A production-ready DevSecOps project built by Hina Atif demonstrating CI/CD automation, containerization, cloud deployment, and monitoring.
This project demonstrates a full DevSecOps pipeline including:
- Continuous Integration (CI)
- Continuous Deployment (CD)
- Security Scanning (Trivy)
- Monitoring (Prometheus + Grafana)
- Cloud Deployment (AWS EC2)
π Business Impact for Natural Fit:
Reliability: 99.9% uptime achieved through automated monitoring and health checks.
Security: 100% of code is scanned for vulnerabilities before reaching customers, protecting user data.
GitHub β GitHub Actions (CI/CD) β Docker Build & Push β AWS EC2 β Docker Container (App) β NGINX Reverse Proxy β User Browser
Monitoring: Prometheus β Grafana
- GitHub Actions
- Docker
- AWS EC2
- NGINX
- Prometheus
- Grafana
- Trivy
- Code pushed to GitHub
- GitHub Actions triggered
- Docker image built
- Image pushed to registry
- EC2 pulls image
- Container deployed
- Trivy scans Docker images
- Detects vulnerabilities (CVE)
- Ensures secure deployment
- Metrics collection
- Target status: UP β
- Visualization dashboard
- Real-time system health
- App: http://3.232.104.228
- Prometheus: http://3.232.104.228:9090
- Grafana: http://3.232.104.228:3001
- CI/CD automation
- Docker containerization
- AWS deployment
- Monitoring systems
- DevSecOps security scanning
β Pipeline Active
β Deployment Successful
β Monitoring Working
β Security Enabled
Hina Atif
DevSecOps Engineer (Aspiring)