Skip to content

nguyenbuitk/devsecops

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

157 Commits
.vscode
.vscode
 
 
sec_files
sec_files
 
 
setup
setup
 
 
slack-emojis
slack-emojis
 
 
src
src
 
 
target
target
 
 
vars
vars
 
 
.talismanrc
.talismanrc
 
 
Dockerfile
Dockerfile
 
 
Jenkinsfile
Jenkinsfile
 
 
Picture1.png
Picture1.png
 
 
Picture2.jpg
Picture2.jpg
 
 
README.md
README.md
 
 
bash-test.sh
bash-test.sh
 
 
calculate-sum-critical.sh
calculate-sum-critical.sh
 
 
integration-test.sh
integration-test.sh
 
 
k8s-deployment-rollout-status.sh
k8s-deployment-rollout-status.sh
 
 
k8s-deployment-service.yaml
k8s-deployment-service.yaml
 
 
k8s-deployment.sh
k8s-deployment.sh
 
 
kube-scan.yaml
kube-scan.yaml
 
 
kubesec-scan.sh
kubesec-scan.sh
 
 
opa-conftest-docker.sh
opa-conftest-docker.sh
 
 
opa-conftest-k8s.sh
opa-conftest-k8s.sh
 
 
opa-docker-security.rego
opa-docker-security.rego
 
 
opa-k8s-security.rego
opa-k8s-security.rego
 
 
pom.xml
pom.xml
 
 
pom.xml.bk
pom.xml.bk
 
 
pom.xml.bk.may15
pom.xml.bk.may15
 
 
trivy-docker-image-scan.sh
trivy-docker-image-scan.sh
 
 
trivy-k8s-scan.sh
trivy-k8s-scan.sh
 
 
trivy-output.json
trivy-output.json
 
 
zap.sh
zap.sh
 
 
zap_rules
zap_rules
 
 

Repository files navigation

DevSecOps Project

This repository contains the source code for the DevSecOps project, which focuses on integrating security practices into the software development and operations process. Edit for testing demo Follow is visualize pipeline of project Alt text

Table of Contents

Overview

The DevSecOps project aims to promote a culture of security throughout the software development lifecycle. It combines development, security, and operations practices to enable the rapid and secure delivery of software applications.

Features

  • Continuous Integration and Continuous Deployment (CI/CD) pipeline
  • Automated security testing and vulnerability scanning
  • Infrastructure as Code (IaC) with configuration management
  • Security monitoring and incident response
  • Secure coding practices and code review

Installation

To install and run the DevSecOps project locally, follow these steps:

  1. Clone the repository: 
    git clone https://github.com/nguyenbuitk/devsecops.git
  2. Change the image in k8s-deployment-service.yaml to buinguyen/numeric-app and apply 
    kubectl apply -f k8s-deployment-service.yaml

Usage

Once the application is up and running, you can access it at http://{nodeName}:{nodePort}. Use the provided credentials to log in and explore the features of the DevSecOps platform.

Contributing

Contributions to the DevSecOps project are welcome! If you have any ideas, suggestions, or bug reports, please create an issue or submit a pull request. See our contribution guidelines for more information. just for demo

About

A comprehensive collection of tools, scripts, and resources focused on implementing DevSecOps

Resources

Readme
Activity

Stars

2 stars

Watchers

1 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages