Chapter 9: DevSecOps (Security)

DevOps is incomplete without **Security**. This chapter focuses on "Shifting Left" - building security into every step of your pipeline, not just at the end.

9.1

Secrets Management (Vault)

Learn to stop using .env files and start managing passwords, API keys, and certificates professionally with HashiCorp Vault.

9.2

Application & Pipeline Security

Learn to automatically scan your code (SAST), dependencies (SCA), and containers for known vulnerabilities inside your CI/CD pipeline.