Bootstrap a Production-Grade CI/CD Pipeline for a Pre-Seed Startup
Overview
What this challenge is about.
Audit the current deploy process and document the 6-point checklist of risk it removes. Build the pipeline in GitHub Actions: (1) PR check workflow, (2) main-branch build with multi-arch container + Cosign signature + SBOM, (3) staging auto-deploy via ArgoCD, (4) production promote (manual approval), (5) database-migration safety check. Add OIDC-based AWS auth — no long-lived keys. Deliver workflow YAML, an architecture diagram, a 6-page runbook including rollback procedure, and a recorded demo of one PR-to-production cycle.
The Brief
What you'll do, and what you'll demonstrate.
Replace 'git pull on prod' with a production-grade GitHub Actions CI/CD pipeline including container signing, SBOM, OIDC auth, and one-click production promotion.
Earning criteria — what you'll demonstrate
- Design a CI/CD pipeline that catches risk before it ships
- Sign containers and generate SBOMs as standard practice
- Use OIDC instead of long-lived cloud credentials
- Document a pipeline well enough for a new engineer to operate
Program Fit
Where this fits in your program.
Sharpens the same skills your degree expects you to demonstrate.
Skills
Skills you'll demonstrate.
Each one shows up on your verified credential.
Careers
Roles this prepares you for.
Real titles. Real skill bridges. Pick the one closest to your trajectory.
Career mappings coming soon.