ Part 4 | Kubernetes Cluster Setup + Deployment | Full app deployment in K8s |
| 📊 Part 5 | Monitoring Setup | End-to-end observability |
📺 Watch here: YT Playlist Link
🧾 Read on Medium: Medium Blog Series Link
If you’re following along, don’t forget to:
- 🎥 Watch the video version for step-by-step guidance
- 💼 Tag @Aman Pathak on LinkedIn when you post your progress — showcasing your DevOps achievements helps you grow professionally!
Connect with Me
DevOps & Cloud Engineer
🔗 LinkedIn • YouTube • Medium
We welcome contributions! If you have ideas for enhancements or find any issues, please open a pull request or file an issue.
This project is licensed under the MIT License.
Happy Coding! 🚀
