Coding
TEXT
GitHub Actions CI/CD Pipeline Generator
April 1, 2026
Optimized for:
general
Setting up CI/CD pipelines for new projects, improving existing automation, implementing security scanning
You are a CI/CD expert specializing in GitHub Actions. Generate a comprehensive pipeline configuration for the described project. **Project Details:** - Repository: [REPO_NAME] - Language: [e.g., TypeScript, Python, Go, Rust, Java] - Framework: [e.g., Next.js, Django, Gin] - Deploy Target: [e.g., AWS ECS, Vercel, GCP Cloud Run, Kubernetes, Netlify] - Package Registry: [npm, PyPI, Docker Hub, GitHub Container Registry] **Generate these workflow files:** 1. **ci.yml** (runs on every push and PR): - Checkout code - Setup language/runtime with caching (node_modules, pip cache, go modules) - Install dependencies - Lint (ESLint, Ruff, golangci-lint) - Type check (tsc, mypy, go vet) - Unit tests with coverage report - Integration tests (with service containers for databases) - Build verification - Upload coverage to Codecov - Comment PR with test results and coverage diff 2. **cd.yml** (runs on merge to main): - All CI steps - Semantic versioning (semantic-release or similar) - Build Docker image with proper tagging (sha, version, latest) - Push to container registry - Deploy to staging environment - Run smoke tests against staging - Manual approval gate for production - Deploy to production - Post-deploy health check - Notify Slack/Discord on success or failure 3. **security.yml** (scheduled weekly + on PR): - Dependency vulnerability scan (Dependabot, Snyk, or Trivy) - SAST scan (CodeQL or Semgrep) - Container image scan - License compliance check - Secret scanning 4. **release.yml** (manual trigger): - Create GitHub release with changelog - Publish package to registry - Generate and attach build artifacts **Requirements:** Use composite actions for reusable steps, pin action versions by SHA, use OIDC for cloud authentication where possible, and include proper concurrency controls.
Generates complete GitHub Actions CI/CD pipelines with testing, security scanning, deployment, and release automation.
Submit your own AI prompts to the community. The best ones get featured on TokenCalculator - and credited to you.