Wisecow – Kubernetes CI/CD App

Containerized and deployed a Node.js microservice on Kubernetes with Ingress, probes, and ConfigMaps. Implemented GitHub Actions pipeline with security scanning.

Kubernetes

Docker

GitHub Actions

Trivy

KubeArmor

View on GitHub

Project Overview

A complete DevOps solution showcasing modern Kubernetes deployment practices with automated CI/CD pipelines, security scanning, and production-grade monitoring. This project demonstrates best practices for containerized application deployment with emphasis on security, observability, and reliability.

Key Features & Achievements

Containerized and deployed a Node.js microservice on Kubernetes with Ingress, probes, and ConfigMaps.
Implemented GitHub Actions pipeline (test → build → scan → deploy) with Trivy security scanning.
Applied KubeArmor security policies and non-root containers for runtime hardening.
Monitoring with Prometheus + Grafana for production-grade observability.

Technical Architecture

application

Node.js microservice with health checks

containerization

Docker with multi-stage builds and security scanning

orchestration

Kubernetes with Ingress, ConfigMaps, and Secrets

cicd

GitHub Actions with automated testing and deployment

monitoring

Prometheus and Grafana stack for observability

security

Trivy for vulnerability scanning and KubeArmor for runtime protection

Technical Challenges

Implementing comprehensive security scanning in CI/CD pipeline
Configuring KubeArmor policies for runtime protection
Setting up production-grade monitoring and alerting
Optimizing Kubernetes resource allocation and scaling

Explore the Code