Skip to content
View Gurmann11's full-sized avatar

Block or report Gurmann11

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
Gurmann11/README.md

Hi, I'm Gurmann Singh Dhillon 👋

🔐 DevSecOps Enthusiast | Navi Mumbai, India

🛠️ What I Work With

Jenkins Docker Trivy SonarQube Gitleaks Python AWS Linux

🚀 About Me

  • 🔧 Building security-first CI/CD pipelines with Jenkins, Docker, Trivy, SonarQube & Gitleaks
  • 🛡️ Passionate about embedding security at every stage of software delivery
  • 🎓 B.Sc IT 2026 — Pillai HOC College, Navi Mumbai
  • 💼 Actively looking for entry-level DevSecOps / DevOps roles

📌 Featured Projects

🔐 Secure CI/CD Pipeline with SAST, Secret Scanning & Kill Switch

Jenkins | Docker | SonarQube | Trivy | Gitleaks | Python (Flask)

Built a security-first pipeline — Gitleaks scans secrets, SonarQube does static analysis, Trivy scans Docker images. Kill switch stops deployment on HIGH/CRITICAL CVEs. Hit a real CRITICAL vulnerability, fixed it, redeployed clean.

🔗 View Repo

🐳 Dockerized Flask App with CI/CD & Security Scanning

Jenkins | Docker | Trivy | Python (Flask) | Git

Production-grade Jenkins pipeline — automated build, Trivy CVE scanning on every run, RBAC-hardened Jenkins with no anonymous access.

🔗 View Repo

📫 Connect

LinkedIn GitHub

Pinned Loading

  1. ci-cd-pipeline-jenkins-trivy-docker ci-cd-pipeline-jenkins-trivy-docker Public

    Dockerized Flask app with Jenkins CI/CD pipeline and Trivy CVE scanning — built to learn real-world DevSecOps practices

    Python

  2. devsecops-security-pipeline devsecops-security-pipeline Public

    Security-first CI/CD pipeline — Gitleaks secret scanning, SonarQube SAST, Trivy CVE scanning with kill switch. Real CRITICAL CVE detected, fixed, and redeployed. Defence-in-depth across every stage.

    Python