🚀 DevSecOps in Action: Secure CI/CD with SonarQube & Trivy (Full Project)

Description

In this project, we build a complete **DevSecOps pipeline** at an expert level, integrating security into every step of the CI/CD process. The system uses **SonarQube** for code quality and static analysis, and **Trivy** for Docker container security scanning. From code push to deployment, everything is automated with **GitHub Actions**. The pipeline enforces strict **quality and security gates** — if any bugs or critical vulnerabilities are detected, the process stops immediately. Only clean and secure code is allowed to be deployed to **AWS EC2 or EKS**. 💡 **What you will learn:** * How to integrate security into CI/CD (DevSecOps) * How to use SonarQube for code quality checks * How to scan containers with Trivy * How to build a production-ready deployment pipeline 🔥 This is a real-world, production-style workflow designed for engineers who want to level up to **DevSecOps / Architect level**.