DEPLOYMENT OF NODEJS APP IN KUBERNETES WITH DEVSECOPS CICD PIPELINE

Bhavesh Kansagara — Wed, 19 Jun 2024 20:40:51 +0000

I'm thrilled to announce that I have successfully implemented a comprehensive CI/CD pipeline for DEPLOY THE NODEJS APP IN
KUBERNETES WITH DEVSECOPS
CICD PIPELINE Project! This pipeline ensures seamless integration, continuous delivery, and robust security checks, enhancing our development process significantly. Here's a breakdown of the stages:
Create Two Ec2 with T2-Large Instance 30GB storage & Install Jenkins.

CI/CD Pipeline Stages:

Checkout SCM: Retrieves the latest code from our Git repository.
Tool Install: Install necessary tools like JDK 17 and Node.js 16.
Clean Workspace: Ensures a fresh build environment.
Checkout from Git: Fetches the code from the main branch.
SonarQube Analysis: Conducts code quality analysis with SonarQube.
Quality Gate: Validates code quality against predefined metrics.
Install Dependencies: Installs project dependencies using npm.
OWASP FS Scan: Performs a security scan using OWASP Dependency Check.
Trivy FS Scan: Conduct a security scan on the file system with Trivy.
Docker Build & Push: Builds the Docker image and pushes it to Docker Hub.
Trivy Image Scan: Scans the Docker image for vulnerabilities using Trivy.
Deploy to Container: Deploy the Docker container.
Deploy to Kubernetes: Applies Kubernetes deployment configuration. Key Highlights:
SonarQube Integration: Ensures code quality and adherence to best practices.
Security Scans: OWASP and Trivy scans enhance our security posture.
Automated Deployments: Streamlined deployments to Docker and Kubernetes.

Forem: Bhavesh Kansagara

DEPLOYMENT OF NODEJS APP IN KUBERNETES WITH DEVSECOPS CICD PIPELINE