For this 4th part, I'll cover Docker image building, scanning and publishing. Prerequisites: Read Part 1: Tests & Build Read Part 2: Run and Stress Tests Read Part 3: Modularizing CI Jobs I'll first create a Dockerfile to "dockerize" my Go app...

📘 Introduction In this blog, we will explore how to containerize a two-tier Java application using Docker, manage services with Docker Compose, and ensure image security through Docker Scout. We'll walk through a practical use case: a Java Spring Bo...

Summary of Your Pipeline Workflow Pipeline Highlights: Jenkins-driven CI/CD pipeline with GitHub webhook Static code analysis via SonarQube OWASP dependency check and Trivy file scan Docker image build, scan (Docker Scout), and push to DockerHub ...

Modern software development requires security to be integrated throughout the entire pipeline rather than being an afterthought. This project demonstrates a comprehensive DevSecOps implementation that deploys an Amazon Prime clone application securel...

What is Docker Scout? Docker Scout is like a helper that checks your Docker images for problems, like security risks or outdated parts, and gives suggestions to fix them. It’s a simple way to keep your containers safe and up-to-date! How to use Docke...
