Proactive, Open source API security → API discovery, API Security Posture, Testing in CI/CD, Test Library with 1000+ Tests, Add custom tests, Sensitive data exposure

DevSecOps Project using git, GitHub, jenkins, Maven,Junit, SonarQube, Docker, Trivy, Hashicorp Vault, AWS, Kubernetes

🔍🔍 Malware scanner for cloud-native, as part of CI/CD and at Runtime 🔍🔍

DevSecOps pipeline for Python based project using Jenkins, Ansible, AWS, and open-source security tools and checks.

Code examples for the AWS Security Blog post: How to use CI/CD to deploy and configure AWS security services with Terraform

This repository is a full-stack food delivery application inspired by Zomato. It includes a React.js frontend and integrates DevSecOps practices to ensure a secure and automated deployment pipeline.

A demo of cloud-native Inner Loop and Outer Loop controlling a 2-tier app (Python + Go) with Red Hat OpenShift using Tekton Pipelines, Argo CD GitOps, Eclipse Che aka OpenShift DevSpaces and Quay.io registry

sbomqs: The Comprehensive SBOM Quality & Compliance Tool

Building FlashFathom AI SAAS project that generate Flascards - Deployment Using DevSecOps Best Practices

Quickly get a GitLab network up and running. The network consists of a GitLab server, docker-in-docker compatible GitLab runners, and SonarQube

Deploy a Netflix clone application using a secure CI/CD pipeline built with Jenkins, Docker 🐳 , and Kubernetes ☸️. This project includes implementing code quality and security tools (SonarQube, Trivy), as well as monitoring solutions (Prometheus, Grafana) to ensure reliability and visibility

Mixeway is security orchestrator for vulnerability scanners which enable easy plug in integration with CICD pipelines. MixewayHub project contain one click docker-compose file which configure and run images from docker hub.

CLI component of OWASP PurpleTeam

🔍 Function-level tracing tool for Seccomp profiling, with eBPF

The workshop guide sources. The rendered website can be found here : https://devsecops-workshop.github.io/

Comprehensive set of Terraform coding standards designed for enterprise-level projects

Automated DevSecOps CICD pipeline for deploying a Netflix clone using Jenkins, Docker, Kubernetes, integrated with email notifications, and monitoring with Grafana and Prometheus.

Mixeway is security orchestrator for vulnerability scanners which enable easy plug in integration with CICD pipelines. MixewayBackend project contains source code of backend with all plugin integrations writer in Spring Boot.