D

devsecops

A GitLab CI/CD pipeline that builds a hardened UBI9‑STIG Apache container, injects application content, and deploys the image to a local OpenShift cluster.

This Git repository serves as a valuable resource for managing Dockerfiles and associated scripts.

Kubernetes-native Helm auditor for supply chain security, aggregating SBOM, vulnerability, and provenance data.

A comprehensive mortgage calculator application written in Rust with a GUI. This tool helps you calculate monthly mortgage payments including principal, interest, property taxes, insurance, PMI, and HOA fees.

Used to showcase GitLab support for Rust.

This basic note-taking application is used to showcase the different GitLab features around security and governance. To get started checkout the Full Tutorial Documentation.

Scans selected files for patterns stated in rules. This is used in order to find secrets you may have accidentally written to a file. This scanner is used to show how the GitLab vulnerability report can be populated by a custom scanner. You can see a demo of it in action be following the documentation in the Secret List project.

This POC evaluates the HUGO static site generator framework for potential adoption in our infrastructure documentation projects.

This platform takes a satirical approach to the HR system, offering a humorous yet insightful perspective on navigating salary negotiations and understanding the intricacies of workplace compensation.

The purpose of this POC is to perform a comprehensive proof of concept of the entire process, from development to deployment.

This platform is designed to simplify the resignation process by providing a structured and professional way to craft resignation letters.

This project serves as a comprehensive reference implementation for enterprise DevSecOps practices, demonstrating how security, automation, and observability integrate seamlessly in modern cloud applications.

A local Infrastructure-as-Code (IaC) development environment for security and compliance validation. The current iteration uses Terraform and AWS emulation via LocalStack, focusing on IAM roles, secrets management, S3 access control and regulatory policies (e.g., GDPR/HIPAA). Implemented constrained DevSecOps practices within a local development context.

AI-powered security scanner that finds vulnerabilities and provides one-click fixes directly in GitLab merge requests. A reusable CI/CD Catalog component built with Google Cloud Vertex AI.

Google Cloud Shift-left security demonstration containing infrastructure, continuous delivery pipeline and tooling to support security from within a build pipeline

An end to end DevSecOps pipeline with features including SAST Scanning of the Source code, SBOM management, and Container image scan, before pushing to EKS.

Shiftleft CLI auto builder for Docker Hub

Hadolint is a Dockerfile linter that helps developers write secure, efficient, and maintainable Dockerfiles. It detects syntax errors, enforces best practices, and integrates with ShellCheck to validate shell scripts in RUN instructions. Ideal for CI/CD pipelines and DevSecOps workflows.

Проект представляет собой GitLab репозиторий, настроенный для автоматической сборки и проверки Docker образов с использованием CI/CD pipeline. Основной целью проекта является демонстрация процесса интеграции и непрерывной доставки (CI/CD) в разработке программного обеспечения, а также контроль безопасности образов Docker при помощи инструмента Trivy. Проект включает в себя создание двух Docker образов, одного с критическими уязвимостями и другого с не критическими, и автоматическое управление merge requests для обеспечения безопасности и качества кода. Результаты работы проекта могут быть проверены и просмотрены в разделе "Code" > "Merge requests" на Gitlab.com.