S

security

This basic note-taking application is used to showcase the different GitLab features around security and governance. To get started checkout the Full Tutorial Documentation.

Atlas Architect: Your AI Co-pilot for Secure Cloud Infrastructure

This project is an AI-powered DevSecOps agent that lives within GitLab. It proactively analyzes Infrastructure-as-Code (IaC) files, specifically Terraform, to automatically visualize, secure, and optimize a developer's Google Cloud architecture before it's ever deployed.

When a developer submits a Merge Request with Terraform changes, a CI/CD pipeline triggers the agent to post a detailed analysis back as a comment. This provides instant visibility and governance, helping teams build better, safer cloud infrastructure, faster.

Key Features:

AI-Powered Visualization: Generates architecture diagrams from Terraform code using Google's Vertex AI. Security & Cost Analysis: Identifies security vulnerabilities and cost inefficiencies based on best practices. Intelligent Remediation: Automatically suggests code changes to fix identified issues. Vector-Powered Knowledge Base: Uses a MongoDB Atlas Vector Search index of official Google Cloud documentation to provide highly relevant, context-aware explanations for its recommendations.

Core Technologies:

Platform: GitLab CI/CD, Google Cloud Platform (GCP), MongoDB Atlas Services: Google Cloud Run, Google Cloud Build, Google Vertex AI, MongoDB Atlas Vector Search Frameworks & Languages: Python, Flask, Gunicorn

A local Infrastructure-as-Code (IaC) development environment for security and compliance validation. The current iteration uses Terraform and AWS emulation via LocalStack, focusing on IAM roles, secrets management, S3 access control and regulatory policies (e.g., GDPR/HIPAA). Implemented constrained DevSecOps practices within a local development context.

Terraform module to manage VPC Service Perimeters, Access Levels, and Ingress / Egress policies.

AWS Lambda functions for SOAR (Security Orchestration, Automation and Response): PDF URL extraction and phishing image analysis for threat intelligence workflows.

AI chatbot for secure, conversational analysis of AWS infrastructure

Google Cloud Shift-left security demonstration containing infrastructure, continuous delivery pipeline and tooling to support security from within a build pipeline

Bootstrap a GitLab Package Hunter with Terraform on Hetzner Cloud

Antennae is a free and open-source, face recognition check-in, loyalty and security app.