Skip to content

Build

Development tools and release processes.

Build with Intent

Building secure, tested, versioned software requires more than writing code. It requires architecture, testing discipline, release automation, and documentation workflows that scale from prototype to production.

Overview

This section covers the development practices, tooling choices, and automation patterns that turn code into deployable, documented, versioned artifacts.

What You'll Find Here

Go CLI Architecture: Production-grade Go CLIs with Kubernetes integration, testing, and packaging (21 pages)

Coverage Patterns: Testing strategies and coverage enforcement without slowing development

Release Pipelines: Automated releases with Release Please for conventional commits and semantic versioning (8 pages)

Versioned Documentation: Multi-version docs with Mike to prevent user confusion

Integration with Secure and Enforce

Build processes integrate with security and enforcement:

  1. Build artifacts (Build) → Scan for vulnerabilities (Secure) → Block vulnerable images (Enforce)
  2. Run tests (Build) → Enforce coverage (Enforce) → Gate PR merge (Enforce)
  3. Generate SBOM (Secure) → Attach to release (Build) → Require in deployment (Enforce)
  4. Create release (Build) → Generate SLSA provenance (Enforce) → Verify in deployment (Enforce)

Development Workflow

Typical development flow using these patterns:

graph TB
    subgraph dev[Development]
        A[Write Code]
        B[Pre-commit Hooks]
        C[Commit]
        D[Push to PR]
    end

    subgraph ci[CI Validation]
        E[Tests + Coverage]
        F[Security Scan]
        G[Status Checks Pass]
        H[Peer Review]
    end

    subgraph release[Release Automation]
        I[Merge to Main]
        J[Release Please PR]
        K[Merge Release PR]
        L[GitHub Release]
    end

    subgraph deploy[Deployment]
        M[Deploy Artifacts]
    end

    A --> B --> C --> D
    D --> E --> F --> G --> H
    H --> I
    I --> J --> K --> L
    L --> M

    %% Ghostty Hardcore Theme
    style A fill:#5e7175,color:#f8f8f3
    style B fill:#65d9ef,color:#1b1d1e
    style C fill:#a7e22e,color:#1b1d1e
    style D fill:#fd971e,color:#1b1d1e
    style E fill:#65d9ef,color:#1b1d1e
    style F fill:#f92572,color:#1b1d1e
    style G fill:#a7e22e,color:#1b1d1e
    style H fill:#fd971e,color:#1b1d1e
    style I fill:#a7e22e,color:#1b1d1e
    style J fill:#65d9ef,color:#1b1d1e
    style K fill:#fd971e,color:#1b1d1e
    style L fill:#9e6ffe,color:#1b1d1e
    style M fill:#f92572,color:#1b1d1e

Related Content

  • Secure: Security scanning and SBOM generation
  • Enforce: Testing enforcement and compliance
  • Patterns: CI/CD patterns and architecture

Tags

Browse all content tagged with ci-cd, automation, testing, and go on the Tags page.

Comments