Shifting Your CI to GitHub Actions with Docker Multi-Stage Build, Daemon-less, and Secret Scanning

Learn how to build a modern CI pipeline using GitHub Actions to achieve testing, building, and pushing Docker images. Harden your pipeline by scanning your Docker image for leaked secrets and credentials with the help of GitGuardian’s gg-shield action.

Shifting Your CI to GitHub Actions with Daemonless Multi-stage Build & Secrets Scanning

1. A Story

I was once working in an agile team within a big corporation. The team was meant to be at the same time an experiment to quickly build something cool in an unconventional way, and an “A-team” so that the culture and the way of working could be preached to other teams, as to kick-off digital transformation in a traditional business.

At that time, we were handling more than 25 microservices and releasing as often as 100 times per week. Before that, I had worked in real start-ups, but even there we didn't release half as often. So we were already achieving something truly great, I thought.

Until I was tasked to add another stage in our existing CI pipelines.

Since I was new to the team, another teammate was kind enough to spare 30 minutes to give…