A solid reference for setting up GitHub Actions pipelines with security baked in from the start. You get working examples for CodeQL scanning, ZAP security tests, Lighthouse performance audits, and AWS deployments using OIDC instead of storing credentials. The workflow structure is practical: validation, security scanning, performance checks, then deployment with proper job dependencies. What stands out is the emphasis on least-privilege IAM roles and pinning action versions with commit SHAs, which most quickstart guides skip. If you're moving beyond basic CI/CD and need to satisfy security requirements without reinventing the wheel, this gives you a tested pattern to start from.
npx skills add https://github.com/hack23/homepage --skill github-actions-cicd