├── Course-Contents.pdf ├── DevSecOps └── 1-what-is-devsecops.pdf ├── Docker ├── Docker-Recommendations.pdf ├── Dockerfile ├── Dockerfile.withissues ├── basic-docker-commands.pdf ├── docker-1.1.pdf ├── docker-compose.yml ├── docker-jenkins-setup.pdf ├── dockercheatsheet.png └── index.html ├── Jenkins ├── Jenkins++CICD+Tool.pdf ├── Jenkins-Agent.pdf ├── Jenkins-Recommendations.pdf ├── jenkins-agent-setup.txt └── master-slave-architecture.pdf ├── LICENSE ├── Linux Fundamentals ├── 19-ubuntu-hardening-audit.pdf ├── 3-Linux.pdf ├── 6-shadowfile.pdf ├── 7-groupfile.pdf ├── Automatic+Updates.pdf ├── CommonlyUsedCmds.pdf ├── Linux-1.pdf ├── Package-Management.pdf ├── file-owner-permissions.pdf ├── passwd-file-explained.pdf ├── privilege-escalation.pdf └── ssh-advanced.pdf ├── Organization & Projects ├── 1-introduction.pdf ├── 10-CVE.pdf ├── 11-CVSS.pdf ├── 12-CISA.pdf ├── 13-CWE.pdf ├── 2-OWASP.pdf ├── 3-OWASP-ZAP.pdf ├── 4-OWASP-Top10.pdf ├── 5-OWASP-CHEATSHEET.pdf ├── 7-CIS-Benchmark.pdf └── 8-CIS-Controls.pdf ├── Readme.md ├── SUMMARY.pdf ├── Terraform ├── 2-Terraform-Recommendations.pdf ├── Terraform.pdf ├── backend.tf ├── main.tf ├── main.tf.resolved └── provider.tf ├── Testing, Tooling and Priciples ├── 1-introduction.pdf ├── 2-SAST.pdf ├── 3-DAST.pdf ├── 4-SCA.pdf ├── 5-Penetration-Testing.pdf ├── 6-Vulnerability-Assesment.pdf ├── 7-key-security-principles.pdf └── sastforjsapplication.pdf └── YAML ├── 01-yaml-basic.pdf └── 02-yaml-devsecops-pipeline.pdf /Course-Contents.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rohanmistry231/DevOps-Learning/a07cb528483432706e9b6d64cac115bb3de42dcc/Course-Contents.pdf -------------------------------------------------------------------------------- /DevSecOps/1-what-is-devsecops.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rohanmistry231/DevOps-Learning/a07cb528483432706e9b6d64cac115bb3de42dcc/DevSecOps/1-what-is-devsecops.pdf -------------------------------------------------------------------------------- /Docker/Docker-Recommendations.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rohanmistry231/DevOps-Learning/a07cb528483432706e9b6d64cac115bb3de42dcc/Docker/Docker-Recommendations.pdf -------------------------------------------------------------------------------- /Docker/Dockerfile: -------------------------------------------------------------------------------- 1 | # Use an official Nginx base image with Alpine 2 | FROM nginx:alpine 3 | 4 | # Set environment variables 5 | ENV APP_HOME=/usr/share/nginx/html 6 | 7 | # Copy the static website files into the image 8 | COPY index.html $APP_HOME 9 | 10 | # Set permissions for Nginx user 11 | RUN chown -R nginx:nginx $APP_HOME 12 | 13 | 14 | # Expose port 80 for HTTP 15 | EXPOSE 80 16 | 17 | # Start Nginx server 18 | CMD ["nginx", "-g", "daemon off;"] 19 | 20 | 21 | -------------------------------------------------------------------------------- /Docker/Dockerfile.withissues: -------------------------------------------------------------------------------- 1 | # ===== Flawed Dockerfile, do not copy ===== 2 | 3 | FROM continuumio/miniconda:latest 4 | RUN apt-get update \ 5 | && apt-get install -y \ 6 | gcc \ 7 | fortunes \ 8 | cowsay \ 9 | && pip install apache-airflow[crypto,postgres] 10 | 11 | CMD /usr/games/fortune | /usr/games/cowsay 12 | -------------------------------------------------------------------------------- /Docker/basic-docker-commands.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rohanmistry231/DevOps-Learning/a07cb528483432706e9b6d64cac115bb3de42dcc/Docker/basic-docker-commands.pdf -------------------------------------------------------------------------------- /Docker/docker-1.1.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rohanmistry231/DevOps-Learning/a07cb528483432706e9b6d64cac115bb3de42dcc/Docker/docker-1.1.pdf -------------------------------------------------------------------------------- /Docker/docker-compose.yml: -------------------------------------------------------------------------------- 1 | version: '3.3' 2 | services: 3 | jenkins: 4 | image: jenkins/jenkins:lts 5 | privileged: true 6 | user: root 7 | ports: 8 | - '80:8080' 9 | - '443:8443' 10 | - '50000:50000' 11 | container_name: jenkins 12 | volumes: 13 | - /home/jenkins/docker-jenkins/jenkins_data:/var/jenkins_home 14 | - /var/run/docker.sock:/var/run/docker.sock -------------------------------------------------------------------------------- /Docker/docker-jenkins-setup.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rohanmistry231/DevOps-Learning/a07cb528483432706e9b6d64cac115bb3de42dcc/Docker/docker-jenkins-setup.pdf -------------------------------------------------------------------------------- /Docker/dockercheatsheet.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rohanmistry231/DevOps-Learning/a07cb528483432706e9b6d64cac115bb3de42dcc/Docker/dockercheatsheet.png -------------------------------------------------------------------------------- /Docker/index.html: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | Welcome to DevSecOps Foundations, World! 5 | 6 | 7 |

Welcome to DevSecOps Foundations, World!

8 | 9 | 10 | 11 | -------------------------------------------------------------------------------- /Jenkins/Jenkins++CICD+Tool.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rohanmistry231/DevOps-Learning/a07cb528483432706e9b6d64cac115bb3de42dcc/Jenkins/Jenkins++CICD+Tool.pdf -------------------------------------------------------------------------------- /Jenkins/Jenkins-Agent.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rohanmistry231/DevOps-Learning/a07cb528483432706e9b6d64cac115bb3de42dcc/Jenkins/Jenkins-Agent.pdf -------------------------------------------------------------------------------- /Jenkins/Jenkins-Recommendations.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rohanmistry231/DevOps-Learning/a07cb528483432706e9b6d64cac115bb3de42dcc/Jenkins/Jenkins-Recommendations.pdf -------------------------------------------------------------------------------- /Jenkins/jenkins-agent-setup.txt: -------------------------------------------------------------------------------- 1 | nohup java -jar agent.jar -jnlpUrl http://192.168.10.13/computer/ubuntu/jenkins-agent.jnlp -secret fc0de992eaa87aaa115547ad0c86371368e5fecb3adcfc9bb16d709fd3492d43 -workDir "/home/appserver/jenkins-workspace" & -------------------------------------------------------------------------------- /Jenkins/master-slave-architecture.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rohanmistry231/DevOps-Learning/a07cb528483432706e9b6d64cac115bb3de42dcc/Jenkins/master-slave-architecture.pdf -------------------------------------------------------------------------------- /LICENSE: -------------------------------------------------------------------------------- 1 | MIT License 2 | 3 | Copyright (c) 2025 rohanmistry231 4 | 5 | Permission is hereby granted, free of charge, to any person obtaining a copy 6 | of this software and associated documentation files (the "Software"), to deal 7 | in the Software without restriction, including without limitation the rights 8 | to use, copy, modify, merge, publish, distribute, sublicense, and/or sell 9 | copies of the Software, and to permit persons to whom the Software is 10 | furnished to do so, subject to the following conditions: 11 | 12 | The above copyright notice and this permission notice shall be included in all 13 | copies or substantial portions of the Software. 14 | 15 | THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR 16 | IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, 17 | FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE 18 | AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER 19 | LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, 20 | OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE 21 | SOFTWARE. 22 | -------------------------------------------------------------------------------- /Linux Fundamentals/19-ubuntu-hardening-audit.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rohanmistry231/DevOps-Learning/a07cb528483432706e9b6d64cac115bb3de42dcc/Linux Fundamentals/19-ubuntu-hardening-audit.pdf -------------------------------------------------------------------------------- /Linux Fundamentals/3-Linux.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rohanmistry231/DevOps-Learning/a07cb528483432706e9b6d64cac115bb3de42dcc/Linux Fundamentals/3-Linux.pdf -------------------------------------------------------------------------------- /Linux Fundamentals/6-shadowfile.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rohanmistry231/DevOps-Learning/a07cb528483432706e9b6d64cac115bb3de42dcc/Linux Fundamentals/6-shadowfile.pdf -------------------------------------------------------------------------------- /Linux Fundamentals/7-groupfile.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rohanmistry231/DevOps-Learning/a07cb528483432706e9b6d64cac115bb3de42dcc/Linux Fundamentals/7-groupfile.pdf -------------------------------------------------------------------------------- /Linux Fundamentals/Automatic+Updates.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rohanmistry231/DevOps-Learning/a07cb528483432706e9b6d64cac115bb3de42dcc/Linux Fundamentals/Automatic+Updates.pdf -------------------------------------------------------------------------------- /Linux Fundamentals/CommonlyUsedCmds.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rohanmistry231/DevOps-Learning/a07cb528483432706e9b6d64cac115bb3de42dcc/Linux Fundamentals/CommonlyUsedCmds.pdf -------------------------------------------------------------------------------- /Linux Fundamentals/Linux-1.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rohanmistry231/DevOps-Learning/a07cb528483432706e9b6d64cac115bb3de42dcc/Linux Fundamentals/Linux-1.pdf -------------------------------------------------------------------------------- /Linux Fundamentals/Package-Management.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rohanmistry231/DevOps-Learning/a07cb528483432706e9b6d64cac115bb3de42dcc/Linux Fundamentals/Package-Management.pdf -------------------------------------------------------------------------------- /Linux Fundamentals/file-owner-permissions.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rohanmistry231/DevOps-Learning/a07cb528483432706e9b6d64cac115bb3de42dcc/Linux Fundamentals/file-owner-permissions.pdf -------------------------------------------------------------------------------- /Linux Fundamentals/passwd-file-explained.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rohanmistry231/DevOps-Learning/a07cb528483432706e9b6d64cac115bb3de42dcc/Linux Fundamentals/passwd-file-explained.pdf -------------------------------------------------------------------------------- /Linux Fundamentals/privilege-escalation.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rohanmistry231/DevOps-Learning/a07cb528483432706e9b6d64cac115bb3de42dcc/Linux Fundamentals/privilege-escalation.pdf -------------------------------------------------------------------------------- /Linux Fundamentals/ssh-advanced.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rohanmistry231/DevOps-Learning/a07cb528483432706e9b6d64cac115bb3de42dcc/Linux Fundamentals/ssh-advanced.pdf -------------------------------------------------------------------------------- /Organization & Projects/1-introduction.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rohanmistry231/DevOps-Learning/a07cb528483432706e9b6d64cac115bb3de42dcc/Organization & Projects/1-introduction.pdf -------------------------------------------------------------------------------- /Organization & Projects/10-CVE.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rohanmistry231/DevOps-Learning/a07cb528483432706e9b6d64cac115bb3de42dcc/Organization & Projects/10-CVE.pdf -------------------------------------------------------------------------------- /Organization & Projects/11-CVSS.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rohanmistry231/DevOps-Learning/a07cb528483432706e9b6d64cac115bb3de42dcc/Organization & Projects/11-CVSS.pdf -------------------------------------------------------------------------------- /Organization & Projects/12-CISA.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rohanmistry231/DevOps-Learning/a07cb528483432706e9b6d64cac115bb3de42dcc/Organization & Projects/12-CISA.pdf -------------------------------------------------------------------------------- /Organization & Projects/13-CWE.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rohanmistry231/DevOps-Learning/a07cb528483432706e9b6d64cac115bb3de42dcc/Organization & Projects/13-CWE.pdf -------------------------------------------------------------------------------- /Organization & Projects/2-OWASP.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rohanmistry231/DevOps-Learning/a07cb528483432706e9b6d64cac115bb3de42dcc/Organization & Projects/2-OWASP.pdf -------------------------------------------------------------------------------- /Organization & Projects/3-OWASP-ZAP.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rohanmistry231/DevOps-Learning/a07cb528483432706e9b6d64cac115bb3de42dcc/Organization & Projects/3-OWASP-ZAP.pdf -------------------------------------------------------------------------------- /Organization & Projects/4-OWASP-Top10.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rohanmistry231/DevOps-Learning/a07cb528483432706e9b6d64cac115bb3de42dcc/Organization & Projects/4-OWASP-Top10.pdf -------------------------------------------------------------------------------- /Organization & Projects/5-OWASP-CHEATSHEET.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rohanmistry231/DevOps-Learning/a07cb528483432706e9b6d64cac115bb3de42dcc/Organization & Projects/5-OWASP-CHEATSHEET.pdf -------------------------------------------------------------------------------- /Organization & Projects/7-CIS-Benchmark.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rohanmistry231/DevOps-Learning/a07cb528483432706e9b6d64cac115bb3de42dcc/Organization & Projects/7-CIS-Benchmark.pdf -------------------------------------------------------------------------------- /Organization & Projects/8-CIS-Controls.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rohanmistry231/DevOps-Learning/a07cb528483432706e9b6d64cac115bb3de42dcc/Organization & Projects/8-CIS-Controls.pdf -------------------------------------------------------------------------------- /Readme.md: -------------------------------------------------------------------------------- 1 | # DevSecOps Course Repository 2 | 3 | Welcome to the DevSecOps Course Repository. This repository contains all the materials and topics covered in the DevSecOps course on Udemy. Below you will find a list of topics, each with its own folder and detailed README.md file. 4 | 5 | ## Table of Contents 6 | 7 | 1. [DevSecOps](./DevSecOps/) 8 | 2. [Organization & Projects](./Organization%20&%20Projects/) 9 | 3. [Linux Fundamentals](./Linux%20Fundamentals/) 10 | 4. [Docker](./Docker/) 11 | 5. [Terraform](./Terraform/) 12 | 6. [Jenkins](./Jenkins/) 13 | 7. [Testing, Tooling and Principles](./Testing%2%20Tooling%20and%Principles/) 14 | 8. [YAML](./YAML/) 15 | 16 | ## Overview 17 | 18 | This repository is designed to help you understand and implement DevSecOps practices effectively. Each topic is covered in its own directory with detailed explanations, examples, and hands-on exercises. 19 | 20 | Feel free to contribute by submitting issues or pull requests. 21 | 22 | ## Contributing 23 | 24 | 1. Fork the repository 25 | 2. Create your feature branch (`git checkout -b feature/AmazingFeature`) 26 | 3. Commit your changes (`git commit -m 'Add some AmazingFeature'`) 27 | 4. Push to the branch (`git push origin feature/AmazingFeature`) 28 | 5. Open a Pull Request 29 | -------------------------------------------------------------------------------- /SUMMARY.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rohanmistry231/DevOps-Learning/a07cb528483432706e9b6d64cac115bb3de42dcc/SUMMARY.pdf -------------------------------------------------------------------------------- /Terraform/2-Terraform-Recommendations.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rohanmistry231/DevOps-Learning/a07cb528483432706e9b6d64cac115bb3de42dcc/Terraform/2-Terraform-Recommendations.pdf -------------------------------------------------------------------------------- /Terraform/Terraform.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rohanmistry231/DevOps-Learning/a07cb528483432706e9b6d64cac115bb3de42dcc/Terraform/Terraform.pdf -------------------------------------------------------------------------------- /Terraform/backend.tf: -------------------------------------------------------------------------------- 1 | terraform { 2 | backend "s3" { 3 | bucket = "projectdevsecops" 4 | key = "aws/s3" 5 | region = "ap-south-1" 6 | } 7 | } 8 | 9 | -------------------------------------------------------------------------------- /Terraform/main.tf: -------------------------------------------------------------------------------- 1 | resource "aws_s3_bucket" "my_bucket" { 2 | bucket = "devsecopsfoundations" 3 | acl = "private" 4 | } 5 | -------------------------------------------------------------------------------- /Terraform/main.tf.resolved: -------------------------------------------------------------------------------- 1 | resource "aws_kms_key" "my_key" { 2 | description = "This key is used to encrypt bucket objects" 3 | deletion_window_in_days = 10 4 | } 5 | 6 | 7 | 8 | 9 | resource "aws_s3_bucket" "my_bucket" { 10 | bucket = "devsecopsfoundations" 11 | } 12 | 13 | resource "aws_s3_bucket_public_access_block" "my_bucket" { 14 | bucket = aws_s3_bucket.my_bucket.id 15 | 16 | block_public_acls = true 17 | block_public_policy = true 18 | ignore_public_acls = true 19 | restrict_public_buckets = true 20 | } 21 | 22 | 23 | resource "aws_s3_bucket_server_side_encryption_configuration" "my_bucket" { 24 | bucket = aws_s3_bucket.my_bucket.id 25 | 26 | rule { 27 | apply_server_side_encryption_by_default { 28 | kms_master_key_id = aws_kms_key.my_key.arn 29 | sse_algorithm = "aws:kms" 30 | } 31 | } 32 | } 33 | 34 | 35 | 36 | 37 | 38 | 39 | 40 | 41 | 42 | #resource "aws_s3_bucket" "my_bucket" { 43 | # bucket = "devsecopsfoundations" 44 | # acl = "private" 45 | # block_public_acls = true 46 | # restrict_public_buckets = true 47 | # block_public_policy = true 48 | # ignore_public_acls = true 49 | #} 50 | -------------------------------------------------------------------------------- /Terraform/provider.tf: -------------------------------------------------------------------------------- 1 | terraform { 2 | required_version = ">=1.4.6, <1.5" 3 | required_providers { 4 | aws = { 5 | source = "hashicorp/aws" 6 | version = "3.45.0" 7 | } 8 | } 9 | } 10 | 11 | provider "aws" { 12 | region = "ap-south-1" 13 | # Additional provider configuration options, if needed 14 | } 15 | 16 | -------------------------------------------------------------------------------- /Testing, Tooling and Priciples/1-introduction.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rohanmistry231/DevOps-Learning/a07cb528483432706e9b6d64cac115bb3de42dcc/Testing, Tooling and Priciples/1-introduction.pdf -------------------------------------------------------------------------------- /Testing, Tooling and Priciples/2-SAST.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rohanmistry231/DevOps-Learning/a07cb528483432706e9b6d64cac115bb3de42dcc/Testing, Tooling and Priciples/2-SAST.pdf -------------------------------------------------------------------------------- /Testing, Tooling and Priciples/3-DAST.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rohanmistry231/DevOps-Learning/a07cb528483432706e9b6d64cac115bb3de42dcc/Testing, Tooling and Priciples/3-DAST.pdf -------------------------------------------------------------------------------- /Testing, Tooling and Priciples/4-SCA.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rohanmistry231/DevOps-Learning/a07cb528483432706e9b6d64cac115bb3de42dcc/Testing, Tooling and Priciples/4-SCA.pdf -------------------------------------------------------------------------------- /Testing, Tooling and Priciples/5-Penetration-Testing.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rohanmistry231/DevOps-Learning/a07cb528483432706e9b6d64cac115bb3de42dcc/Testing, Tooling and Priciples/5-Penetration-Testing.pdf -------------------------------------------------------------------------------- /Testing, Tooling and Priciples/6-Vulnerability-Assesment.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rohanmistry231/DevOps-Learning/a07cb528483432706e9b6d64cac115bb3de42dcc/Testing, Tooling and Priciples/6-Vulnerability-Assesment.pdf -------------------------------------------------------------------------------- /Testing, Tooling and Priciples/7-key-security-principles.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rohanmistry231/DevOps-Learning/a07cb528483432706e9b6d64cac115bb3de42dcc/Testing, Tooling and Priciples/7-key-security-principles.pdf -------------------------------------------------------------------------------- /Testing, Tooling and Priciples/sastforjsapplication.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rohanmistry231/DevOps-Learning/a07cb528483432706e9b6d64cac115bb3de42dcc/Testing, Tooling and Priciples/sastforjsapplication.pdf -------------------------------------------------------------------------------- /YAML/01-yaml-basic.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rohanmistry231/DevOps-Learning/a07cb528483432706e9b6d64cac115bb3de42dcc/YAML/01-yaml-basic.pdf -------------------------------------------------------------------------------- /YAML/02-yaml-devsecops-pipeline.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rohanmistry231/DevOps-Learning/a07cb528483432706e9b6d64cac115bb3de42dcc/YAML/02-yaml-devsecops-pipeline.pdf --------------------------------------------------------------------------------