Complete DevSecOps + GitOps Pipeline on AWS using Jenkins, Kubernetes, SonarQube & ArgoCD

In this video, I walk through building a complete real-world DevSecOps + GitOps pipeline from scratch on AWS — not a demo, not a theory slide, but a fully working production-style system. This project shows how modern teams can combine security, quality, automation and Kubernetes-native delivery into one continuous feedback loop. What you’ll see in this project I start by provisioning infrastructure on AWS EC2 and EKS, then connect everything into a real CI/CD chain using: Jenkins CI/CD for automated pipelines SonarQube for static code analysis and quality gates OWASP Dependency Check to detect vulnerable libraries Trivy for filesystem and container vulnerability scanning Docker & Docker Hub for image versioning and delivery Kubernetes (EKS) for production-grade orchestration ArgoCD (GitOps) for automatic deployment via Git state Prometheus & Grafana for monitoring Email notifications for pipeline feedback 🔁 How the Pipeline Works Developer pushes code to GitHub Jenkins CI job starts automatically Source code is scanned with Trivy, OWASP & SonarQube Quality Gates enforce security and reliability standards Docker images are built and pushed to Docker Hub Jenkins CD updates Kubernetes manifests in Git ArgoCD detects the change and deploys it to EKS Prometheus & Grafana monitor the running system Jenkins sends success/failure email notifications No kubectl apply. No manual deployment. Only declared state and automatic convergence.