# ci-cd

Build production-grade GitHub Actions CI/CD pipelines — from first workflow to reusable workflows, matrix builds, and deployment gates.

Build production-grade Terraform infrastructure — project structure, module design, state management, testing, and CI/CD pipeline integration.

Add automated dependency vulnerability scanning to your CI pipeline using Trivy and Grype. Catch known CVEs before they hit production.

Eliminate duplicated CI/CD logic across repositories using GitHub Actions reusable workflows and composite actions with real-world examples.

Harden GitHub Actions security with least-privilege permissions, OIDC federation, SHA-pinned actions, and secrets management best practices.

How to write unit and integration tests for Terraform modules using Terratest — because untested infrastructure is a liability.

Master GitHub Actions matrix builds to test across multiple OS versions, language versions, and configurations in parallel.

Shrink Docker images from 1.2GB to 45MB using multi-stage builds. Production Dockerfiles for Node.js, Go, and Python with real size comparisons.

Cut your GitLab CI pipeline time from 25 minutes to 6 with smart caching, DAG dependency graphs, parallel test splitting, and stage optimization.

Battle-tested patterns for writing Helm charts that survive production — covering values design, template structure, lifecycle hooks, and chart testing.

Stop manually bumping versions. Use conventional commits and release-please to automate versioning, changelogs, and releases.

Sign and verify your container images with Sigstore Cosign to prevent supply chain attacks — with keyless signing, SBOM attestation, and Kubernetes admission enforcement.