kogunlowo123/devops-devsecops-pipeline
Summary
Enterprise DevSecOps CI/CD pipeline framework with security scanning integration (SAST, DAST, SCA), compliance gates, multi-cloud. Claims real-world results from Lockheed Martin and Ceretax.
Tech Stack
GitHub Actions, Azure DevOps, Terraform, Kubernetes, Python
Key Contents
- scripts/compliance-gate.py — compliance gate automation
- scripts/pre-commit-checks.sh
- docker/Dockerfile.hardened
- docs/ARCHITECTURE.md
- CMMC L2 compliance mentions
Verdict: INTERESTING ⭐⭐
Practical DevSecOps pipeline with compliance gates. compliance-gate.py is worth examining for CI/CD compliance automation patterns.