Skip to content

apcj-f5/nap-devsecops-demo

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

1,249 Commits

.github

.github

 
 

apps

apps

 
 

argocd

argocd

 
 

docs

docs

 
 

init

init

 
 

tests

tests

 
 

.gitignore

.gitignore

 
 

.gitmodules

.gitmodules

 
 

.pre-commit-config.yaml

.pre-commit-config.yaml

 
 

CODEOWNERS

CODEOWNERS

 
 

CODE_OF_CONDUCT.md

CODE_OF_CONDUCT.md

 
 

CONTRIBUTING.md

CONTRIBUTING.md

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

SECURITY.md

SECURITY.md

 
 

renovate.json

renovate.json

 
 

Repository files navigation

Security in CI/CD pipelines with NGINX App Protect

License Project Status: Active – The project has reached a stable, usable state and is being actively developed. GitHub branch checks state GitHub deploy checks state GitHub commit activity

powered by semgrep pre-commit.ci status OpenSSF Scorecard OpenSSF Best Practices

OWASP ZAP ZAP Baseline Scan OWASP ZAP ZAP Full Scan OWASP ZAP ZAP API Scan
[hapi.f5labs.dev - ZAP Baseline Scan](https://github.com/apcj-f5/nap-devsecops-demo/issues?q=is:issue+is:open+"hapi OWASP+ZAP+Baseline+Scan"+in:title) [hapi.f5labs.dev - ZAP Full Scan](https://github.com/apcj-f5/nap-devsecops-demo/issues?q=is:issue+is:open+"hapi OWASP+ZAP+Full+Scan"+in:title) [hapi.f5labs.dev - ZAP API Scan](https://github.com/apcj-f5/nap-devsecops-demo/issues?q=is:issue+is:open+"hapi OWASP+ZAP+API+Scan"+in:title)
[bank.f5labs.dev - ZAP Baseline Scan](https://github.com/apcj-f5/nap-devsecops-demo/issues?q=is:issue+is:open+"bank OWASP+ZAP+Baseline+Scan"+in:title) [bank.f5labs.dev - ZAP Full Scan](https://github.com/apcj-f5/nap-devsecops-demo/issues?q=is:issue+is:open+"bank OWASP+ZAP+Full+Scan"+in:title)
[gql.f5labs.dev - ZAP Baseline Scan](https://github.com/apcj-f5/nap-devsecops-demo/issues?q=is:issue+is:open+"gql OWASP+ZAP+Baseline+Scan"+in:title) [gql.f5labs.dev - ZAP Full Scan](https://github.com/apcj-f5/nap-devsecops-demo/issues?q=is:issue+is:open+"gql OWASP+ZAP+Full+Scan"+in:title)

Maintainers: @shsingh @leonseng

This repository hosts files that demonstrate using F5 security solutions (NGINX App Protect, NGINX App Protect DoS, F5 Distributed Cloud) for post-deployment security in application CI/CD pipelines.

Integrating security into post-deployment processes as part of Continuous Delivery/Continuous Deployment ensure that applications at runtime have proper controls, and can also be checked for compliance.

Repository Information

This repository aims to follow security recommended practices for opensource software and contains the following:

Reference Implementation

The reference implementation uses the HAPI FHIR application. The application provides an example API gateway for digital health use cases. Source code for the application is in the apps directory.

Reference Implementation

Pipeline details

Getting started

  1. Clone or Fork repository
  2. Ensure pre-commit is installed
local-repo-dir# pre-commit install
local-repo-dir# pre-commit run --all-files
  1. Any commits now will run the pre-commit hook changes

Additional information

About

Demonstration of security in CI/CD pipelines using NGINX App Protect

github.com/apcj-f5/nap-devsecops-demo/blob/master/docs/handy-links.md

Topics

nginx kubernetes security ingress waf ingress-controller devsecops gitops argocd devsecops-pipeline

Resources

Readme

License

Apache-2.0 license

Code of conduct

Code of conduct

Security policy

Security policy
Activity
Custom properties

Stars

3 stars

Watchers

2 watching

Forks

5 forks
Report repository

Releases 3

v1.0.3 Latest
Jul 30, 2023
+ 2 releases

Contributors 8

Languages