A production-style, zero-cost CI/CD setup that demonstrates practical DevSecOps:
- Linting/tests with coverage artifacts
- Static analysis with CodeQL (code scanning)
- Container image scanning with Trivy
- Clear docs, governance files, and reproducible local runs
Why it matters: This mirrors real teams’ pipelines—automation, security gates, and documentation recruiters expect.
- Quick Start (Local)
- Pipeline Overview
- Repository Structure
- Workflows
- Badges (Fixing “unknown”)
- Development Guide
- Security & Compliance
- Branch Protection (recommended)
- Extending the Pipeline
- AI Transparency
- Contributing
- License
# 1) Setup Python env
python -m venv .venv
# Windows: .venv\Scripts\activate
source .venv/bin/activate
# 2) Install deps if present
pip install -r requirements.txt || true
pip install -r requirements-dev.txt || true
# 3) Run tests with coverage (if tests exist)
pytest --cov=. --cov-report=term-missing --cov-report=xml