Optimizing Spring Boot Application Security and Code Quality with a Certified Jenkins Pipeline
Keywords:
Jenkins Pipeline, Application Security, Spring Boot, GCP, Code Quality, CI/CD, Automation, Vulnerability Scanning, Operational EfficiencyAbstract
Ensuring robust security and maintaining high code quality are critical for modern applications, especially when operating in dynamic cloud environments like Google Cloud Platform (GCP). The absence of a standardized and automated approach to assessing application vulnerabilities and code integrity poses significant risks, including security breaches, operational failures, and suboptimal performance. This paper explores the implementation of a Certified Jenkins pipeline tailored for Spring Boot applications in GCP. By automating the build, test, and deployment lifecycle while integrating advanced security checks, vulnerability assessments, and quality assurance measures, this solution mitigates risks, ensures compliance with code coverage benchmarks, and enhances operational efficiency.
References
A. Takanen, J. D. Demott, C. Miller, and A. Kettunen, Fuzzing for software security testing and quality assurance. Artech House, 2018.
D. Vaughan, Cloud Native Development with Google Cloud. O'Reilly Media, Inc., 2023.
S. K. R. Thumburu, "Quality Assurance Methodologies in EDI Systems Development," Innovative Computer Sciences Journal, vol. 9, no. 1, 2023.
I. Jaju, Maximizing DevOps Scalability in Complex Software Systems. 2023.
S. Chinamanagonda, "DevSecOps: Integrating Security in DevOps Pipelines-Security becoming an integral part of DevOps practices," Innovative Computer Sciences Journal, vol. 7, no. 1, 2021.
P. Narang and P. Mittal, "Implementation of DevOps based hybrid model for project management and deployment using Jenkins automation tool with plugins," International Journal of Computer Science & Network Security, vol. 22, no. 8, pp. 249-259, 2022.
L. Talarico, K. Sörensen, G. Reniers, and J. Springael, "Pipeline security," in Securing Transportation Systems, 2015, pp. 281-311.
M. Hamid, "Advanced Secret Handling in Kubernetes Application with HashiCorp Vault," 2023.
L. Bass, I. Weber, and L. Zhu, DevOps: A software architect's perspective. Addison-Wesley Professional, 2015.
O. Kortelainen, "Infrastructure management in multicloud environments," Master's thesis, 2023.
Downloads
Published
Issue
Section
License
Copyright (c) 2024 Srinivas Adilapuram (Author)

This work is licensed under a Creative Commons Attribution-NonCommercial 4.0 International License.