D

devsecops

This POC evaluates the HUGO static site generator framework for potential adoption in our infrastructure documentation projects.

Cheatsheet

AI-powered security scanner that finds vulnerabilities and provides one-click fixes directly in GitLab merge requests. A reusable CI/CD Catalog component built with Google Cloud Vertex AI.

This Git repository serves as a valuable resource for managing Dockerfiles and associated scripts.

Atlas Architect: Your AI Co-pilot for Secure Cloud Infrastructure

This project is an AI-powered DevSecOps agent that lives within GitLab. It proactively analyzes Infrastructure-as-Code (IaC) files, specifically Terraform, to automatically visualize, secure, and optimize a developer's Google Cloud architecture before it's ever deployed.

When a developer submits a Merge Request with Terraform changes, a CI/CD pipeline triggers the agent to post a detailed analysis back as a comment. This provides instant visibility and governance, helping teams build better, safer cloud infrastructure, faster.

Key Features:

AI-Powered Visualization: Generates architecture diagrams from Terraform code using Google's Vertex AI. Security & Cost Analysis: Identifies security vulnerabilities and cost inefficiencies based on best practices. Intelligent Remediation: Automatically suggests code changes to fix identified issues. Vector-Powered Knowledge Base: Uses a MongoDB Atlas Vector Search index of official Google Cloud documentation to provide highly relevant, context-aware explanations for its recommendations.

Core Technologies:

Platform: GitLab CI/CD, Google Cloud Platform (GCP), MongoDB Atlas Services: Google Cloud Run, Google Cloud Build, Google Vertex AI, MongoDB Atlas Vector Search Frameworks & Languages: Python, Flask, Gunicorn

Probably the most modern and sophisticated insecure web application!

Clone of OWASP Juice Shop with GitLab branding and more.

Learn more by seeing our DevSecOps Tutorial

SafeDep vet CI Component for policy driven vetting of open source dependencies.

Organisation for #everyonecancontribute cafe sessions (ideas & tasks)

This basic note-taking application is used to showcase the different GitLab features around security and governance. To get started checkout the Full Tutorial Documentation.

This platform is designed to simplify the resignation process by providing a structured and professional way to craft resignation letters.

This platform takes a satirical approach to the HR system, offering a humorous yet insightful perspective on navigating salary negotiations and understanding the intricacies of workplace compensation.

The purpose of this POC is to perform a comprehensive proof of concept of the entire process, from development to deployment.

This project focuses on an automated certificate generation service powered by Ansible playbooks.

This project provides a comprehensive infrastructure-as-code solution using Ansible.

This Git repository serves as a valuable resource for managing Automations and associated scripts, like backups script, synchronization, etc.

This Git repository serves as a valuable resource for centralizing Kubernetes manifests and automating GitOps workflows using Argo CD.

SPM (Shell Package Manager) is a tool designed to manage shell-based applications and libraries.

This project serves two main purposes: Infrastructure Documentation and Cursor AI Experimentation.

An end to end DevSecOps pipeline with features including SAST Scanning of the Source code, SBOM management, and Container image scan, before pushing to EKS.