This project demonstrates an end-to-end DevSecOps pipeline for deploying a secure NodeJS application using Jenkins, Docker, Kubernetes, and monitoring tools.
Terraform → AWS EC2
Jenkins → CI/CD Pipeline
Docker → Containerization
Kubernetes → Deployment Platform
Prometheus → Metrics Collection
Grafana → Monitoring Dashboard
Terraform AWS EC2 Jenkins Docker Kubernetes SonarQube OWASP Dependency Check OWASP ZAP Prometheus Grafana
- Developer pushes code to GitHub
- Jenkins pipeline triggers automatically
- Application is built
- Security scans executed:
- SonarQube (SAST)
- OWASP Dependency Check (SCA)
- OWASP ZAP (DAST)
- Docker image is created
- Application deployed to Kubernetes
Components deployed:
NodeGoat Application Deployment
MongoDB Deployment
Kubernetes Services
ConfigMaps and Secrets
Horizontal Pod Autoscaler
Canary Deployment
Prometheus collects metrics from the Kubernetes cluster.
Grafana visualizes:
CPU usage
Memory usage
Pod health
Cluster metrics
Implemented a complete DevSecOps pipeline integrating infrastructure provisioning, CI/CD automation, container orchestration, security scanning, and monitoring.