Production-ready automated container image vulnerability scanning system using AWS ECR, Inspector v2, Lambda, and EventBridge
End-to-end MLOps pipeline that automates training, testing, containerization, and deployment of ML models on AWS ECS Fargate, exposed via API Gateway, with automated infrastructure provisioning, security scanning, approval gates, Slack notifications, and a frontend hosted on S3 and delivered via CloudFront for seamless user interaction.
TerraGoat is Bridgecrew's "Vulnerable by Design" Terraform repository. TerraGoat is a learning and training project that demonstrates how common configuration errors can find their way into production cloud environments.
This is a "Vulnerable by Design" Terraform repository.
It contains snippets, exercises, and solutions for the Udacity AWS Cloud Architect Nanodegree.
🌐 NetSentinel: A modular platform delivering IP geolocation, reputation scoring, and lightweight threat intelligence, with modular Terraform, Docker-based DevSecOps pipelines, and full observability via Grafana, Prometheus, and Loki.
90DaysOfDevOps Practice and Example files
Universal K8s template – from local k3s to GKE Autopilot, with dev/staging/prod pipelines powered by Terraform, Helmfile, Argo CD, GitHub Actions, Devbox + Mise, and full security/observability tooling.
Infra-as-Code for Google Cloud generated using Claude Sonnet 4. Reviewed and continuing to work on. To be used as an open source template for smaller dev teams who could use a jump-start with creating a repeatable cloud environment. Please test and verify everything before pushing to production!!!
Enterprise-grade Azure Infrastructure (AKS, WAF, Private Link) provisioning with Terraform and secured via GitHub Actions (DevSecOps).
A small Terraform project that shows good IAM and security habits in AWS—things like using roles, scoped policies, and reusable modules. It also demonstrates policy-as-code with Checkov to enforce rules beyond Terraform itself.
Deploys an Elastic Kubernetes Cluster ( EKS ) inside a VPC with public and private subnets spanning 2 availability zones for network isolation and reliability.
Infrastructure as Code (IaC) with Terraform to automate Azure Resource Group, VNet, and Subnet creation.
Deploys a globally unique S3 bucket using Terraform. Production-style structure with provider locking and variable injection.
Repository untuk tugas DevSecOps Week8 — Infrastructure as Code (IaC) Security
This project demonstrates a complete DevSecOps pipeline with Infrastructure as Code (Terraform), Continuous Integration (Jenkins), Continuous Deployment (ArgoCD with GitOps), container security scanning (Trivy, SonarQube), and Kubernetes cluster provisioning on AWS EKS. It includes best practices for security, automation, and monitoring.
Vendor-neutral SRE + Observability POC — OpenTelemetry, Prometheus, Grafana, Loki, Tempo, Pyroscope, k6, ServiceNow, Rundeck, Ansible, Terraform on AWS Free Tier
Add a description, image, and links to the devsecops topic page so that developers can more easily learn about it.
To associate your repository with the devsecops topic, visit your repo's landing page and select "manage topics."