This is a guide to help you navigate this repository.
.github
: main GitHub Actions directory.github/workflow/ci.yml
: GitHub Actions CI/CD configurationpython_application
: Python application, Python dependencies, and Dockerfile directoryassets
: Directory for screenshots
1.Running application directly from console
- checkout code
- compile dependency and run hello world Result:
- upload hello world python and dockerfile files as artifact
- Running application from docker
- login into docker hub
- download artifact for hello world python and dockerfile files from first workflow
- build and push docker image into docker hub
- run image vulnerability scanner for image result using trivy
- running hello world from docker Result:
- We can upload code scanning results to GitHub. This allows collaborators working on the repository to easily work together to improve the application's security quality
- In addition to Docker image scanning, we can also add Software Composition Analysis (SCA), code quality scanning, Static Application Security Testing (SAST), and Dynamic Application Security Testing (DAST) to improve the overall security and quality of our applications. For more details, you can also check the article I wrote at this link
Linkedin Link: https://www.linkedin.com/in/iilness/ Website Link: https://campsite.bio/iilness
Docker Hub URL used for this project: https://hub.docker.com/repository/docker/iilness/andre-devsecops-python/general