{"id":31692488,"url":"https://github.com/pk2731/enterprise-cicd-template","last_synced_at":"2026-04-08T20:51:24.508Z","repository":{"id":317561303,"uuid":"1067925367","full_name":"pk2731/enterprise-cicd-template","owner":"pk2731","description":"🚀 Enterprise-grade CI/CD template with zero-human production access, comprehensive quality gates, and Kubernetes deployments","archived":false,"fork":false,"pushed_at":"2025-10-01T16:19:54.000Z","size":50,"stargazers_count":0,"open_issues_count":0,"forks_count":0,"subscribers_count":0,"default_branch":"main","last_synced_at":"2025-10-12T11:22:36.547Z","etag":null,"topics":["ci-cd","devops","docker","enterprise","github-actions","kubernetes","quality-gates","security","sonarqube","template"],"latest_commit_sha":null,"homepage":null,"language":"Shell","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/pk2731.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":".github/CODEOWNERS","security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null}},"created_at":"2025-10-01T15:32:14.000Z","updated_at":"2025-10-01T16:19:57.000Z","dependencies_parsed_at":"2025-10-01T18:21:31.267Z","dependency_job_id":"ff3c5c63-d480-4f62-a49f-1bb6bceff12b","html_url":"https://github.com/pk2731/enterprise-cicd-template","commit_stats":null,"previous_names":["pk2731/enterprise-cicd-template"],"tags_count":0,"template":true,"template_full_name":null,"purl":"pkg:github/pk2731/enterprise-cicd-template","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/pk2731%2Fenterprise-cicd-template","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/pk2731%2Fenterprise-cicd-template/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/pk2731%2Fenterprise-cicd-template/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/pk2731%2Fenterprise-cicd-template/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/pk2731","download_url":"https://codeload.github.com/pk2731/enterprise-cicd-template/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/pk2731%2Fenterprise-cicd-template/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":31573788,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-04-08T14:31:17.711Z","status":"ssl_error","status_checked_at":"2026-04-08T14:31:17.202Z","response_time":54,"last_error":"SSL_connect returned=1 errno=0 peeraddr=140.82.121.5:443 state=error: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["ci-cd","devops","docker","enterprise","github-actions","kubernetes","quality-gates","security","sonarqube","template"],"created_at":"2025-10-08T14:53:29.452Z","updated_at":"2026-04-08T20:51:24.483Z","avatar_url":"https://github.com/pk2731.png","language":"Shell","funding_links":[],"categories":[],"sub_categories":[],"readme":"# 🚀 Enterprise CI/CD Template\n\n\u003e **Ready to use enterprise-grade CI/CD for your next project? Click \"Use this template\" above! 👆**\n\n## 🎯 Overview\n\nThis is a comprehensive **enterprise-grade CI/CD template** that enforces **zero-human access to production** while maintaining the highest standards of code quality, security, and reliability.\n\n## 📖 How to Use This Template\n\n### Option 1: GitHub Web Interface\n1. **Click \"Use this template\"** button above\n2. **Create your new repository**\n3. **Follow the [Complete Usage Guide →](./TEMPLATE_USAGE_GUIDE.md)**\n\n### Option 2: GitHub CLI\n```bash\ngh repo create your-project-name --template pk2731/enterprise-cicd-template --public --clone\ncd your-project-name\n# Follow the usage guide for setup\n```\n\n**👉 [READ THE COMPLETE USAGE GUIDE](./TEMPLATE_USAGE_GUIDE.md) 👈**\n\n## 🌟 Key Features\n\n- **🔒 Zero-Human Production Access** - All deployments are automated\n- **📊 Comprehensive Quality Gates** - SonarQube integration with 85% coverage requirement\n- **🛡️ Security-First Approach** - Automated vulnerability scanning and secret management\n- **☸️ Kubernetes Production Deployments** - Zero-downtime rolling updates\n- **📈 Multi-Environment Pipeline** - Dev → Staging → Production workflow\n- **🔍 Mandatory Code Reviews** - CODEOWNERS with required approvals\n- **📋 Detailed PR Templates** - Comprehensive checklists for all changes\n\n## 🏗️ Architecture\n\n```\nFeature Branch → Quality Gates → Build → Dev → Staging → Production\n     ↓              ↓            ↓       ↓      ↓         ↓\n   PR Created   All Tests     Docker   Docker  Blue-Green  Kubernetes\n   Template     Pass          Build    Deploy  Deploy     Rolling Update\n   Required     Coverage\u003e80%   Push     Health  E2E Tests  Health Check\n   Code Review  Security Scan  Registry Check   Load Test  Auto-Rollback\n```\n\n## 📁 Repository Structure\n\n```\n├── .github/\n│   ├── workflows/\n│   │   └── ci-cd.yml              # Main CI/CD pipeline\n│   ├── pull_request_template.md   # Mandatory PR checklist\n│   ├── CODEOWNERS                 # Required reviewers\n│   └── ISSUE_TEMPLATE/\n│       └── bug_report.yml         # Structured bug reports\n├── k8s/production/\n│   ├── namespace.yaml             # Production namespace + policies\n│   ├── deployment.yaml            # High-security deployment\n│   ├── service.yaml               # Service configuration\n│   ├── ingress.yaml               # SSL + security headers\n│   ├── configmap.yaml             # Non-sensitive config\n│   ├── secret.yaml                # Sensitive data template\n│   └── hpa.yaml                   # Auto-scaling configuration\n├── scripts/\n│   ├── deploy-dev.sh              # Development deployment\n│   ├── deploy-staging.sh          # Staging deployment (blue-green)\n│   └── health-check.sh            # Universal health checker\n├── sonar-project.properties       # SonarQube configuration\n└── README.md                      # This file\n```\n\n## 🚦 Quality Gates\n\n### ✅ Required Checks (All must pass)\n- **Linting** (ESLint/Prettier)\n- **Unit Tests** (80%+ coverage)\n- **Integration Tests**\n- **Security Vulnerability Scan**\n- **SonarQube Quality Gate** (85%+ coverage)\n- **Performance Tests**\n- **Build Verification**\n\n### 🚫 Deployment Blockers\n- Failed automated tests\n- Security vulnerabilities\n- Code coverage below threshold\n- Incomplete PR checklist\n- Missing required approvals\n- Hardcoded secrets detected\n\n## 🚀 Getting Started\n\n### 📖 **Complete Setup Guide**\n\n👉 **[READ THE COMPLETE USAGE GUIDE](./TEMPLATE_USAGE_GUIDE.md)** 👈\n\nFor detailed step-by-step instructions on how to use this template, customize it for your project, and set up all the integrations.\n\n### ⚡ Quick Start\n\n1. **Click \"Use this template\"** → Create new repository\n2. **Clone your new repo** locally\n3. **Follow the [Template Usage Guide](./TEMPLATE_USAGE_GUIDE.md)** for complete setup\n4. **Configure GitHub secrets** for your integrations\n5. **Set up branch protection rules** as described in the guide\n6. **Start coding** with enterprise-grade CI/CD!\n\n## 🔄 Workflow\n\n### Development Flow\n```bash\ngit checkout -b feature/JIRA-123-new-feature\n# Make changes\ngit commit -m \"feat: add new feature\"\ngit push origin feature/JIRA-123-new-feature\n# Open PR to develop\n```\n\n### Deployment Flow\n- **develop** → Automatic deployment to **Development**\n- **staging** → Blue-green deployment to **Staging** + E2E tests\n- **main** → Zero-downtime Kubernetes deployment to **Production**\n\n## 📊 Monitoring \u0026 Observability\n\n### Built-in Health Checks\n- Application health endpoints\n- Database connectivity\n- External service dependencies\n- Performance metrics\n- Security headers validation\n\n### Automatic Scaling\n- **HPA** based on CPU (70%) and Memory (80%)\n- **Min replicas**: 3 (high availability)\n- **Max replicas**: 20 (load handling)\n\n## 🔒 Security Features\n\n### Production Security\n- **Read-only root filesystem**\n- **Non-root user execution**\n- **Resource limits enforced**\n- **Network policies**\n- **Security context constraints**\n\n### Secrets Management\n- **No hardcoded secrets** in code\n- **Kubernetes secrets** for sensitive data\n- **Automatic secret scanning**\n- **Base64 encoding required**\n\n## 🛠️ Customization\n\n### Adding New Services\n\n1. **Update Kubernetes manifests** in `k8s/production/`\n2. **Modify deployment scripts** in `scripts/`\n3. **Add health checks** to `scripts/health-check.sh`\n4. **Update CODEOWNERS** for new components\n\n### Different Tech Stacks\n\nThis template supports:\n- **Node.js/TypeScript** (default)\n- **Python** (update workflow)\n- **Go** (update workflow)\n- **Java** (update workflow)\n\nSimply modify `.github/workflows/ci-cd.yml` for your language.\n\n## 🐛 Troubleshooting\n\n### Common Issues\n\n**Quality Gates Failing?**\n```bash\n# Check SonarQube logs\ncurl -u token: \"${SONAR_HOST_URL}/api/qualitygates/project_status?projectKey=${PROJECT_KEY}\"\n\n# Run tests locally\nnpm run test:coverage\n```\n\n**Kubernetes Deployment Issues?**\n```bash\n# Check deployment status\nkubectl rollout status deployment/app-deployment -n production\n\n# View pod logs\nkubectl logs -l app=yourapp -n production\n\n# Check events\nkubectl get events -n production --sort-by='.lastTimestamp'\n```\n\n**GitHub Actions Failing?**\n1. Check workflow logs in Actions tab\n2. Verify all secrets are set correctly\n3. Validate YAML syntax\n4. Check branch protection rules\n\n## 📈 Best Practices\n\n### Code Quality\n- **Write tests first** (TDD approach)\n- **Keep functions small** and focused\n- **Document complex logic** with comments\n- **Follow naming conventions**\n\n### Security\n- **Never commit secrets**\n- **Validate all inputs**\n- **Use parameterized queries**\n- **Keep dependencies updated**\n\n### Performance\n- **Monitor response times**\n- **Optimize database queries**\n- **Use caching strategies**\n- **Monitor resource usage**\n\n## 🤝 Contributing\n\n1. **Fork** the template repository\n2. **Create** a feature branch\n3. **Make** your improvements\n4. **Test** thoroughly\n5. **Submit** a pull request\n\n## 📄 License\n\nThis template is released under the MIT License. See [LICENSE](LICENSE) for details.\n\n---\n\n## 🎉 Success Metrics\n\nWith this template, you can expect:\n\n- **🔒 100% Automated Production Deployments**\n- **📊 Consistent 85%+ Code Coverage**\n- **🛡️ Zero Security Vulnerabilities in Production**\n- **⚡ Sub-200ms API Response Times**\n- **📈 99.9% Uptime with Auto-scaling**\n- **🔄 Zero-downtime Deployments**\n\n**Ready to deploy enterprise-grade applications with confidence!** 🚀","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fpk2731%2Fenterprise-cicd-template","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fpk2731%2Fenterprise-cicd-template","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fpk2731%2Fenterprise-cicd-template/lists"}