CI/CD Pipeline Builder
Design, optimize, and secure CI/CD pipelines across GitHub Actions and GitLab CI. Builds workflows, debugs flaky tests and failures, adds SAST/DAST/SCA scanning, speeds up builds with caching and matrix sharding, and hardens pipelines with OIDC and secret management.
This skill covers the full DevSecOps pipeline lifecycle: scaffolding new workflows, debugging failures and timeouts, implementing SAST/DAST/SCA security gates, optimizing build time with caching and parallelization, securing pipelines with OIDC instead of long-lived secrets, and setting up matrix and test-sharding strategies.
When to use
Use when creating or debugging CI/CD workflows, adding security scanning, speeding up slow builds, or replacing static secrets with OIDC in GitHub Actions or GitLab CI.
Examples
OIDC to AWS
Drop long-lived keys
Convert this GitHub Actions deploy job from static AWS keys to OIDC with a least-privilege IAM role
Speed up builds
Cache and shard tests
Our CI takes 22 minutes — add dependency caching and split the test job into a 4-way matrix to cut wall time