Recommended or example toolchains for CI/CD pipeline in Docker environment

Working on setting up a CI/CD pipeline for DevSecOps, to include automated security testing via additional tools or working into the unit/integration tests. Development environment is isolated, so cloud options aren’t available, and GitHub Enterprise is being used.

Any ideas, suggestions, or info is greatly appreciated. Success / horror stories would help as well. :slight_smile:

I’m not very well-known into SecOps but have you taken a look at Jenkins already?
I personally use the GitLab CI for my pipelines but I see a lot of people use stuff like Jenkins too.