CI/CD with GitHub Actions in Production
Reusable workflows, OIDC to cloud, and cache discipline for repos that grew faster than governance.
You refactor a intentionally messy workflow monolith into composable pieces, add environments with approvals, and document rate-limit pitfalls we see in Bangkok teams collaborating with US HQs.
What the syllabus includes
- Reusable workflow extraction lab
- OIDC trust to a mock cloud role
- Matrix builds with shard-friendly caching
- CODEOWNERS + required reviewers simulation
- Self-hosted runner trade-off worksheet
- Artifact promotion between environments
- Mentor-reviewed refactor PR
Artifacts you leave with
- Split a 400-line workflow into three reusable units
- Configure OIDC trust with documented assumptions
- Write a one-page “when to shard jobs” note for peers
Lead mentor
Lada Somchai — Automation engineer; previously standardized Actions org-wide.
Duration: 5 weeks · weekends · Format: cohort · Category: foundations · Level: intermediate
Price (informational): 9,800 THB — see Money-Back Policy for eligibility notes.
FAQ
Parallels noted in margins; labs stay on GitHub for consistency.
We discuss runner minutes at a high level—no vendor negotiations coaching.
We do not cover self-hosted secrets scanning appliances—only native Actions patterns.
Participant notes
OIDC lab in CI/CD with GitHub Actions mirrored how we wanted AWS federation to work—finally clicked.
Cache discipline section called out a redundant npm install I had copy-pasted across seventeen jobs.