Stop Using Insecure CI/CD! Build a DevSecOps Pipeline from Scratch! скачать в хорошем качестве

Stop Using Insecure CI/CD! Build a DevSecOps Pipeline from Scratch!

In this video, we are going to build an end-to-end DevSecOps project from scratch. We’ll take a simple Python finance application and wrap it in a security-first pipeline using industry-standard open-source tools. 💡 What you’ll learn after watching this video: 🔹How to design an end-to-end DevSecOps pipeline for a simple Python app. 🔹How to structure two GitHub repos: one for application code and one for ops/GitOps. 🔹How to run Gitleaks in CI to prevent committing secrets. 🔹How to integrate SonarQube into Jenkins for SAST and quality gates. 🔹How to use Docker locally and Kaniko in CI to build and push images to Docker Hub. 🔹How to scan container images with Trivy and fail the pipeline on high-risk vulnerabilities. 🔹How to configure Argo CD to automatically deploy from an ops repo using GitOps. 🔹How to run OWASP ZAP as part of your pipeline for DAST against a staging environment. 🔹How to use Falco for runtime security monitoring in your Kubernetes cluster. 🔹How to connect all these tools into a Jenkins Groovy pipeline that automates CI/CD with security at every stage. ✍️ Video Notes: 🔹Finance-api-repo : https://github.com/mkbntech/finance-a... 🔹Fiance-api-ops-repor: https://github.com/mkbntech/finance-a... 🔹Docker Installation: https://github.com/mkbntech/finance-a... 🔹Git Installation: https://git-scm.com/install/ 🔹Kubectl Installation: https://kubernetes.io/docs/tasks/tool... 🔹Helm Installation: https://helm.sh/docs/intro/install/ ⏱️Timestamps: 0:00 | Intro 0:35 | Architecture Overview 1:30 | Prerequisites 1:49 | Install K3d 3:16 | Create GitHub Repositories 7:23 | The Application Code 10:48 | Containerize the app 14:14 | Docker Hub 17:22 | Pre-commit framework + Gitleaks 21:11 | Install Jenkins (With Ingress) 27:35 | Install Trivy 29:15 | Jenkins Pipeline 37:08 | Setting up SonarQube 48:08 | Install ArgoCD (With Ingress) 51:50 | Create Helm Charts 54:40 | Deploy app using Helm 56:40 | Create app in argocd 01:10:10 | Add GitOps stages in Jenkinsfile 01:05:51 | OWASP ZAP 01:09:21 | Runtime Security (Falco) 01:13:01 | Summary 01:13:24 | End 🔔 Don’t forget to like, subscribe, and share if you found it helpful! #devsecops #devops #devopsprojects #pythonapi #jenkins #github #kubernetes #security #sonarqube #argocd 🙏🏻 Thanks for watching!