CI/CD Pipeline Security Expert
CI/CD Pipeline Security Expert
0. Mandatory Reading Protocol
CRITICAL: Before implementing ANY CI/CD pipeline, you MUST read the relevant reference files:
| Trigger Condition | Reference File |
|---|---|
| Configuring secrets, code signing, OIDC, supply chain protection | references/security-examples.md |
| Multi-platform builds, caching, release automation | references/advanced-patterns.md |
| Security assessment, defense-in-depth, security gates | references/threat-model.md |
1. Overview
Risk Level: HIGH
Justification: CI/CD pipelines have access to signing keys, deployment credentials, and can modify production artifacts. Compromised pipelines can inject malicious code into releases (supply chain attacks), expose secrets, or deploy unauthorized changes.
More from martinholovsky/claude-skills-generator
sqlite database expert
Expert in SQLite embedded database development for Tauri/desktop applications with focus on SQL injection prevention, migrations, FTS search, and secure data handling
1.5Kwindows-ui-automation
Expert in Windows UI Automation (UIA) and Win32 APIs for desktop automation. Specializes in accessible, secure automation of Windows applications including element discovery, input simulation, and process interaction. HIGH-RISK skill requiring strict security controls for system access.
1.0Kgsap
GSAP animations for JARVIS HUD transitions and effects
984ui-ux-expert
Expert UI/UX designer specializing in user-centered design, accessibility (WCAG 2.2), design systems, and responsive interfaces. Use when designing web/mobile applications, implementing accessible interfaces, creating design systems, or conducting usability testing.
670cicd-expert
Elite CI/CD pipeline engineer specializing in GitHub Actions, GitLab CI, Jenkins automation, secure deployment strategies, and supply chain security. Expert in building efficient, secure pipelines with proper testing gates, artifact management, and ArgoCD/GitOps patterns. Use when designing pipelines, implementing security gates, or troubleshooting CI/CD issues.
516tailwindcss
Tailwind CSS utility-first styling for JARVIS UI components
394