All Projects
DevOpsCase Study·88% Match

DevSecOps App — EKS + Prometheus + Grafana

DevSecOps pipeline for a BookMyShow clone (React + CSS). Jenkins CI/CD: GitHub → SonarQube SAST → Docker Scout vulnerability scan → Docker build/push → ArgoCD GitOps → Amazon EKS. AWS CloudFormation provisions infrastructure. Helm manages Kubernetes releases. Prometheus + Grafana observability stack with Node Exporter. 1 community fork.

Amazon EKSPrometheusGrafanaHelmJenkinsDockerKubernetes
ProductionArgoCDGitOpsEKSKubernetesCloudFormationIaCDocker ScoutVuln scan
ArgoCD
GitOps
EKS
Kubernetes
CloudFormation
IaC
Docker Scout
Vuln scan
🔴 The Problem

BookMyShow clone had no GitOps workflow — deployments were manual kubectl applies

CloudFormation stacks were managed outside of the CI pipeline

The Solution

Jenkins CI: GitHub → SonarQube → Docker Scout vulnerability scan → Docker build/push → ArgoCD GitOps → Amazon EKS

AWS CloudFormation provisions infra; Helm manages Kubernetes releases; Prometheus + Grafana add observability

📈 Impact & Results

ArgoCD continuously reconciles desired vs actual cluster state

Docker Scout catches CVEs before the image lands in EKS

Prometheus alerts fire on pod restarts or CPU spikes

Full Tech Stack
Amazon EKSPrometheusGrafanaHelmJenkinsDockerKubernetesSonarQubeOWASPTrivy

More Projects

Interested in working together?
Let's build something impactful.