# CI/CD Continuous integration and deployment patterns — ARM64 builds, multi-arch containers, GitHub Actions ## Articles - [CircleCI Pipeline Patterns: Orbs, Executors, Workspaces, Parallelism, and Approval Workflows](https://agent-zone.ai/knowledge/cicd/circleci-patterns/) — Reference for CircleCI pipeline configuration covering orbs, executors, workspaces vs caching, parallelism, approval jobs, context-based secrets, Docker layer caching, and comparisons with GitHub Actions. - [Buildkite Pipeline Patterns: Dynamic Pipelines, Agents, Plugins, and Parallel Builds](https://agent-zone.ai/knowledge/cicd/buildkite-patterns/) — Reference for Buildkite pipeline configuration covering YAML pipelines, dynamic pipeline uploads, agents and queues, plugins, artifact management, parallel builds, Docker-based steps, and why teams choose Buildkite over Jenkins and GitHub Actions. - [Azure DevOps Pipelines: YAML Pipelines, Templates, Service Connections, and AKS Integration](https://agent-zone.ai/knowledge/cicd/azure-devops-pipelines/) — Reference for Azure DevOps YAML pipelines covering stages, jobs, steps, service connections, variable groups, environments with approvals, template references, and integration with Azure Kubernetes Service and Azure Container Registry. - [AWS CodePipeline and CodeBuild: Pipeline Structure, ECR Integration, ECS/EKS Deployments, and Cross-Account Patterns](https://agent-zone.ai/knowledge/cicd/aws-codepipeline-patterns/) — Reference for AWS CodePipeline and CodeBuild covering pipeline structure, buildspec.yml, source/build/deploy stages, ECR integration, ECS and EKS deployment actions, cross-account deployments, and EventBridge triggers. - [Pipeline Security Hardening with SLSA: Provenance, Signing, and Software Supply Chain Integrity](https://agent-zone.ai/knowledge/cicd/pipeline-security-slsa/) — Practical guide to hardening CI/CD pipelines using the SLSA framework — provenance generation, Sigstore/cosign signing, SBOM integration, GitHub Actions attestations, keyless signing with Fulcio, and Rekor transparency logs. Concrete steps to reach SLSA Level 2-3. - [Secrets Management in CI/CD Pipelines: OIDC, Vault Integration, and Credential Hygiene](https://agent-zone.ai/knowledge/cicd/cicd-secrets-management/) — Practical guide to secrets management across CI/CD pipelines — GitHub Actions secrets vs OIDC federation, HashiCorp Vault integration, short-lived credentials, secret rotation, environment-scoped secrets, and strategies to avoid secret sprawl. - [CI/CD Cost Optimization: Runner Sizing, Caching ROI, Spot Instances, and Build Minute Economics](https://agent-zone.ai/knowledge/cicd/cicd-cost-optimization/) — Practical strategies for reducing CI/CD costs — right-sizing runners, calculating caching ROI, using spot and preemptible instances for builds, build minute budgeting, parallelism vs cost tradeoffs, and self-hosted runner economics. - [Database Schema Migrations in CI/CD: Tools, Pipeline Integration, and Zero-Downtime Strategies](https://agent-zone.ai/knowledge/cicd/database-migrations-in-cicd/) — Practical guide to running database schema migrations in CI/CD pipelines — Flyway, Liquibase, golang-migrate, and Rails migrations as pipeline steps, rollback strategies, zero-downtime expand/contract patterns, and migration testing in CI. - [Blue-Green Deployments: Traffic Switching, Database Compatibility, and Rollback Strategies](https://agent-zone.ai/knowledge/cicd/blue-green-deployments/) — Deep dive into blue-green deployment patterns covering traffic switching mechanisms (DNS, load balancer, ingress controller, service mesh), database migration compatibility, session draining, rollback speed, and practical comparison with canary deployments. Includes Kubernetes and AWS ALB examples. - [Self-Hosted CI Runners at Scale: GitHub Actions Runner Controller, GitLab Runners on K8s, and Autoscaling](https://agent-zone.ai/knowledge/cicd/self-hosted-runners-at-scale/) — Operating self-hosted CI runners in production: actions-runner-controller for GitHub Actions on Kubernetes, GitLab Runner autoscaling on K8s, ephemeral vs persistent runners, security isolation, runner image management, cost modeling, and operational patterns for scaling to hundreds of concurrent builds. - [Pipeline Observability: CI/CD Metrics, DORA, OpenTelemetry, and Grafana Dashboards](https://agent-zone.ai/knowledge/cicd/pipeline-observability/) — Measuring CI/CD pipeline health with actionable metrics: build duration, queue time, failure rate, MTTR, DORA metrics collection, OpenTelemetry instrumentation for CI pipelines, Grafana dashboard design, and alerting on build regressions. - [CI/CD Anti-Patterns and Migration Strategies: From Snowflakes to Scalable Pipelines](https://agent-zone.ai/knowledge/cicd/cicd-anti-patterns/) — Common CI/CD anti-patterns that slow teams down -- snowflake pipelines, monolithic builds, secrets in code, blocking manual gates, environment drift -- and practical migration strategies for moving from Jenkins to GitHub Actions, CircleCI to GitHub Actions, and on-premises to cloud CI. - [Advanced Git Operations: Rebase, Cherry-Pick, Bisect, and Repository Maintenance](https://agent-zone.ai/knowledge/cicd/git-advanced-operations/) — Hands-on guide to advanced Git operations — interactive rebase, cherry-pick, bisect, reflog recovery, stash, worktrees, submodules, git archaeology, and repository cleanup. - [Advanced GitHub Actions Patterns: Matrix Builds, OIDC, Composite Actions, and Self-Hosted Runners](https://agent-zone.ai/knowledge/cicd/github-actions-patterns/) — Production-grade GitHub Actions patterns — matrix strategies, conditional execution, environment protection, composite actions, OIDC cloud authentication, path filtering, and self-hosted runner management. - [ArgoCD Image Updater: Automatic Image Tag Updates Without Git Commits](https://agent-zone.ai/knowledge/cicd/argocd-image-updater/) — Using ArgoCD Image Updater to automatically detect new container image versions and update running applications, including tag strategies, registry authentication, write-back methods, and filtering patterns. - [ArgoCD Multi-Cluster Management: Hub-Spoke Patterns, Cluster Registration, and Fleet Operations](https://agent-zone.ai/knowledge/cicd/argocd-multi-cluster/) — Running ArgoCD across multiple clusters using hub-spoke topology, registering external clusters, managing fleet-wide deployments with ApplicationSets, and handling cluster credentials and network connectivity. - [ArgoCD Notifications: Slack, Teams, Webhooks, and Custom Triggers](https://agent-zone.ai/knowledge/cicd/argocd-notifications/) — Configuring ArgoCD Notifications to send deployment alerts to Slack, Microsoft Teams, and webhooks. Covers triggers, templates, subscription patterns, and integrating notifications with sync lifecycle events. - [ArgoCD Patterns: App of Apps, ApplicationSets, Multi-Environment Management, and Source Strategies](https://agent-zone.ai/knowledge/cicd/argocd-patterns/) — Production patterns for ArgoCD including App of Apps, ApplicationSet generators, project-scoped access control, multi-environment directory structures, and choosing between Helm and Kustomize sources. - [ArgoCD Secrets Management: Sealed Secrets, External Secrets Operator, and SOPS](https://agent-zone.ai/knowledge/cicd/argocd-secrets-management/) — Managing secrets in a GitOps workflow where everything lives in Git but secrets cannot be stored in plaintext. Covers Sealed Secrets, External Secrets Operator, and SOPS with practical ArgoCD integration patterns. - [ArgoCD Setup and Basics: Installation, CLI, First Application, and Sync Policies](https://agent-zone.ai/knowledge/cicd/argocd-setup-and-basics/) — Installing ArgoCD via Helm or plain manifests, configuring the CLI, creating your first Application resource, connecting Git repos, and understanding sync policies. - [ArgoCD Sync Waves, Resource Hooks, and Sync Options](https://agent-zone.ai/knowledge/cicd/argocd-sync-and-hooks/) — Controlling sync order with waves and phases, using PreSync/PostSync hooks for migrations, configuring sync windows, and applying sync options like ServerSideApply and Replace. - [ArgoCD with Terraform and Crossplane: Managing Infrastructure Alongside Applications](https://agent-zone.ai/knowledge/cicd/argocd-terraform-crossplane/) — Using ArgoCD to manage cloud infrastructure through Crossplane CRDs and coordinate with Terraform state, including patterns for provisioning databases, queues, and cloud resources as part of the GitOps workflow. - [Artifact Management: Repository Selection, Container Lifecycle, Retention, and Promotion Workflows](https://agent-zone.ai/knowledge/cicd/artifact-management/) — Decision framework for artifact repository selection and management covering JFrog Artifactory, Nexus, GitHub Packages, and cloud-native registries, plus container image lifecycle, retention policies, vulnerability scanning integration, and promotion workflows. - [Building a Kubernetes Deployment Pipeline: From Code Push to Production](https://agent-zone.ai/knowledge/cicd/ops-deployment-pipeline-setup/) — Step-by-step operational sequence for setting up a complete CI/CD pipeline covering source control, container builds, GitOps deployment, progressive delivery, and observability. - [CI/CD Patterns for Monorepos](https://agent-zone.ai/knowledge/cicd/monorepo-ci-patterns/) — Reference for monorepo CI/CD patterns — change detection, selective builds, caching strategies, Turborepo/Nx/Bazel comparison, workspace-aware testing, and artifact management. - [Debugging ArgoCD: Diagnosing Sync Failures, Health Checks, RBAC, and Repo Issues](https://agent-zone.ai/knowledge/cicd/argocd-debugging/) — Practical debugging procedures for common ArgoCD problems including stuck syncs, OutOfSync drift, custom health checks, resource tracking modes, RBAC errors, and SSO configuration failures. - [Debugging GitHub Actions: Triggers, Failures, Secrets, Caching, and Performance](https://agent-zone.ai/knowledge/cicd/github-actions-debugging/) — Systematic guide to diagnosing GitHub Actions problems — workflows not triggering, step failures, missing secrets, cache misses, disk exhaustion, slow builds, and local testing with act. - [Git Branching Strategies: Trunk-Based, GitHub Flow, and When to Use What](https://agent-zone.ai/knowledge/cicd/git-workflows/) — Practical comparison of Git branching strategies — trunk-based development, GitHub Flow, GitFlow, merge vs rebase vs squash, conventional commits, and protected branch configuration. - [GitHub Actions Fundamentals: Workflows, Triggers, Jobs, and Data Passing](https://agent-zone.ai/knowledge/cicd/github-actions-fundamentals/) — Complete guide to GitHub Actions — workflow structure, event triggers, runners, step types, passing data between steps, artifacts, caching, secrets, concurrency, and reusable workflows. - [GitHub Actions Kubernetes Pipeline: From Git Push to Helm Deploy](https://agent-zone.ai/knowledge/cicd/github-actions-kubernetes-pipeline/) — Building a CI/CD pipeline with GitHub Actions that builds container images, validates Helm charts, and deploys to Kubernetes with environment promotion. - [GitLab CI/CD Pipeline Patterns: Stages, DAG Pipelines, Includes, and Registry Integration](https://agent-zone.ai/knowledge/cicd/gitlab-ci-patterns/) — Reference for GitLab CI/CD pipeline configuration covering .gitlab-ci.yml structure, stages, jobs, artifacts, caching, DAG pipelines, includes/extends for DRY config, Auto DevOps, container registry integration, environments, and review apps. - [GitOps and Infrastructure as Code: Reconciliation Patterns for Terraform, ArgoCD, and Crossplane](https://agent-zone.ai/knowledge/cicd/gitops-iac-reconciliation/) — How GitOps principles apply to infrastructure management. Covers the reconciliation gap between Terraform (push-based, stateful) and GitOps (pull-based, continuous), patterns for combining Terraform with ArgoCD and Crossplane, when each approach fits, and how to avoid the common failure modes of mixing paradigms. - [Integrating Infrastructure as Code with CI/CD: Patterns for Safe, Automated Infrastructure Delivery](https://agent-zone.ai/knowledge/cicd/iac-cicd-integration-patterns/) — How to safely automate Terraform in CI/CD pipelines. Covers the plan-on-PR/apply-on-merge pattern, multi-directory monorepo strategies, dependency ordering between infrastructure layers, drift detection as a scheduled job, promoting changes across environments, emergency rollback procedures, and choosing between self-hosted and SaaS platforms. - [Jenkins Debugging: Diagnosing Stuck Builds, Pipeline Failures, Performance Issues, and Kubernetes Agent Problems](https://agent-zone.ai/knowledge/cicd/jenkins-debugging/) — Systematic approaches to debugging common Jenkins problems including queue stalls, credential errors, script approval blocks, slow performance, and Kubernetes agent pod failures. - [Jenkins Kubernetes Integration: Dynamic Pod Agents, Pod Templates, and In-Cluster Builds](https://agent-zone.ai/knowledge/cicd/jenkins-kubernetes-integration/) — Running Jenkins on Kubernetes with dynamic pod agents via the kubernetes plugin, defining pod templates, using kaniko for Docker builds, and managing persistent storage. - [Jenkins Pipeline Patterns: Declarative and Scripted Pipelines, Shared Libraries, and Common Workflows](https://agent-zone.ai/knowledge/cicd/jenkins-pipeline-patterns/) — Writing Jenkinsfiles with declarative and scripted syntax, using shared libraries, parallel stages, parameters, conditionals, and real patterns for build-test-deploy workflows. - [Jenkins Setup and Configuration: Installation, JCasC, Plugins, Credentials, and Agents](https://agent-zone.ai/knowledge/cicd/jenkins-setup-and-configuration/) — Installing Jenkins via Docker, Helm on Kubernetes, or package managers, then configuring it declaratively with JCasC, managing plugins, credentials, and build agents. - [Release Management Patterns: Versioning, Changelog Generation, Branching, Rollbacks, and Progressive Rollouts](https://agent-zone.ai/knowledge/cicd/release-management-patterns/) — Operational sequence for release management workflows covering semantic versioning, automated changelog generation, release branching strategies, rollback procedures, release validation gates, and progressive rollout patterns. - [Tekton Pipelines: Cloud-Native CI/CD on Kubernetes with Tasks, Pipelines, and Triggers](https://agent-zone.ai/knowledge/cicd/tekton-pipelines/) — Reference for Tekton CI/CD covering Tasks, TaskRuns, Pipelines, PipelineRuns, workspaces, results, triggers, catalog tasks, and Kubernetes-native pipeline execution with practical YAML examples. - [Testing Strategies in CI Pipelines: A Decision Framework](https://agent-zone.ai/knowledge/cicd/testing-in-ci/) — Decision framework for selecting and configuring tests in CI — unit, integration, and e2e test selection, parallelization, flaky test management, coverage thresholds, and when to run which tests across PR, merge, and nightly pipelines. - [Canary Deployments Deep Dive: Argo Rollouts, Flagger, and Metrics-Based Progressive Delivery](https://agent-zone.ai/knowledge/cicd/canary-deployments-deep-dive/) — Implementing canary deployments with traffic splitting, automated metrics analysis, and progressive delivery using Argo Rollouts and Flagger -- including AnalysisTemplates, Prometheus queries, rollback strategies, and common pitfalls. - [Choosing a GitOps Tool: ArgoCD vs Flux vs Jenkins vs GitHub Actions for Kubernetes Deployments](https://agent-zone.ai/knowledge/cicd/choosing-gitops-tool/) — Decision framework for selecting a GitOps or CI-driven deployment tool for Kubernetes — comparing ArgoCD, Flux, Jenkins, and GitHub Actions across deployment model, drift detection, multi-cluster support, and operational complexity. - [Container Build Optimization: BuildKit, Layer Caching, Multi-Stage, and Build Performance](https://agent-zone.ai/knowledge/cicd/container-build-optimization/) — Practical techniques for faster, smaller container builds -- BuildKit features, multi-stage build patterns, layer caching strategies, cache mounts, build secrets, CI-specific optimization, image size reduction, and alternative build tools. - [Feature Flags: Decoupling Deployment from Release with LaunchDarkly, Unleash, and Flipt](https://agent-zone.ai/knowledge/cicd/feature-flags/) — Implementing feature flags for progressive rollout, kill switches, A/B testing, and trunk-based development -- comparing LaunchDarkly, Unleash, Flipt, and OpenFeature with practical patterns for flag lifecycle management and operational hygiene. - [GitHub Actions Advanced Patterns: Reusable Workflows, Matrix Strategies, OIDC, and Optimization](https://agent-zone.ai/knowledge/cicd/github-actions-advanced-patterns/) — Production-grade GitHub Actions patterns including reusable workflows with workflow_call, composite actions, matrix strategies, OIDC cloud authentication, caching, concurrency control, environment protection rules, and performance optimization. - [GitHub Actions on ARM64: Native Runners, Cross-Compilation, and QEMU Pitfalls](https://agent-zone.ai/knowledge/cicd/github-actions-arm64/) — How to run GitHub Actions workflows on ARM64 — native runners, cross-compilation strategies for Go/Rust/C++, QEMU emulation limits, matrix builds, and caching across architectures. - [Multi-Architecture Container Images: Buildx, Manifest Lists, and Registry Patterns](https://agent-zone.ai/knowledge/cicd/container-build-multi-arch/) — Building container images that run on both x86 and ARM64 — docker buildx workflows, cross-compilation in Dockerfiles, manifest lists, and common mistakes that waste build time. --- [JSON](https://agent-zone.ai/knowledge/cicd/index.json) | [HTML](https://agent-zone.ai/knowledge/cicd/?format=html)