Skip to content

Commit 9c8eafe

Browse files
deviant101deviant101
committed
updated README
1 parent d4a2c18 commit 9c8eafe

1 file changed

Lines changed: 15 additions & 17 deletions

File tree

README.md

Lines changed: 15 additions & 17 deletions
Original file line numberDiff line numberDiff line change
@@ -13,9 +13,9 @@ A comprehensive DevSecOps implementation for the Solar System application, demon
1313
This project showcases a **complete DevSecOps pipeline** that automates security testing, quality assurance, containerization, and deployment of a Node.js application. The Solar System application serves as a practical example for implementing multiple security scanning tools and CI/CD best practices.
1414

1515
### Live Application
16-
- **Production URL**: https://solar-system-ssd.azurewebsites.net
17-
- **Health Check**: https://solar-system-ssd.azurewebsites.net/ready
18-
- **API Docs**: https://solar-system-ssd.azurewebsites.net/api-docs
16+
- **Production URL**: https://solar-system-devsecops.azurewebsites.net
17+
- **Health Check**: https://solar-system-devsecops.azurewebsites.net/ready
18+
- **API Docs**: https://solar-system-devsecops.azurewebsites.net/api-docs
1919

2020
## 🏗️ Architecture
2121

@@ -35,39 +35,37 @@ This project showcases a **complete DevSecOps pipeline** that automates security
3535
│ GitHub Actions DevSecOps Pipeline │
3636
├──────────────────────────────────────────────────────────────────────┤
3737
│ │
38-
│ Stage 1-2: Build & Test │
38+
│ Stage 1: Build & Test
3939
│ ├─ Code Checkout │
4040
│ ├─ Dependency Installation (npm install) │
4141
│ └─ Unit Tests (Mocha + Chai - 11 tests) │
4242
│ │
43-
│ Stage 3: Code Coverage │
43+
│ Stage 2: Code Coverage │
4444
│ └─ NYC Coverage Analysis (78% threshold enforced) │
4545
│ │
46-
│ Stage 4: SAST (Static Application Security Testing) │
46+
│ Stage 3: SAST (Static Application Security Testing) │
4747
│ └─ Semgrep (security-audit, nodejs, OWASP, JavaScript) │
4848
│ │
49-
│ Stage 5: Dependency Scanning │
49+
│ Stage 4: Dependency Scanning │
5050
│ ├─ Snyk (vulnerability detection with HTML reports) │
5151
│ └─ npm audit (built-in security checker) │
5252
│ │
53-
│ Stage 6: Secret Detection │
53+
│ Stage 5: Secret Detection │
5454
│ └─ TruffleHog (credential leak scanner) │
5555
│ │
56-
│ Stage 7: Container Build & Push │
56+
│ Stage 6: Container Build & Push │
5757
│ ├─ Docker Build (multi-stage Alpine) │
5858
│ └─ Push to GitHub Container Registry │
5959
│ │
60-
│ Stage 8: Container Scanning │
60+
│ Stage 7: Container Scanning │
6161
│ └─ Trivy (image vulnerability scanner with HTML reports) │
6262
│ │
63-
│ Stage 9: DAST (Dynamic Application Security Testing) │
63+
│ Stage 8: DAST (Dynamic Application Security Testing) │
6464
│ └─ OWASP ZAP (baseline scan on running app) │
6565
│ │
66-
│ Stage 10: Infrastructure Provisioning
66+
│ Stage 9: Infrastructure Provisioning + App Deployment
6767
│ ├─ Terraform Init/Plan/Apply │
68-
│ └─ Azure Resources (Resource Group, App Service Plan, Web App) │
69-
│ │
70-
│ Stage 11: Deployment & Verification │
68+
│ ├─ Azure Resources (Resource Group, App Service Plan, Web App) │
7169
│ ├─ Deploy to Azure Web App │
7270
│ ├─ Restart App (pull latest image) │
7371
│ └─ Health Check Validation │
@@ -522,13 +520,13 @@ This is an academic project for SSD course. For learning purposes:
522520

523521
## 🎯 Project Status
524522

525-
**Pipeline**: Fully operational (11 stages)
523+
**Pipeline**: Fully operational (9 stages)
526524
**Security Scans**: 6 tools integrated
527525
**Testing**: 11 unit tests passing
528526
**Coverage**: 78% (threshold met)
529527
**Deployment**: Automated to Azure Web App
530528
**Documentation**: Complete
531-
**Production Ready**: Live at https://solar-system-ssd.azurewebsites.net
529+
**Production Ready**: Live at https://solar-system-devsecops.azurewebsites.net
532530

533531
**Last Updated**: November 24, 2025
534532

0 commit comments

Comments
 (0)