GitHub Actions & CI/CD Podcast

Your developer toolchain is production — GitHub Actions, runners, secrets, OIDC, supply chain, and the CI/CD paths that decide what reaches prod.

Listen to Ship It Weekly →

GitHub Actions & CI/CD Podcast — abstract Ship It Weekly topic illustration

About the GitHub Actions & CI/CD hub

GitHub Actions is not just CI anymore. For many teams it is the control plane that decides what reaches production: workflow permissions, self-hosted runners, third-party actions, OIDC to cloud roles, and secrets that outlive the humans who created them. These episodes track that reality.

Use this hub when you care about pipeline blast radius, supply-chain risk, runner hygiene, and the governance models that keep developer-facing automation from becoming an incident waiting to happen.

Episodes on GitHub Actions & CI/CD

PeopleSoft Zero-Day Exploited, npm v12 Install Script Changes, GitHub Agentic Tokens, Anthropic Model Risk, and Default Trust Breaking — Ship It Weekly episode cover artEpisode 47Jun 18, 2026⏱️ 22:27PeopleSoft Zero-Day Exploited, npm v12 Install Script Changes, GitHub Agentic Tokens, Anthropic Model Risk, and Default Trust BreakingEpisode: PeopleSoft Zero-Day Exploited, npm v12 Install Script Changes, GitHub Agentic Tokens, Anthropic Model Risk, and Default Trust Breaking

This episode of Ship It Weekly is about default trust getting punished. Brian covers Oracle’s emergency PeopleSoft advisory for CVE-2026-35273, npm v12 changing install-script defaults, GitHub Agentic Workflows…

CISA’s GitHub Leak, AI Root Cause Analysis, Copilot Agents, Claude Code in CI/CD, and Kubernetes Seccomp Risk — Ship It Weekly episode cover artEpisode 41May 21, 2026⏱️ 22:23CISA’s GitHub Leak, AI Root Cause Analysis, Copilot Agents, Claude Code in CI/CD, and Kubernetes Seccomp RiskEpisode: CISA’s GitHub Leak, AI Root Cause Analysis, Copilot Agents, Claude Code in CI/CD, and Kubernetes Seccomp Risk

This episode of Ship It Weekly is about secrets, agents, risky defaults, and follow-up work that never gets done. Brian covers the CISA contractor GitHub leak involving AWS…

Ship It Conversations: Gareth Kersey on IaCConf 2026, AI, and Corey Quinn’s Terraform Keynote — Ship It Weekly episode cover artEpisode 38May 4, 2026⏱️ 31:54Ship It Conversations: Gareth Kersey on IaCConf 2026, AI, and Corey Quinn’s Terraform KeynoteEpisode: Ship It Conversations: Gareth Kersey on IaCConf 2026, AI, and Corey Quinn’s Terraform Keynote

This is a guest conversation episode of Ship It Weekly, separate from the weekly news recaps.This episode is not sponsored. I wanted to cover IaCConf because the theme…

GitHub RCE, AI Agent Prompt Injection, and the New Reality: Your Developer Toolchain Is Production Now — Ship It Weekly episode cover artEpisode 37Apr 30, 2026⏱️ 25:08GitHub RCE, AI Agent Prompt Injection, and the New Reality: Your Developer Toolchain Is Production NowEpisode: GitHub RCE, AI Agent Prompt Injection, and the New Reality: Your Developer Toolchain Is Production Now

This episode of Ship It Weekly is about the developer toolchain becoming part of production. Brian covers GitHub’s critical git push RCE, AI-assisted reverse engineering, prompt injection against…

Kubernetes 1.36, Gateway API v1.5, AWS Copilot End of Support, and Cloudflare Non-Human Identities — Ship It Weekly episode cover artEpisode 36Apr 23, 2026⏱️ 20:24Kubernetes 1.36, Gateway API v1.5, AWS Copilot End of Support, and Cloudflare Non-Human IdentitiesEpisode: Kubernetes 1.36, Gateway API v1.5, AWS Copilot End of Support, and Cloudflare Non-Human Identities

This episode of Ship It Weekly is about platforms getting sharper about defaults, ownership, and the old paths they are no longer willing to quietly carry forever. Brian…

Ship It Conversations: David Tuite on Backstage, Internal Developer Portals, and the Shift to AI Agents — Ship It Weekly episode cover artEpisode 31Apr 5, 2026⏱️ 33:55Ship It Conversations: David Tuite on Backstage, Internal Developer Portals, and the Shift to AI AgentsEpisode: Ship It Conversations: David Tuite on Backstage, Internal Developer Portals, and the Shift to AI Agents

This is a guest conversation episode of Ship It Weekly, separate from the weekly news recaps.In this Ship It: Conversations episode, I talk with David Chute, founder and…

Hackerbot-Claw Grows, Xygeni Tag Poisoning, GitHub Search HA, Windows SID Failures, and AI Skills Supply Chain — Ship It Weekly episode cover artEpisode 29Mar 27, 2026⏱️ 15:25Hackerbot-Claw Grows, Xygeni Tag Poisoning, GitHub Search HA, Windows SID Failures, and AI Skills Supply ChainEpisode: Hackerbot-Claw Grows, Xygeni Tag Poisoning, GitHub Search HA, Windows SID Failures, and AI Skills Supply Chain

This episode of Ship It Weekly is about the places where convenience quietly turns into trust.Brian revisits the Trivy story by zooming out to the bigger hackerbot-claw GitHub…

Ship It Conversations: Ang Chen on Project Vera, AI Cloud Emulation, and Safer Infrastructure Testing — Ship It Weekly episode cover artEpisode 28Mar 22, 2026⏱️ 24:23Ship It Conversations: Ang Chen on Project Vera, AI Cloud Emulation, and Safer Infrastructure TestingEpisode: Ship It Conversations: Ang Chen on Project Vera, AI Cloud Emulation, and Safer Infrastructure Testing

This is a guest conversation episode of Ship It Weekly, separate from the weekly news recaps.In this Ship It: Conversations episode, I talk with Ang Chen from the…

Ship It Conversations: Mike Lady on Day Two Readiness + Guardrails in the AI Era — Ship It Weekly episode cover artEpisode 22Feb 23, 2026⏱️ 34:38Ship It Conversations: Mike Lady on Day Two Readiness + Guardrails in the AI EraEpisode: Ship It Conversations: Mike Lady on Day Two Readiness + Guardrails in the AI Era

This is a guest conversation episode of Ship It Weekly (separate from the weekly news recaps).In this Ship It: Conversations episode I talk with Mike Lady (Senior DevOps…

GitHub Agentic Workflows, Gentoo Leaves GitHub, Argo CD 3.3 Upgrade Gotcha, AWS Config Scope Creep — Ship It Weekly episode cover artEpisode 21Feb 19, 2026⏱️ 19:21GitHub Agentic Workflows, Gentoo Leaves GitHub, Argo CD 3.3 Upgrade Gotcha, AWS Config Scope CreepEpisode: GitHub Agentic Workflows, Gentoo Leaves GitHub, Argo CD 3.3 Upgrade Gotcha, AWS Config Scope Creep

This week on Ship It Weekly, Brian hits five stories where the “defaults” are shifting under ops teams.GitHub is bringing Agentic Workflows into Actions, Gentoo is migrating off…

Azure VM Control Plane Outage, GitHub Agent HQ (Claude + Codex), Claude Opus 4.6, Gemini CLI, MCP — Ship It Weekly episode cover artEpisode 18Feb 6, 2026⏱️ 20:53Azure VM Control Plane Outage, GitHub Agent HQ (Claude + Codex), Claude Opus 4.6, Gemini CLI, MCPEpisode: Azure VM Control Plane Outage, GitHub Agent HQ (Claude + Codex), Claude Opus 4.6, Gemini CLI, MCP

This week on Ship It Weekly, Brian hits four “control plane + trust boundary” stories where the glue layer becomes the incident.Azure had a platform incident that impacted…

Ship It Conversations: AI Automation for SMBs: What to Automate (And What Not To) (with Austin Reed) — Ship It Weekly episode cover artEpisode 16Jan 26, 2026⏱️ 24:56Ship It Conversations: AI Automation for SMBs: What to Automate (And What Not To) (with Austin Reed)Episode: Ship It Conversations: AI Automation for SMBs: What to Automate (And What Not To) (with Austin Reed)

This is a guest conversation episode of Ship It Weekly (separate from the weekly news recaps).In this Ship It: Conversations episode I talk with Austin Reed from horizon.dev…

n8n Auth RCE (CVE-2026-21877), GitHub Artifact Permissions, and AWS DevOps Agent Lessons — Ship It Weekly episode cover artEpisode 14Jan 16, 2026⏱️ 12:28n8n Auth RCE (CVE-2026-21877), GitHub Artifact Permissions, and AWS DevOps Agent LessonsEpisode: n8n Auth RCE (CVE-2026-21877), GitHub Artifact Permissions, and AWS DevOps Agent Lessons

This week on Ship It Weekly, the theme is simple: the automation layer has become a control plane, and that changes how you should think about risk.We start…

Ship It Conversations: Human-in-the-Loop Fixer Bots and AI Guardrails in CI/CD (with Gracious James) — Ship It Weekly episode cover artEpisode 13Jan 11, 2026⏱️ 22:02Ship It Conversations: Human-in-the-Loop Fixer Bots and AI Guardrails in CI/CD (with Gracious James)Episode: Ship It Conversations: Human-in-the-Loop Fixer Bots and AI Guardrails in CI/CD (with Gracious James)

This is a guest conversation episode of Ship It Weekly (separate from the weekly news recaps).In this Ship It: Conversations episode I talk with Gracious James Eluvathingal about…

n8n Critical CVE (CVE-2026-21858), AWS GPU Capacity Blocks Price Hike, Netflix Temporal — Ship It Weekly episode cover artEpisode 12Jan 9, 2026⏱️ 16:18n8n Critical CVE (CVE-2026-21858), AWS GPU Capacity Blocks Price Hike, Netflix TemporalEpisode: n8n Critical CVE (CVE-2026-21858), AWS GPU Capacity Blocks Price Hike, Netflix Temporal

This week on Ship It Weekly, Brian’s theme is basically: the “automation layer” is not a side tool anymore. It’s part of your perimeter, part of your reliability…

Ship It Conversations: Backstage vs Internal IDPs, and Why DevEx Muscle Matters (with Danny Teller) — Ship It Weekly episode cover artEpisode 11Jan 6, 2026⏱️ 26:29Ship It Conversations: Backstage vs Internal IDPs, and Why DevEx Muscle Matters (with Danny Teller)Episode: Ship It Conversations: Backstage vs Internal IDPs, and Why DevEx Muscle Matters (with Danny Teller)

This is a guest conversation episode of Ship It Weekly (separate from the weekly news recaps).I sat down with Danny Teller, a DevOps Architect and Tech Lead Manager…

Fail Small, IaC Control Planes, and Automated RCA — Ship It Weekly episode cover artEpisode 10Jan 2, 2026⏱️ 17:45Fail Small, IaC Control Planes, and Automated RCAEpisode: Fail Small, IaC Control Planes, and Automated RCA

This week on Ship It Weekly, Brian kicks off the new year with one theme: automation is getting faster, and that makes blast radius and oversight matter more…

Ship It Conversations: From Full-Stack to Cloud/DevOps, One Project at a Time (with Eric Paatey) — Ship It Weekly episode cover artEpisode 9Dec 30, 2025⏱️ 23:25Ship It Conversations: From Full-Stack to Cloud/DevOps, One Project at a Time (with Eric Paatey)Episode: Ship It Conversations: From Full-Stack to Cloud/DevOps, One Project at a Time (with Eric Paatey)

This is a guest conversation episode of Ship It Weekly (separate from the weekly news recaps).I sat down with Eric Paatey, a Cloud & DevOps Engineer who’s been…

Cloudflare’s Workers Scheduler, AWS DBs on Vercel, and JIT Admin Access — Ship It Weekly episode cover artEpisode 8Dec 26, 2025⏱️ 15:39Cloudflare’s Workers Scheduler, AWS DBs on Vercel, and JIT Admin AccessEpisode: Cloudflare’s Workers Scheduler, AWS DBs on Vercel, and JIT Admin Access

This week on Ship It Weekly, Brian looks at real platform engineering in the wild.We start with Cloudflare’s write-up on building an internal maintenance scheduler on Workers. It’s…

Ship It Conversations: The WHY Behind DevOps, Upskilling, and Agentic AI (with Maz Islam) — Ship It Weekly episode cover artEpisode 7Dec 21, 2025⏱️ 30:38Ship It Conversations: The WHY Behind DevOps, Upskilling, and Agentic AI (with Maz Islam)Episode: Ship It Conversations: The WHY Behind DevOps, Upskilling, and Agentic AI (with Maz Islam)

This is a Ship It Weekly conversation episode. The weekly news recaps are still weekly. These interviews drop in between when I find someone worth talking to and…

GitHub Runner Pricing Pause, Terraform Cloud Limits, and AI in CI — Ship It Weekly episode cover artEpisode 6Dec 20, 2025⏱️ 12:06GitHub Runner Pricing Pause, Terraform Cloud Limits, and AI in CIEpisode: GitHub Runner Pricing Pause, Terraform Cloud Limits, and AI in CI

This week on Ship It Weekly, Brian looks at how the “platform tax” is showing up everywhere: pricing model shifts, CI dependencies, and new security boundaries thanks to…

Kubernetes Config Reality Check, EKS Control Planes, and GitHub Guardrails — Ship It Weekly episode cover artEpisode 3Nov 26, 2025⏱️ 16:40Kubernetes Config Reality Check, EKS Control Planes, and GitHub GuardrailsEpisode: Kubernetes Config Reality Check, EKS Control Planes, and GitHub Guardrails

In this episode of Ship It Weekly, Brian digs into what’s new for people actually running infra: Kubernetes config, EKS control planes and networking, and GitHub’s latest CI/CD…

Special: When the Cloud Has a Bad Day: Cloudflare, AWS us-east-1 & GitHub Outages — Ship It Weekly episode cover artEpisode 1Nov 20, 2025⏱️ 12:54Special: When the Cloud Has a Bad Day: Cloudflare, AWS us-east-1 & GitHub OutagesEpisode: Special: When the Cloud Has a Bad Day: Cloudflare, AWS us-east-1 & GitHub Outages

In this special kickoff episode of Ship It Weekly, Brian walks through three major outages from the last few weeks and what they actually mean for DevOps, SRE,…

Frequently asked questions

What does the GitHub Actions & CI/CD hub cover?

Pipeline blast radius, self-hosted runners, workflow permissions, OIDC to cloud roles, third-party actions, secrets hygiene, and the ways CI/CD became a production control plane.

Who should listen?

Platform, DevOps, and security-minded engineers who rely on GitHub Actions or comparable CI/CD for build, test, and deploy.

How are episodes selected?

Matched on GitHub Actions, workflows, runners, CI/CD, OIDC, supply chain, and deployment automation keywords.

Does this overlap with DevSecOps?

Yes — supply-chain and secrets topics appear in both hubs. DevSecOps skews security; this hub skews pipeline mechanics and toolchain governance.

Where can I subscribe?

Follow Ship It Weekly on Apple Podcasts, Spotify, YouTube, or RSS via the subscribe page.

Scroll to Top