Node.js-based Catalogue Microservice designed for cloud-native deployment with Docker, CI/CD automation, and integrated security scanning.
This service is part of a microservices architecture and includes:
- 🐳 Dockerized build
- 🔁 Jenkins + GitHub Actions CI/CD
- 🔍 SonarQube code quality analysis
- 🔐 Trivy container security scanning
- 📦 Amazon ECR image publishing
- 🤖 Dependabot dependency updates
- ☸️ Kubernetes-ready deployment
- Node.js
- Docker
- Jenkins
- GitHub Actions (Reusable Workflows)
- SonarQube
- Trivy
- AWS ECR
- Kubernetes
catalogue/
├── .github/workflows/ # GitHub Actions workflows
├── db/ # Database related files
├── Dockerfile # Container build definition
├── Jenkinsfile # Jenkins pipeline
├── server.js # Application entry point
├── package.json # Node dependencies
├── sonar-project.properties # SonarQube config
└── .security-baseline.json # Security baseline config
npm installdocker build -t catalogue-service . This repository uses:
- Reusable GitHub Actions workflow
- Jenkins Shared Library
- Automated Docker image build
- SonarQube code scan
- Trivy security scan
- Push to Amazon ECR
- Code pushed to feature/main branch
- GitHub Actions triggers reusable workflow
- SonarQube analysis runs
- Docker image builds
- Trivy scans image
- Image pushed to ECR
- Deployment triggered (if configured)
- main → Production-ready code
- feature/* → Feature development branches
Reusable workflow handles feature-based deployments.