Course Hive
Search

Welcome

Sign in or create your account

Continue with Google
or
Day-7 | Ultimate End to End DevSecOps Project Implementation | 3 Hours Tutorial
Play lesson

Real-Time Projects for DevOps and Cloud - Day-7 | Ultimate End to End DevSecOps Project Implementation | 3 Hours Tutorial

4.0 (0)
17 learners

What you'll learn

This course includes

  • 39.5 hours of video
  • Certificate of completion
  • Access on mobile and TV

Summary

Keywords

Full Transcript

Join Membership for Career Guidance: www.youtube.com/abhishekveeramalla/join In this video, I will prepare, build and deploy a full-stack blog platform called **Jerney** from scratch using a complete **DevSecOps Implementation**. This isn't just "deploy an app". This is production-grade infrastructure with security at every stage. 🔥 **Overview:** → A 3-tier blog platform (React + Node.js + PostgreSQL). → Containerized with Docker, orchestrated with Kubernetes on **AWS EKS Auto Mode** → Infrastructure provisioned with **Terraform** (VPC, EKS, IAM all as code) → A full **DevSecOps CI/CD pipeline** with GitHub Actions (10 stages) **Security/DevSecOps practices considered:** ✅ ESLint code linting ✅ npm audit (Software Composition Analysis) ✅ Trivy container image vulnerability scanning ✅ Hadolint Dockerfile linting ✅ Checkov IaC security scanning (Terraform + K8s manifests) ✅ Kubernetes NetworkPolicies (zero-trust pod communication) ✅ Non-root containers, read-only filesystems, dropped capabilities ✅ EKS secrets encryption at rest **CI/CD Pipeline (All Stages):** 1️⃣ Lint Scanning→ 2️⃣ Dependency Audit (SCA) → 3️⃣ Build & Push to GHCR → 4️⃣ Container Image Scan (Trivy) → 5️⃣ IaC Security Scan (Checkov) → 6️⃣ Dockerfile Lint (Hadolint) → 7️⃣ Auto-update K8s manifests (GitOps-style) **Tech Stack:** • Frontend: React + Vite + Nginx • Backend: Node.js + Express • Database: PostgreSQL • Containers: Docker + Docker Buildx (multi-stage builds) • Orchestration: Kubernetes (AWS EKS Auto Mode) • IaC: Terraform • CI/CD: GitHub Actions • Registry: GitHub Container Registry (GHCR) • Security: Trivy, Checkov, Hadolint, ESLint, npm audit **Project Structure:** • `main` branch → Source code + EC2 bare-metal deployment • `devops` branch → Full DevSecOps — Docker, K8s, Terraform, CI/CD, security scanning #DevSecOps #DevOps #Kubernetes #AWS #EKS #Terraform #CICD #GitHubActions #Docker #CloudSecurity #Trivy #InfrastructureAsCode #FullStack #React #NodeJS #PostgreSQL #CloudComputing #DevOpsProject #KubernetesProject #AWSProject Free Course on the channel ============================== - DevOps Zero to Hero Playlist: https://www.youtube.com/playlist?list=PLdpzxOOAlwvIKMhk8WhzN1pYoJ1YU8Csa - AWS Zero to Hero Playlist: https://www.youtube.com/playlist?list=PLdpzxOOAlwvLNOxX0RfndiYSt1Le9azze - Azure Zero to Hero Playlist: https://www.youtube.com/playlist?list=PLdpzxOOAlwvIcxgCUyBHVOcWs0Krjx9xR - Terraform Zero to Hero Playlist: https://www.youtube.com/playlist?list=PLdpzxOOAlwvI0O4PeKVV1-yJoX2AqIWuf - Python for DevOps Playlist: https://www.youtube.com/playlist?list=PLdpzxOOAlwvKwTyYNJCUwGPvql0TrsPgv About me: ======== Instagram: https://www.instagram.com/abhishekveeramalla_official/ Telegram Channel : https://t.me/abhishekveeramalla LinkedIn: https://www.linkedin.com/in/abhishek-veeramalla GitHub: https://github.com/iam-veeramalla Medium: https://abhishekveeramalla-av.medium.com/ Disclaimer: Unauthorized copying, reproduction, or distribution of this video content, in whole or in part, is strictly prohibited. Any attempt to upload, share, or use this content for commercial or non-commercial purposes without explicit permission from the owner will be subject to legal action. All rights reserved.

Course Hive

Continue this lesson in the app

Install CourseHive on Android or iOS to keep learning while you move.

Related Courses

FAQs

Course Hive
Download CourseHive
Keep learning anywhere