cicd-security
CommunityHardening CI/CD pipelines for secure software
Software Engineering#devsecops#supply-chain#ci-cd#secrets-management#security-hardening#artifact-signing#runner-isolation
Authorthesammykins
Version1.0.0
Installs0
System Documentation
What problem does it solve?
CI/CD pipelines frequently suffer from insecure secret handling, weak supply chain controls, non-isolated runners, and unverified artifacts, which together heighten risk across builds and deployments.
Core Features & Use Cases
- Secrets management and rotation across CI configurations and logs.
- Runner isolation with ephemeral environments and restricted network access.
- Artifact signing, provenance checks, and secure supply chain governance.
- Use Case: protect GitHub Actions workflows from credential leakage and unauthorized deployments.
Quick Start
Enable least-privilege CI identities, enforce secrets management, and isolate runners within your pipeline.
Dependency Matrix
Required Modules
None requiredComponents
Standard package💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: cicd-security Download link: https://github.com/thesammykins/dotfiles/archive/main.zip#cicd-security Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.