Welcome to Zomeal, an advanced DevSecOps project designed to clone Zomato with enhanced security and deployment capabilities. Leveraging cutting-edge technologies like React, Node.js, Docker, Kubernetes, GitHub Actions, SonarQube, Trivy, Jenkins, and OWASP principles, Zomeal ensures a seamless, secure, and scalable dining experience.
- Project Overview
- Tech Stack
- Features
- Installation
- Usage
- Available Scripts
- Security and Testing
- CI/CD Pipeline
- Build Details
- Learn More
- License
Zomeal is your ultimate culinary guide, designed to provide a seamless experience for discovering eateries and hidden gems. With a focus on security, continuous integration, and high performance, Zomeal aims to revolutionize the way you explore and enjoy food.
- Frontend: React
- Backend: Node.js
- Containerization: Docker
- Orchestration: Kubernetes
- CI/CD: GitHub Actions
- Code Quality: SonarQube
- Vulnerability Scanning: Trivy
- Automation: Jenkins
- Security: OWASP
- Create React App: Bootstrapped for easy setup and development.
- Containerization: Docker ensures consistent environments across different stages.
- Orchestration: Kubernetes for managing and scaling clusters.
- Continuous Integration and Deployment: Automated pipelines with GitHub Actions.
- Code Quality and Security: Integrated SonarQube and Trivy for robust scanning.
- OWASP Compliance: Adherence to top security practices for web applications.
Clone the repository:
git clone https://github.com/SUGAM-ARORA/Zomeal.git
cd Zomeal
Install dependencies:
npm install
Runs the app in development mode.
Open http://localhost:3000 to view it in your browser.
The page will reload if you make edits.
You will also see any lint errors in the console.
Launches the test runner in interactive watch mode.
See the section about running tests for more information.
Builds the app for production to the build
folder.
It correctly bundles React in production mode and optimizes the build for the best performance.
Ejects the app for full control over configuration files and dependencies.
- Code Splitting: Learn More
- Analyzing the Bundle Size: Learn More
- Making a Progressive Web App: Learn More
- Advanced Configuration: Learn More
- Deployment: Learn More
- Troubleshooting
npm run build
Fails to Minify: Learn More
- SonarQube: Scans code for vulnerabilities and code smells.
- Trivy: Checks Docker images for vulnerabilities.
- OWASP Compliance: Ensures adherence to top security practices.
- GitHub Actions: Automated workflows for continuous integration and deployment.
- Jenkins: Used for advanced automation tasks.
- SonarQube and Trivy: Integrated into the pipeline for continuous security checks.
- Build Status: Automatically triggered on push and pull request events.
- Analysis: Runs SonarQube analysis for code quality.
- Scanning: Utilizes Trivy for vulnerability scanning.
- React Documentation
- Create React App Documentation
- Docker Documentation
- Kubernetes Documentation
- GitHub Actions Documentation
- SonarQube Documentation
- Trivy Documentation
This project is licensed under the MIT License.