DevOps & Infra Skill
Bash Defensive Patterns
Master defensive Bash programming techniques for production-grade scripts.
$15
GitHub Actions Templates
Create production-ready GitHub Actions workflows for automated testing, building, and…
A library of production-ready GitHub Actions workflows for automated testing, building, and deploying across tech stacks. It applies CI/CD principles: shift left, fail fast, pipeline as code, and defense in depth: to real YAML templates for matrix testing, Docker build-and-push, Kubernetes deploy, and security scanning. Every template uses pinned action versions, scoped permissions, and dependency caching out of the box.
$15 one-time
Add to a kit → Prices include 20% VAT. · Forged on real agency work · one-time, no lock-in
- Type Skill
- Category DevOps & Infra
- Delivery Email · instant
- License One-time
Inside the run · no black box
See the actual work before you buy it.
The workflow construction order the skill follows when it builds a GitHub Actions pipeline:
- Designs triggers shift-left: lint and unit tests run on pull_request before anything expensive, fail-fast matrix strategy stops sibling jobs on first failure, and the needs chain guarantees no build starts on failing tests.
- Speeds up the test job with caching and matrices: setup-node with the npm cache, version matrices (Node 18 and 20, or OS by Python version grids) so compatibility breaks surface in CI rather than in user reports.
- Builds and pushes images immutably: docker metadata-action derives tags from the commit SHA and semver, build cache rides on type=gha, every action is pinned to a version (checkout@v4, never @latest) against supply chain drift.
- Layers security in depth: minimal permissions scopes on GITHUB_TOKEN, Trivy filesystem scan uploading SARIF to GitHub Security, Snyk on dependencies, so no single control is the only line of defense.
- Extracts reusable workflows: shared test patterns become workflow_call definitions with typed inputs and explicit secrets, so fifteen repos reference one workflow instead of carrying fifteen drifting copies.
- Gates production with environments: the deploy job binds to a protected environment requiring approval, and a notification step reports the outcome to the team channel on success or failure.
One power source. 6 lines out.
github-actions-templates · core
core active · 6 lines
- ✓ setting up automated lint
Setting up automated lint, test, and coverage on every push and PR
- ✓ building docker images and
Building Docker images and pushing them to a container registry
- ✓ deploying to kubernetes
Deploying to Kubernetes clusters with verification steps
- ✓ running matrix builds ac…
Running matrix builds across multiple OS and language versions
- ✓ adding security scanning
Adding security scanning with Trivy and Snyk to the pipeline
- ✓ gating production deploys
Gating production deploys behind environment approvals
Yours to keep.
Drag time forward. Watch what stays.
Forever
That's what owning means.
The rented stack
ai writing tool: subscription
expired · access lostanalytics suite: subscription
expired · access lostdesign platform: subscription
expired · access lost(nothing left)
Your forge
-
Ship a working CI/CD pipeline in minutes from battle-tested templates
license: perpetual -
Catch bugs and vulnerabilities early with shift-left lint, test, and security scans
license: perpetual -
Speed up builds with dependency caching and parallel matrix jobs
license: perpetual -
Harden your supply chain with pinned versions, scoped tokens, and approval gates
license: perpetual
subscriptions expire · deeds don't
Everything in the box.
Pick a piece up. Watch it work.
Test workflow template with matrix versions and coverage upload
6 parts · one working system · ships instantly by email
This wasn't forged for everyone.
- Not for you if you'd rather rent a tool than own one.
- Not for you if you want someone else to run your stack.
- Not for you if you're happy guessing.
DevOps engineers and developers who want secure, reusable GitHub Actions pipelines without writing CI/CD YAML from scratch.
then this was forged for you.Works with
Universal by design: these run in any AI. Delivered in the open Agent Skills + MCP format (native in Claude); ChatGPT, Gemini, Cursor and Copilot adapt the same files their own way.
- Claude Native format
- ChatGPT Adapts via open standards
- Gemini Adapts via open standards
- Cursor Adapts via open standards
- Copilot Adapts via open standards
Catch what's on your mind.
the air is clear. nothing between you and the forge.
catch a spark: the forge will answer
-
I deploy to a plain VPS, not Kubernetes, are these templates still relevant?
Yes. The test, Docker build-and-push, matrix, and security-scanning workflows are deployment-target agnostic; the Kubernetes deploy is just one template in the library.
-
There's no shortage of free CI YAML on blog posts, what comes pre-wired in these templates that those snippets leave out?
Every template ships with pinned action versions, scoped permissions, dependency caching, and environment approval gates already wired in. Supply-chain hardening and build speed are the default, not an afterthought you bolt on later.
-
Does it cover GitLab CI or Jenkins too?
No, this library is GitHub Actions only. There's a separate patterns product for GitLab, and Jenkins is out of scope entirely.
-
How is it delivered?
By email right after purchase: ready to run, downloaded instantly, no setup wait.
-
One-time or subscription?
A one-time purchase; no subscription or hidden fees. VAT (20%) is included.
-
Can I get a refund?
As a digital product, it can’t be refunded once downloaded. That’s why we show exactly what’s inside and who it’s for, right here.