- 24 Mar, 2024
- read
A security-centric CI/CD pipeline built with Jenkins, integrating multiple security scanning tools and deploying to Kubernetes on GCP.
Key Components
- CI/CD: Jenkins pipeline with multi-stage build and deploy
- Code Quality: SonarQube for static code analysis
- Security Scanning: Aqua Trivy for container vulnerability scanning, Kubeaudit for Kubernetes security
- Artifact Management: Nexus Repository and Docker Hub
- Infrastructure: GCP with Terraform-provisioned resources
- Orchestration: Kubernetes for container orchestration