A secure and modern hotel booking form application with comprehensive security testing and CI/CD integration.
- ESLint Security Analysis - Static code analysis with security-focused rules
- CodeQL Scanning - Advanced security vulnerability detection
- Dependency Auditing - Automated vulnerability scanning for npm packages
- CI/CD Pipeline - Automated security checks on every commit
- Brakeman Scanner - Rails security analysis (backend)
- React 18
- React Bootstrap
- ESLint with security plugins
- Ruby on Rails
- PostgreSQL
This project was bootstrapped with Create React App.
cd frontend
# Run ESLint security analysis
npm run lint
# Auto-fix security issues
npm run lint:fix
# Security-focused linting
npm run lint:security
# Audit dependencies for vulnerabilities
npm audit
# Fix vulnerable dependencies
npm audit fix# Frontend
cd frontend && npm run lint && npm audit
# Backend
cd backend && bundle audit checkThis project uses GitHub Actions for automated security testing. Every push and pull request triggers:
- ESLint Security Analysis - Detects code vulnerabilities
- npm audit - Scans for vulnerable dependencies
- Build Tests - Ensures application builds successfully
- Unit Tests - Runs test suite with coverage
- CodeQL Analysis - Deep security scanning
- Backend Security - Brakeman and bundle-audit
See .github/workflows/README.md for detailed documentation.
In the project directory, you can run:
Runs the app in the development mode.
Open http://localhost:3000 to view it in your browser.
The page will reload when you make changes.
You may also see any lint errors in the console.
Launches the test runner in the interactive watch mode.
See the section about running tests for more information.
Builds the app for production to the build folder.
It correctly bundles React in production mode and optimizes the build for the best performance.
The build is minified and the filenames include the hashes.
Your app is ready to be deployed!