A production-style Task Management REST API built using:
- Node.js + TypeScript
- PostgreSQL
- Docker & Docker Compose
- Python automation scripts
- DevSecOps best practices
- GitHub Actions CI pipeline
This project demonstrates strong skills in DevOps, DevSecOps, containerization, API development, and automation using Python.
This API allows users to manage tasks with the following lifecycle:
pendingin_progressdone
The project is built using a clean architecture, strong security practices, automated workflows, and a production-ready local development environment.
| Layer | Technology |
|---|---|
| Backend | Node.js + Express + TypeScript |
| Database | PostgreSQL |
| DevOps Automation | Python (CLI + Security scripts) |
| Containers | Docker + docker-compose |
| CI/CD | GitHub Actions |
| Security | Helmet, CORS, Rate limiting, JWT, gitleaks, trivy, bandit, npm audit |
This project integrates security at every stage (“shift-left”):
- ESLint (TypeScript rules)
- Prettier formatting
- TypeScript strict mode
- Jest + Supertest
- Unit tests + integration tests
- Coverage thresholds enforced in CI
npm auditfor JS dependencies- Python
banditfor DevOps scripts gitleaksfor secret scanningtrivyfor Docker image vulnerability scanning
- Helmet (HTTP headers)
- CORS restrictions
- Rate limiting (brute force protection)
- Centralized error handling
- Non-root Docker containers
- Environment-based secrets
python scripts/manage.py up