Course overview

How to Design Developer Platforms & CI/CD Systems

47 modules
190 lessons
—
Part 1

Course Setup and the Incremental Ladder

  1. Course Setup and the Incremental LadderSign in

  2. Why "Commits to Pipelines"Sign in

  3. How to Use This CourseSign in

  4. The Incremental Ladder (Step 0 -> Step 7)Sign in

  5. The Course LensesSign in

  6. Diagram Legend and Notation TypesSign in

Part 2

Version Control as the Source of Truth

  1. Version Control as the Source of TruthSign in

  2. Why VCS Anchors CI/CDSign in

  3. Changesets, Diffs, and Commit HistorySign in

  4. Branches, Tags, and Release LinesSign in

Part 3

Branching Models and Workflows

  1. Branching Models and WorkflowsSign in

  2. Trunk-Based vs Git-Flow-Like ModelsSign in

  3. Feature, Release, and Hotfix BranchesSign in

  4. Trade-Offs: Speed, Stability, and Workflow ComplexitySign in

Part 4

Repository Structures: Mono vs Poly

  1. Repository Structures: Mono vs PolySign in

  2. Monorepos, Polyrepos, and HybridsSign in

  3. Impact on Builds, Pipelines, and ToolingSign in

  4. Code Ownership and ModularizationSign in

Part 5

Commit Discipline and Code Review

  1. Commit Discipline and Code ReviewSign in

  2. Atomic Changes and Commit HygieneSign in

  3. Review Workflows and Approval PatternsSign in

  4. Messages, Issue Links, and TraceabilitySign in

Part 6

Diagramming Developer Workflows

  1. Diagramming Developer WorkflowsSign in

  2. Commit-to-Merge FlowsSign in

  3. Branching Diagrams and Release TrainsSign in

  4. Mapping Repos to Teams and ServicesSign in

Part 7

Build Systems and Toolchains

  1. Build Systems and ToolchainsSign in

  2. Build Tools and OrchestrationSign in

  3. Incremental vs Full BuildsSign in

  4. Reproducibility and DeterminismSign in

Part 8

Dependency Management

  1. Dependency ManagementSign in

  2. Manifests and LockfilesSign in

  3. Version Ranges vs PinningSign in

  4. Caches, Registries, and SecuritySign in

Part 9

Artifact Types and Packaging

  1. Artifact Types and PackagingSign in

  2. Artifact FamiliesSign in

  3. Versioning and ImmutabilitySign in

  4. Deployable UnitsSign in

Part 10

Artifact Repositories and Promotion

  1. Artifact Repositories and PromotionSign in

  2. Repositories for Packages, Images, and BinariesSign in

  3. Retention and Immutability SemanticsSign in

  4. Promotion FlowsSign in

Part 11

Build & Artifact Observability

  1. Build & Artifact ObservabilitySign in

  2. Build Health MetricsSign in

  3. Dependency Graph Visibility and BOMsSign in

  4. Hotspots and BottlenecksSign in

Part 12

CI Fundamentals

  1. CI FundamentalsSign in

  2. CI vs Nightly BuildsSign in

  3. Builds and Tests on Every ChangeSign in

  4. Failing Fast as a System PropertySign in

Part 13

Pipeline-as-Code

  1. Pipeline-as-CodeSign in

  2. Declarative vs Imperative PipelinesSign in

  3. Shared Libraries and TemplatesSign in

  4. Versioning and Testing Pipeline ConfigurationsSign in

Part 14

Triggering and Fan-Out

  1. Triggering and Fan-OutSign in

  2. Trigger TypesSign in

  3. Fan-Out for Multi-Service ChangeSign in

  4. Storming and Redundancy ControlSign in

Part 15

Pipeline Stages and DAGs

  1. Pipeline Stages and DAGsSign in

  2. Stage DesignSign in

  3. DAG ModelingSign in

  4. Resource ManagementSign in

Part 16

CI Infrastructure

  1. CI InfrastructureSign in

  2. Runners, Agents, and ExecutorsSign in

  3. Scaling BuildsSign in

  4. Multi-Tenant CI ClustersSign in

Part 17

CI Health, Limits, and Anti-Patterns

  1. CI Health, Limits, and Anti-PatternsSign in

  2. Broken Main and Red BuildsSign in

  3. Long Pipelines and Developer FrustrationSign in

  4. Keeping CI GreenSign in

Part 18

Test Taxonomy and the Test Pyramid

  1. Test Taxonomy and the Test PyramidSign in

  2. Layers of TestsSign in

  3. Pyramid vs Ice Cream ConeSign in

  4. Choosing a Balanced PortfolioSign in

Part 19

Designing Testable Systems

  1. Designing Testable SystemsSign in

  2. Seams, Contracts, and Dependency InjectionSign in

  3. Test DoublesSign in

  4. Contract Tests for APIs and ServicesSign in

Part 20

Data, Environments, and Isolation

  1. Data, Environments, and IsolationSign in

  2. Test Data ManagementSign in

  3. Ephemeral vs Shared EnvironmentsSign in

  4. Cleanup and ContainmentSign in

Part 21

Test Execution in Pipelines

  1. Test Execution in PipelinesSign in

  2. Parallelization and ShardingSign in

  3. Change-Impact SelectionSign in

  4. Smoke vs Regression vs Full SweepSign in

Part 22

Flaky Tests and Reliability

  1. Flaky Tests and ReliabilitySign in

  2. Detecting and Triage WorkflowsSign in

  3. Quarantine and ThresholdsSign in

  4. Culture and ToolingSign in

Part 23

Quality Gates and Metrics

  1. Quality Gates and MetricsSign in

  2. Coverage with CaveatsSign in

  3. Quality GatesSign in

  4. Balancing Speed and QualitySign in

Part 24

From CI to CD

  1. From CI to CDSign in

  2. Continuous Delivery vs Continuous DeploymentSign in

  3. Promotion-Based PipelinesSign in

  4. Manual Gates vs Full AutomationSign in

Part 25

Environment Topologies and Promotion

  1. Environment Topologies and PromotionSign in

  2. Environment Lanes: dev, test, staging, prod and what "prod-like" is actually forSign in

  3. Promote vs Rebuild: artifact integrity versus environment-specific compilation and the risks of divergenceSign in

  4. Drift and Drift Detection: preventing the environment boundary from silently changing the systemSign in

Part 26

Deployment Mechanisms

  1. Deployment MechanismsSign in

  2. Push vs Pull Deployments: control boundaries and how failure propagatesSign in

  3. Deployment Primitives: conceptual orchestrators, rollout units, and state reconciliationSign in

  4. Configuration and Secret Injection: making runtime variability explicit, auditable, and reversibleSign in

Part 27

Release Strategies

  1. Release StrategiesSign in

  2. Rolling, Blue-Green, Canary: choosing a rollout topology that matches your failure toleranceSign in

  3. Feature Flags and Dark Launches: decoupling deploy from release to reduce blast radiusSign in

  4. Rollback and Roll-Forward: designing recovery paths that work under stressSign in

Part 28

Progressive Delivery and Observability

  1. Progressive Delivery and ObservabilitySign in

  2. Guardrails and SLO-Based Safety: using live signals as release constraintsSign in

  3. Automated rollback triggers: thresholds, noise, and avoiding control-plane flappingSign in

  4. Release health views: connecting deploy events to user impact with minimal ambiguitySign in

Part 29

Multi-Service and Multi-Region Releases

  1. Multi-Service and Multi-Region ReleasesSign in

  2. Coordinated Microservice Releases: dependency ordering and minimizing cross-service deadlocksSign in

  3. Compatibility and Contracts: version skew, backward compatibility, and safe partial rolloutSign in

  4. Region-Wise Rollouts: global coordination, regional blast radius, and operational pacingSign in

Part 30

What Is an Internal Developer Platform (IDP)?

  1. What Is an Internal Developer Platform (IDP)?Sign in

  2. Platform as Product for Developers: making the "easy path" the safe and supported pathSign in

  3. Platform Layers: CI/CD, runtime, observability, catalogs and how they compose into one experienceSign in

  4. Reducing Cognitive Load: avoiding "YAML fatigue" by moving complexity behind stable interfacesSign in

Part 31

Golden Paths and Paved Roads

  1. Golden Paths and Paved RoadsSign in

  2. Opinionated Defaults: why standardization is a reliability strategy, not only a productivity oneSign in

  3. One Obvious Way: defining a canonical service lifecycle from build to deploySign in

  4. Flexibility Without Fragmentation: supporting exceptions without creating a second platformSign in

Part 32

Scaffolding and Service Creation

  1. Scaffolding and Service CreationSign in

  2. Service Templates: repo + pipeline + infra skeleton as a repeatable boundary packageSign in

  3. Bootstrapped Security and Observability: shipping "secure and observable by default" as platform policySign in

  4. Onboarding and First-10-Minutes Experience: designing time-to-first-success as a platform KPISign in

Part 33

Developer Portals and Catalogs

  1. Developer Portals and CatalogsSign in

  2. Ownership and Metadata: service catalogs as the map that makes accountability possibleSign in

  3. UI for Pipelines, Deploys, Incidents, Docs: making platform state visible and navigableSign in

  4. Integrating Runbooks and ADRs: connecting automation to human decision-making during incidentsSign in

Part 34

Platform Extensibility

  1. Platform ExtensibilitySign in

  2. Plugin Models: extension without forking the platform's coreSign in

  3. Integrating Third-Party Tools: scanners, APM, and ecosystem components as controlled dependenciesSign in

  4. Guardrails on Customization: preventing local optimization from breaking platform invariantsSign in

Part 35

Platform Metrics and Developer Experience

  1. Platform Metrics and Developer ExperienceSign in

  2. Delivery Performance Metrics: lead time, deploy frequency, change fail rate, MTTR as system outcomesSign in

  3. DX Metrics: wait time, friction, satisfaction and how they predict platform adoptionSign in

  4. Metrics into Roadmaps: using evidence to choose investments and retire low-value complexitySign in

Part 36

Governance and Policy in Pipelines

  1. Governance and Policy in PipelinesSign in

  2. Policy-as-Code Boundaries: expressing required stages and constraints in machine-enforceable formSign in

  3. Approvals and Separation of Duties: designing human checks that resist collusion and reduce mistake riskSign in

  4. Least Privilege in CI/CD: minimizing what pipelines can do and constraining blast radiusSign in

Part 37

Secrets, Credentials, and Supply Chain Security

  1. Secrets, Credentials, and Supply Chain SecuritySign in

  2. Secret Storage, Rotation, Injection: treating secret movement as a privileged data planeSign in

  3. Provenance and Signing: code signing, artifact signing, and why "who built this" mattersSign in

  4. Scanning Code, Dependencies, Images: catching supply-chain risk where it enters the pipelineSign in

Part 38

Compliance Requirements in CI/CD

  1. Compliance Requirements in CI/CDSign in

  2. Traceability from Commit to Deploy: constructing an evidence chain that survives audits and incidentsSign in

  3. Change Management and Audit Trails: approvals, justifications, and immutable records as system featuresSign in

  4. Evidence Generation: building automated compliance outputs without turning governance into manual toilSign in

Part 39

Guardrails vs Gates

  1. Guardrails vs GatesSign in

  2. Preventative vs Detective Controls: choosing where to stop bad change versus where to detect and respondSign in

  3. Soft vs Hard Enforcement: rollout strategies that increase safety without creating a shadow processSign in

  4. Autonomy vs Control: maintaining developer flow while meeting regulatory and security obligationsSign in

Part 40

Incident & Vulnerability Response via Pipelines

  1. Incident & Vulnerability Response via PipelinesSign in

  2. Emergency Change and Break Glass: designing exceptional paths that remain auditable and safeSign in

  3. Coordinated Patching via CI/CD: scaling response across fleets without losing correctnessSign in

  4. Backports and Multiple Release Lines: keeping long-lived versions secure without endless divergenceSign in

Part 41

Platform Architecture: Control Planes and Data Planes

  1. Platform Architecture: Control Planes and Data PlanesSign in

  2. Control Plane Concepts: configuration, policy, and state as the platform's governing surfaceSign in

  3. Data Plane Workloads: builds, tests, deployments and the isolation requirements they imposeSign in

  4. One Engine or Many: composing pipeline engines and clusters without losing a unified experienceSign in

Part 42

Multi-Tenancy and Scale in CI/CD

  1. Multi-Tenancy and Scale in CI/CDSign in

  2. Tenancy Models: team, project, org boundaries and what can fail togetherSign in

  3. Fair Scheduling and Noisy Neighbor Control: quotas, prioritization, and protecting critical pathsSign in

  4. Rate Limits and Resource Governance: preventing platform overload from becoming company-wide outageSign in

Part 43

Platform Teams and Operating Models

  1. Platform Teams and Operating ModelsSign in

  2. Platform-as-a-Product: roadmaps, support, and lifecycle management for internal usersSign in

  3. Roles and Interfaces: platform PMs, SREs, DX engineers, advocates and how responsibility is partitionedSign in

  4. Feedback Loops to Roadmap: turning developer pain into prioritized platform workSign in

Part 44

Integrating CI/CD with the Rest of the Ecosystem

  1. Integrating CI/CD with the Rest of the EcosystemSign in

  2. Observability, Incidents, On-Call: connecting delivery events to operational realitySign in

  3. Tickets, Docs, Flags, Runtime Config: integrating adjacent control systems without duplicationSign in

  4. Data and AI Workflows in CI/CD Contexts: extending pipeline thinking beyond application code (conceptual)Sign in

Part 45

Migration and Modernization

  1. Migration and ModernizationSign in

  2. From Scripts to Standard Pipelines: defining target patterns and migrating without halting deliverySign in

  3. Incremental Migration of Legacy Apps and Repos: sequencing changes to preserve trustSign in

  4. Coexistence Strategies: running old and new platforms in parallel without fragmenting governanceSign in

Part 46

Case-Style Reference Architectures

  1. Case-Style Reference ArchitecturesSign in

  2. Small Org Reference: simple pipelines and lightweight platform boundariesSign in

  3. Mid-Size Reference: multi-team IDP with standardized golden paths and shared servicesSign in

  4. Large Enterprise Reference: multi-region CI/CD with strong governance and regulated workload supportSign in

Part 47

Evolution and Next-Gen Developer Platforms

  1. Evolution and Next-Gen Developer PlatformsSign in

  2. Continuous Everything: integrating security, compliance, and broader workflows into delivery systemsSign in

  3. AI-Assisted Development and Self-Healing Pipelines: conceptual capabilities and the new failure modes they introduceSign in

  4. Long-Term Maintenance: deprecation, compatibility, and evolving platforms without breaking trustSign in