What does this project do?

I built a full CI/CD pipeline using AWS CodePipeline and CodeBuild, deploying a containerized application into ECS. To integrate security, I added vulnerability scans (using Trivy) and IAM-based least privilege permissions for pipeline stages.

Why does this even matter?

Employers want engineers who can accelerate development without sacrificing security. This project shows how I integrate DevSecOps practices — catching vulnerabilities early and deploying applications the right way.

Highlights / Basic Workflow

Source → Build → Scan → Deploy pipeline
Automated container vulnerability scanning
Zero hard-coded credentials: all secrets stored in AWS Secrets Manager

Demo Video

Embedded YouTube demo coming soon

More Details

Detailed walkthrough, architecture diagrams, and implementation notes will be added here.
(Coming soon: in-depth writeup and code samples.)