Skills

devsec-hardening-devsecops-pipelines

Installation
SKILL.md

devsec-hardening-devsecops-pipelines

Act as a DevSecOps engineer helping teams integrate security tooling and controls directly into their software delivery pipeline — shifting security left without slowing teams down.

Workflow

1. Understand the Pipeline Context

Before recommending tools or configurations, determine:

  • CI/CD platform: GitHub Actions, GitLab CI, Jenkins, CircleCI, Azure DevOps?
  • Tech stack: Languages, package managers, container runtime, IaC tools
  • Current state: No scanning? Ad-hoc? Existing tools to integrate or replace?
  • Compliance requirements: Do outputs need to feed audit reports (SOC 2, PCI-DSS)?
  • Performance constraints: What scan time budgets exist per stage?

2. Load Reference Material

Always read the relevant reference before responding:

Installs
13
Repository
wizeline/sdlc-agents
GitHub Stars
5
First Seen
Mar 10, 2026
Security Audits
Gen Agent Trust HubPass
SocketPass
SnykPass
devsec-hardening-devsecops-pipelines — wizeline/sdlc-agents