\u062a\u064f\u0639\u062f\u0651 \u0623\u0646\u0627\u0628\u064a\u0628 CI\/CD \u0645\u0646 \u0623\u0643\u062b\u0631 \u0627\u0644\u0645\u0643\u0648\u0646\u0627\u062a \u0627\u0645\u062a\u064a\u0627\u0632\u0627\u064b \u0641\u064a \u0623\u064a \u0645\u0624\u0633\u0633\u0629 \u0628\u0631\u0645\u062c\u064a\u0629 \u062d\u062f\u064a\u062b\u0629. \u0641\u0647\u064a \u062a\u0633\u062a\u0646\u0633\u062e \u0627\u0644\u0634\u064a\u0641\u0631\u0629 \u0627\u0644\u0645\u0635\u062f\u0631\u064a\u0629\u060c \u0648\u062a\u0635\u0644 \u0625\u0644\u0649 \u0627\u0644\u0623\u0633\u0631\u0627\u0631\u060c \u0648\u062a\u0628\u0646\u064a \u0627\u0644\u062d\u0632\u0645 \u0627\u0644\u0628\u0631\u0645\u062c\u064a\u0629\u060c \u0648\u062a\u0646\u0634\u0631\u0647\u0627 \u0641\u064a \u0628\u064a\u0626\u0629 \u0627\u0644\u0625\u0646\u062a\u0627\u062c \u2014 \u0648\u063a\u0627\u0644\u0628\u0627\u064b \u0628\u0623\u062f\u0646\u0649 \u062d\u062f \u0645\u0646 \u0627\u0644\u0625\u0634\u0631\u0627\u0641 \u0627\u0644\u0628\u0634\u0631\u064a. \u0648\u0645\u0639 \u0630\u0644\u0643\u060c \u0648\u0639\u0644\u0649 \u0627\u0644\u0631\u063a\u0645 \u0645\u0646 \u0647\u0630\u0627 \u0627\u0644\u0645\u0633\u062a\u0648\u0649 \u0627\u0644\u0627\u0633\u062a\u062b\u0646\u0627\u0626\u064a \u0645\u0646 \u0627\u0644\u0648\u0635\u0648\u0644\u060c \u0646\u0627\u062f\u0631\u0627\u064b \u0645\u0627 \u062a\u064f\u062d\u062f\u064e\u0651\u062f \u0646\u0645\u0627\u0630\u062c \u0627\u0644\u062b\u0642\u0629 \u0627\u0644\u062a\u064a \u062a\u0642\u0648\u0645 \u0639\u0644\u064a\u0647\u0627 \u0647\u0630\u0647 \u0627\u0644\u0623\u0646\u0627\u0628\u064a\u0628 \u0628\u0634\u0643\u0644 \u0635\u0631\u064a\u062d.<\/p>\n
\u0639\u0646\u062f\u0645\u0627 \u062a\u0639\u0645\u0644 \u0623\u0646\u0628\u0648\u0628\u0629 \u0645\u0639\u0627\u0644\u062c\u0629 \u0645\u0627\u060c \u0641\u0625\u0646\u0647\u0627 \u062a\u062c\u064a\u0628 \u0636\u0645\u0646\u064a\u0627\u064b \u0639\u0646 \u0633\u0644\u0633\u0644\u0629 \u0645\u0646 \u0627\u0644\u0623\u0633\u0626\u0644\u0629 \u0627\u0644\u0623\u0645\u0646\u064a\u0629: \u0645\u0646 \u0627\u0644\u0630\u064a \u0623\u0637\u0644\u0642 \u0647\u0630\u0627 \u0627\u0644\u062a\u0646\u0641\u064a\u0630\u061f \u0645\u0627 \u0627\u0644\u0634\u064a\u0641\u0631\u0629 \u0627\u0644\u062a\u064a \u064a\u062a\u0645 \u062a\u0634\u063a\u064a\u0644\u0647\u0627\u061f \u0645\u0627 \u0627\u0644\u0647\u0648\u064a\u0629 \u0627\u0644\u062a\u064a \u062a\u062a\u0628\u0646\u0627\u0647\u0627 \u0627\u0644\u0623\u0646\u0628\u0648\u0628\u0629\u061f \u0645\u0627 \u0627\u0644\u0645\u0648\u0627\u0631\u062f \u0627\u0644\u062a\u064a \u064a\u0645\u0643\u0646\u0647\u0627 \u0627\u0644\u0648\u0635\u0648\u0644 \u0625\u0644\u064a\u0647\u0627\u061f \u0641\u064a \u0645\u0639\u0638\u0645 \u0627\u0644\u0645\u0624\u0633\u0633\u0627\u062a\u060c \u062a\u062a\u0645 \u0627\u0644\u0625\u062c\u0627\u0628\u0629 \u0639\u0646 \u0647\u0630\u0647 \u0627\u0644\u0623\u0633\u0626\u0644\u0629 \u0645\u0646 \u062e\u0644\u0627\u0644 \u0627\u0644\u0625\u0639\u062f\u0627\u062f\u0627\u062a \u0627\u0644\u0627\u0641\u062a\u0631\u0627\u0636\u064a\u0629 \u0628\u062f\u0644\u0627\u064b \u0645\u0646 \u0642\u0631\u0627\u0631\u0627\u062a \u0623\u0645\u0646\u064a\u0629 \u0645\u062f\u0631\u0648\u0633\u0629.<\/p>\n
\u064a\u0631\u0633\u0645 \u0647\u0630\u0627 \u0627\u0644\u062f\u0644\u064a\u0644 \u062e\u0631\u064a\u0637\u0629 \u0644\u0643\u064a\u0641\u064a\u0629 \u0639\u0645\u0644 \u0646\u0645\u0627\u0630\u062c \u062a\u0646\u0641\u064a\u0630 CI\/CD \u0627\u0644\u0645\u062e\u062a\u0644\u0641\u0629\u060c \u0648\u0623\u064a\u0646 \u062a\u064f\u0641\u062a\u0631\u0636 \u0627\u0644\u062b\u0642\u0629 \u0645\u0642\u0627\u0628\u0644 \u0627\u0644\u062a\u062d\u0642\u0642 \u0645\u0646\u0647\u0627\u060c \u0648\u0643\u064a\u0641\u064a\u0629 \u062a\u0642\u0648\u064a\u0629 \u0623\u0646\u0627\u0628\u064a\u0628\u0643 \u0636\u062f \u0623\u0646\u0645\u0627\u0637 \u0627\u0644\u0647\u062c\u0648\u0645 \u0627\u0644\u0648\u0627\u0642\u0639\u064a\u0629 \u0627\u0644\u062a\u064a \u062a\u0633\u062a\u063a\u0644 \u0647\u0630\u0647 \u0627\u0644\u062b\u063a\u0631\u0627\u062a. \u0633\u0648\u0627\u0621 \u0643\u0646\u062a \u062a\u0633\u062a\u062e\u062f\u0645 GitHub Actions \u0623\u0648 GitLab CI \u0623\u0648 \u0645\u0646\u0635\u0629 \u0623\u062e\u0631\u0649\u060c \u0641\u0625\u0646 \u062f\u064a\u0646\u0627\u0645\u064a\u0643\u064a\u0627\u062a \u0627\u0644\u062b\u0642\u0629 \u0627\u0644\u0623\u0633\u0627\u0633\u064a\u0629 \u0639\u0627\u0644\u0645\u064a\u0629 \u2014 \u0648\u0641\u0647\u0645\u0647\u0627 \u0636\u0631\u0648\u0631\u064a \u0644\u062a\u0623\u0645\u064a\u0646 \u0633\u0644\u0633\u0644\u0629 \u062a\u0648\u0631\u064a\u062f \u0627\u0644\u0628\u0631\u0645\u062c\u064a\u0627\u062a \u0627\u0644\u062e\u0627\u0635\u0629 \u0628\u0643.<\/p>\n
\u064a\u064f\u062d\u062f\u062f \u0646\u0645\u0648\u0630\u062c \u062a\u0646\u0641\u064a\u0630 CI\/CD \u062f\u0648\u0631\u0629 \u0627\u0644\u062d\u064a\u0627\u0629 \u0627\u0644\u0643\u0627\u0645\u0644\u0629 \u0644\u0643\u064a\u0641\u064a\u0629 \u062a\u0634\u063a\u064a\u0644 \u0634\u064a\u0641\u0631\u0629 \u0627\u0644\u0623\u0646\u0628\u0648\u0628\u0629\u060c \u0648\u0627\u0644\u0645\u0643\u0627\u0646 \u0627\u0644\u0630\u064a \u062a\u0639\u0645\u0644 \u0641\u064a\u0647 \u0641\u0639\u0644\u064a\u0627\u064b\u060c \u0648\u0627\u0644\u0647\u0648\u064a\u0629 \u0627\u0644\u062a\u064a \u062a\u062a\u0628\u0646\u0627\u0647\u0627 \u0623\u062b\u0646\u0627\u0621 \u0627\u0644\u062a\u0646\u0641\u064a\u0630\u060c \u0648\u0627\u0644\u0645\u0648\u0627\u0631\u062f \u0627\u0644\u062a\u064a \u064a\u0645\u0643\u0646\u0647\u0627 \u0627\u0644\u0648\u0635\u0648\u0644 \u0625\u0644\u064a\u0647\u0627. \u0625\u0646\u0647 \u0641\u064a \u062c\u0648\u0647\u0631\u0647 \u0627\u0644\u0628\u0646\u064a\u0629 \u0627\u0644\u0623\u0645\u0646\u064a\u0629 \u0644\u0637\u0628\u0642\u0629 \u0627\u0644\u0623\u062a\u0645\u062a\u0629 \u0627\u0644\u062e\u0627\u0635\u0629 \u0628\u0643.<\/p>\n
\u064a\u062c\u0628 \u0639\u0644\u0649 \u0643\u0644 \u0646\u0645\u0648\u0630\u062c \u062a\u0646\u0641\u064a\u0630 \u0623\u0646 \u064a\u062c\u064a\u0628 \u0639\u0646 \u0623\u0631\u0628\u0639\u0629 \u0623\u0633\u0626\u0644\u0629 \u062c\u0648\u0647\u0631\u064a\u0629:<\/p>\n
\u062a\u062e\u062a\u0644\u0641 \u0637\u0631\u064a\u0642\u0629 \u0627\u0644\u0625\u062c\u0627\u0628\u0629 \u0639\u0646 \u0647\u0630\u0647 \u0627\u0644\u0623\u0633\u0626\u0644\u0629 \u0627\u062e\u062a\u0644\u0627\u0641\u0627\u064b \u0643\u0628\u064a\u0631\u0627\u064b \u0639\u0628\u0631 \u0628\u064a\u0626\u0627\u062a \u0627\u0644\u062a\u0646\u0641\u064a\u0630:<\/p>\n
\u062a\u0648\u0641\u0631 \u0645\u0646\u0635\u0627\u062a \u0645\u062b\u0644 GitHub Actions (\u0627\u0644\u0645\u064f\u0634\u063a\u0651\u0644\u0627\u062a \u0627\u0644\u0645\u0633\u062a\u0636\u0627\u0641\u0629 \u0645\u0646 GitHub) \u0648GitLab.com shared runners \u0622\u0644\u0627\u062a \u0627\u0641\u062a\u0631\u0627\u0636\u064a\u0629 \u0645\u0624\u0642\u062a\u0629 \u062a\u064f\u062f\u0627\u0631 \u0628\u0648\u0627\u0633\u0637\u0629 \u0645\u0632\u0648\u0651\u062f CI\/CD. \u0639\u0627\u062f\u0629\u064b \u0645\u0627 \u064a\u062d\u0635\u0644 \u0643\u0644 \u0645\u0647\u0645\u0629 \u0639\u0644\u0649 \u0622\u0644\u0629 \u0627\u0641\u062a\u0631\u0627\u0636\u064a\u0629 \u062c\u062f\u064a\u062f\u0629 \u062a\u064f\u062f\u0645\u064e\u0651\u0631 \u0628\u0639\u062f \u0627\u0644\u062a\u0646\u0641\u064a\u0630. \u062a\u062a\u0648\u0644\u0649 \u0627\u0644\u0645\u0646\u0635\u0629 \u0625\u062f\u0627\u0631\u0629 \u0627\u0644\u062a\u062d\u062f\u064a\u062b\u0627\u062a \u0648\u0627\u0644\u0639\u0632\u0644 \u0648\u062f\u0648\u0631\u0629 \u0627\u0644\u062d\u064a\u0627\u0629. \u0627\u0644\u0645\u0642\u0627\u064a\u0636\u0629 \u0647\u0646\u0627 \u0647\u064a \u0623\u0646\u0643 \u062a\u062b\u0642 \u0628\u0636\u0645\u0627\u0646\u0627\u062a \u0627\u0644\u0639\u0632\u0644 \u0627\u0644\u062a\u064a \u064a\u0642\u062f\u0645\u0647\u0627 \u0627\u0644\u0645\u0632\u0648\u0651\u062f \u2014 \u0641\u0644\u0627 \u064a\u0645\u0643\u0646\u0643 \u0641\u062d\u0635 \u0627\u0644\u0628\u0646\u064a\u0629 \u0627\u0644\u062a\u062d\u062a\u064a\u0629 \u0627\u0644\u0623\u0633\u0627\u0633\u064a\u0629 \u0623\u0648 \u0627\u0644\u062a\u062d\u0643\u0645 \u0641\u064a\u0647\u0627.<\/p>\n
\u062a\u0646\u0634\u0631 \u0627\u0644\u0645\u0624\u0633\u0633\u0627\u062a \u0648\u0643\u0644\u0627\u0621 \u0627\u0644\u062a\u0634\u063a\u064a\u0644 \u0627\u0644\u062e\u0627\u0635\u0629 \u0628\u0647\u0627 \u0639\u0644\u0649 \u0628\u0646\u064a\u0629 \u062a\u062d\u062a\u064a\u0629 \u062a\u062a\u062d\u0643\u0645 \u0641\u064a\u0647\u0627 \u2014 \u0622\u0644\u0627\u062a \u0627\u0641\u062a\u0631\u0627\u0636\u064a\u0629 \u0623\u0648 \u062e\u0648\u0627\u062f\u0645 \u0645\u0627\u062f\u064a\u0629 \u0623\u0648 pods \u0641\u064a Kubernetes. \u064a\u0645\u0646\u062d \u0647\u0630\u0627 \u062a\u062d\u0643\u0645\u0627\u064b \u0643\u0627\u0645\u0644\u0627\u064b \u0641\u064a \u0628\u064a\u0626\u0629 \u0627\u0644\u062a\u0646\u0641\u064a\u0630\u060c \u0644\u0643\u0646\u0647 \u064a\u0646\u0642\u0644 \u0645\u0633\u0624\u0648\u0644\u064a\u0629 \u0627\u0644\u0639\u0632\u0644 \u0648\u0627\u0644\u062a\u062d\u062f\u064a\u062b \u0648\u0625\u062f\u0627\u0631\u0629 \u0628\u064a\u0627\u0646\u0627\u062a \u0627\u0644\u0627\u0639\u062a\u0645\u0627\u062f \u0628\u0627\u0644\u0643\u0627\u0645\u0644 \u0625\u0644\u0649 \u0627\u0644\u0645\u064f\u0634\u063a\u0651\u0644. \u064a\u064f\u0639\u062f\u0651 \u0627\u0644\u0645\u064f\u0634\u063a\u0651\u0644 \u0630\u0627\u062a\u064a \u0627\u0644\u0627\u0633\u062a\u0636\u0627\u0641\u0629 \u0627\u0644\u0645\u064f\u0647\u064a\u064e\u0651\u0623 \u0628\u0634\u0643\u0644 \u062e\u0627\u0637\u0626 \u0645\u0646 \u0623\u0643\u062b\u0631 \u0646\u0648\u0627\u0642\u0644 \u0627\u0644\u062d\u0631\u0643\u0629 \u0627\u0644\u062c\u0627\u0646\u0628\u064a\u0629 \u0634\u064a\u0648\u0639\u0627\u064b \u0641\u064a \u0647\u062c\u0645\u0627\u062a CI\/CD.<\/p>\n
\u062a\u064f\u0634\u063a\u0651\u0644 \u0627\u0644\u0639\u062f\u064a\u062f \u0645\u0646 \u0627\u0644\u0623\u0646\u0627\u0628\u064a\u0628 \u0627\u0644\u0645\u0647\u0627\u0645 \u062f\u0627\u062e\u0644 \u062d\u0627\u0648\u064a\u0627\u062a\u060c \u0633\u0648\u0627\u0621 \u0639\u0644\u0649 \u0628\u0646\u064a\u0629 \u062a\u062d\u062a\u064a\u0629 \u0630\u0627\u062a\u064a\u0629 \u0627\u0644\u0627\u0633\u062a\u0636\u0627\u0641\u0629 \u0623\u0648 \u0639\u0644\u0649 \u0645\u062c\u0645\u0648\u0639\u0627\u062a Kubernetes \u0645\u064f\u062f\u0627\u0631\u0629. \u064a\u0648\u0641\u0631 \u0627\u0644\u062a\u0646\u0641\u064a\u0630 \u0627\u0644\u0642\u0627\u0626\u0645 \u0639\u0644\u0649 \u0627\u0644\u062d\u0627\u0648\u064a\u0627\u062a \u0639\u0632\u0644\u0627\u064b \u0639\u0644\u0649 \u0645\u0633\u062a\u0648\u0649 \u0627\u0644\u0639\u0645\u0644\u064a\u0627\u062a \u0648\u0628\u064a\u0626\u0627\u062a \u0642\u0627\u0628\u0644\u0629 \u0644\u0644\u062a\u0643\u0631\u0627\u0631\u060c \u0644\u0643\u0646 \u0627\u0644\u062d\u0627\u0648\u064a\u0627\u062a \u0644\u064a\u0633\u062a \u062d\u062f\u0648\u062f\u0627\u064b \u0623\u0645\u0646\u064a\u0629 \u0628\u0646\u0641\u0633 \u0627\u0644\u0637\u0631\u064a\u0642\u0629 \u0627\u0644\u062a\u064a \u062a\u0643\u0648\u0646 \u0628\u0647\u0627 \u0627\u0644\u0622\u0644\u0627\u062a \u0627\u0644\u0627\u0641\u062a\u0631\u0627\u0636\u064a\u0629. \u064a\u0645\u0643\u0646 \u0623\u0646 \u064a\u064f\u0642\u0648\u0651\u0636 \u0627\u0644\u0648\u0635\u0648\u0644 \u0627\u0644\u0645\u0634\u062a\u0631\u0643 \u0625\u0644\u0649 \u0627\u0644\u0646\u0648\u0627\u0629 \u0648\u0627\u0644\u0623\u0642\u0631\u0627\u0635 \u0627\u0644\u0645\u064f\u0631\u0643\u064e\u0651\u0628\u0629 \u0648\u0643\u0634\u0641 Docker socket \u0646\u0645\u0648\u0630\u062c \u0627\u0644\u0639\u0632\u0644.<\/p>\n
\u062a\u064f\u0646\u0634\u0626 \u0628\u0639\u0636 \u0623\u0646\u0638\u0645\u0629 CI\/CD \u0627\u0644\u062d\u062f\u064a\u062b\u0629 (\u0645\u062b\u0644 AWS CodeBuild \u0623\u0648 \u0628\u0639\u0636 \u062a\u0643\u0648\u064a\u0646\u0627\u062a Buildkite) \u0645\u0648\u0627\u0631\u062f \u062d\u0648\u0633\u0628\u0629 \u0639\u0646\u062f \u0627\u0644\u0637\u0644\u0628 \u0644\u0643\u0644 \u0645\u0647\u0645\u0629. \u062a\u0642\u062f\u0645 \u0647\u0630\u0647 \u0627\u0644\u0646\u0645\u0627\u0630\u062c \u0636\u0645\u0627\u0646\u0627\u062a \u0639\u0632\u0644 \u0642\u0648\u064a\u0629 \u062d\u064a\u062b \u064a\u062d\u0635\u0644 \u0643\u0644 \u062a\u0646\u0641\u064a\u0630 \u0639\u0644\u0649 \u0645\u062b\u064a\u0644 \u062d\u0648\u0633\u0628\u0629 \u0645\u062e\u0635\u0635 \u0642\u0635\u064a\u0631 \u0627\u0644\u0639\u0645\u0631\u060c \u0644\u0643\u0646\u0647\u0627 \u062a\u064f\u062f\u062e\u0644 \u062a\u0639\u0642\u064a\u062f\u0627\u064b \u062d\u0648\u0644 \u062a\u0647\u064a\u0626\u0629 \u0628\u064a\u0627\u0646\u0627\u062a \u0627\u0644\u0627\u0639\u062a\u0645\u0627\u062f \u0648\u0627\u0644\u062a\u062d\u0643\u0645 \u0641\u064a \u0627\u0644\u0648\u0635\u0648\u0644 \u0625\u0644\u0649 \u0627\u0644\u0634\u0628\u0643\u0629.<\/p>\n
\u0625\u0646 \u0641\u0647\u0645 \u0627\u0644\u0646\u0645\u0648\u0630\u062c \u0627\u0644\u0630\u064a \u062a\u0633\u062a\u062e\u062f\u0645\u0647 \u0645\u0624\u0633\u0633\u062a\u0643 \u2014 \u0648\u0627\u0644\u062e\u0635\u0627\u0626\u0635 \u0627\u0644\u0623\u0645\u0646\u064a\u0629 \u0627\u0644\u062a\u064a \u064a\u0648\u0641\u0631\u0647\u0627 \u0648\u0627\u0644\u062a\u064a \u0644\u0627 \u064a\u0648\u0641\u0631\u0647\u0627 \u2014 \u0647\u0648 \u0627\u0644\u0623\u0633\u0627\u0633 \u0644\u0644\u062a\u0641\u0643\u064a\u0631 \u0641\u064a \u062b\u0642\u0629 CI\/CD.<\/p>\n
\u064a\u0648\u062c\u062f \u062d\u062f \u062b\u0642\u0629 \u062d\u064a\u062b\u0645\u0627 \u064a\u0646\u062a\u0642\u0644 \u0627\u0644\u062a\u062d\u0643\u0645 \u0645\u0646 \u0643\u064a\u0627\u0646 \u0623\u0648 \u0646\u0638\u0627\u0645 \u0625\u0644\u0649 \u0622\u062e\u0631. \u0641\u064a CI\/CD\u060c \u0647\u0646\u0627\u0643 \u0639\u062f\u0629 \u062d\u062f\u0648\u062f \u062b\u0642\u0629 \u062d\u0631\u062c\u0629\u060c \u0648\u0627\u0644\u0625\u062e\u0641\u0627\u0642 \u0639\u0646\u062f \u0623\u064a \u0645\u0646\u0647\u0627 \u064a\u0645\u0643\u0646 \u0623\u0646 \u064a\u0624\u062f\u064a \u0625\u0644\u0649 \u0627\u062e\u062a\u0631\u0627\u0642 \u0643\u0627\u0645\u0644 \u0644\u0644\u0623\u0646\u0628\u0648\u0628\u0629.<\/p>\n
\u062d\u062f \u0627\u0644\u062b\u0642\u0629 \u0627\u0644\u0623\u0648\u0644 \u064a\u0642\u0639 \u0628\u064a\u0646 \u0645\u0633\u062a\u0648\u062f\u0639 \u0627\u0644\u0634\u064a\u0641\u0631\u0629 \u0648\u0645\u064f\u062d\u0641\u0650\u0651\u0632 \u0627\u0644\u0623\u0646\u0628\u0648\u0628\u0629. \u0639\u0646\u062f\u0645\u0627 \u064a\u062f\u0641\u0639 \u0645\u0637\u0648\u0651\u0631 \u0627\u0644\u062a\u0632\u0627\u0645\u0627\u064b \u0623\u0648 \u064a\u0641\u062a\u062d \u0637\u0644\u0628 \u0633\u062d\u0628 (pull request)\u060c \u062a\u0642\u0631\u0631 \u0645\u0646\u0635\u0629 CI\/CD \u0645\u0627 \u0625\u0630\u0627 \u0643\u0627\u0646\u062a \u0633\u062a\u0646\u0641\u0630 \u0623\u0646\u0628\u0648\u0628\u0629 \u0648\u0643\u064a\u0641. \u0627\u0644\u0633\u0624\u0627\u0644 \u0627\u0644\u062d\u0631\u062c \u0647\u0648: \u0645\u0646 \u064a\u0645\u0643\u0646\u0647 \u062a\u0634\u063a\u064a\u0644 \u062a\u0646\u0641\u064a\u0630 \u0627\u0644\u0623\u0646\u0628\u0648\u0628\u0629\u060c \u0648\u0647\u0644 \u064a\u0645\u0643\u0646\u0647 \u0627\u0644\u062a\u062d\u0643\u0645 \u0641\u064a \u0627\u0644\u0634\u064a\u0641\u0631\u0629 \u0627\u0644\u062a\u064a \u062a\u064f\u0634\u063a\u0651\u0644\u0647\u0627 \u0627\u0644\u0623\u0646\u0628\u0648\u0628\u0629\u061f<\/strong><\/p>\n \u0641\u064a \u0643\u062b\u064a\u0631 \u0645\u0646 \u0627\u0644\u062a\u0643\u0648\u064a\u0646\u0627\u062a\u060c \u064a\u0645\u0643\u0646 \u0644\u0623\u064a \u0634\u062e\u0635 \u064a\u0633\u062a\u0637\u064a\u0639 \u0641\u062a\u062d \u0637\u0644\u0628 \u0633\u062d\u0628 \u2014 \u0628\u0645\u0627 \u0641\u064a \u0630\u0644\u0643 \u0627\u0644\u0645\u0633\u0627\u0647\u0645\u0648\u0646 \u0627\u0644\u062e\u0627\u0631\u062c\u064a\u0648\u0646 \u0641\u064a \u0627\u0644\u0645\u0633\u062a\u0648\u062f\u0639\u0627\u062a \u0627\u0644\u0639\u0627\u0645\u0629 \u2014 \u062a\u0634\u063a\u064a\u0644 \u062a\u0646\u0641\u064a\u0630 \u0627\u0644\u0623\u0646\u0628\u0648\u0628\u0629. \u0625\u0630\u0627 \u0643\u0627\u0646 \u062a\u0639\u0631\u064a\u0641 \u0627\u0644\u0623\u0646\u0628\u0648\u0628\u0629 \u0646\u0641\u0633\u0647 \u064a\u0623\u062a\u064a \u0645\u0646 \u0641\u0631\u0639 \u0637\u0644\u0628 \u0627\u0644\u0633\u062d\u0628\u060c \u0641\u0625\u0646 \u0627\u0644\u0645\u0633\u0627\u0647\u0645 \u064a\u062a\u062d\u0643\u0645 \u0641\u0639\u0644\u064a\u0627\u064b \u0641\u064a \u0627\u0644\u0634\u064a\u0641\u0631\u0629 \u0627\u0644\u062a\u064a \u062a\u0639\u0645\u0644 \u0641\u064a \u0628\u064a\u0626\u0629 CI \u0627\u0644\u062e\u0627\u0635\u0629 \u0628\u0643.<\/p>\n \u062d\u062f \u0627\u0644\u062b\u0642\u0629 \u0627\u0644\u062b\u0627\u0646\u064a \u064a\u0641\u0635\u0644 \u062a\u0639\u0631\u064a\u0641 \u0627\u0644\u0623\u0646\u0628\u0648\u0628\u0629 (\u0645\u0644\u0641 YAML \u0623\u0648 Jenkinsfile \u0623\u0648 \u0633\u0643\u0631\u064a\u0628\u062a \u0627\u0644\u0628\u0646\u0627\u0621) \u0639\u0646 \u0627\u0644\u0628\u064a\u0626\u0629 \u0627\u0644\u062a\u064a \u064a\u064f\u0646\u0641\u064e\u0651\u0630 \u0641\u064a\u0647\u0627. \u062a\u0634\u0645\u0644 \u0627\u0644\u0623\u0633\u0626\u0644\u0629 \u0627\u0644\u0631\u0626\u064a\u0633\u064a\u0629: \u0647\u0644 \u064a\u0645\u0644\u0643 \u0627\u0644\u0645\u064f\u0634\u063a\u0651\u0644 \u0648\u0635\u0648\u0644\u0627\u064b \u0625\u0644\u0649 \u0627\u0644\u0634\u0628\u0643\u0629\u061f \u0647\u0644 \u064a\u0645\u0643\u0646 \u0644\u0644\u0623\u0646\u0628\u0648\u0628\u0629 \u062a\u062b\u0628\u064a\u062a \u0628\u0631\u0627\u0645\u062c \u0639\u0634\u0648\u0627\u0626\u064a\u0629\u061f \u0647\u0644 \u064a\u0645\u0643\u0646\u0647\u0627 \u062a\u0639\u062f\u064a\u0644 \u0627\u0644\u0645\u064f\u0634\u063a\u0651\u0644 \u0646\u0641\u0633\u0647 \u0644\u0644\u0645\u0647\u0627\u0645 \u0627\u0644\u0645\u0633\u062a\u0642\u0628\u0644\u064a\u0629\u061f<\/p>\n \u0639\u0644\u0649 \u0627\u0644\u0645\u064f\u0634\u063a\u0651\u0644\u0627\u062a \u0627\u0644\u0645\u0634\u062a\u0631\u0643\u0629 \u0623\u0648 \u0627\u0644\u0645\u0633\u062a\u0645\u0631\u0629\u060c \u064a\u0645\u0643\u0646 \u0644\u062a\u0639\u0631\u064a\u0641 \u0623\u0646\u0628\u0648\u0628\u0629 \u062e\u0628\u064a\u062b \u062a\u062b\u0628\u064a\u062a \u0628\u0627\u0628 \u062e\u0644\u0641\u064a \u064a\u0633\u062a\u0645\u0631 \u0639\u0628\u0631 \u0639\u0645\u0644\u064a\u0627\u062a \u0627\u0644\u062a\u0646\u0641\u064a\u0630 \u0627\u0644\u0644\u0627\u062d\u0642\u0629 \u2014 \u0645\u0645\u0627 \u064a\u0624\u062b\u0631 \u0639\u0644\u0649 \u0645\u0633\u062a\u0648\u062f\u0639\u0627\u062a \u0648\u0641\u0631\u0642 \u0645\u062e\u062a\u0644\u0641\u0629 \u062a\u0645\u0627\u0645\u0627\u064b.<\/p>\n \u062a\u062d\u062a\u0627\u062c \u0627\u0644\u0623\u0646\u0627\u0628\u064a\u0628 \u0625\u0644\u0649 \u0628\u064a\u0627\u0646\u0627\u062a \u0627\u0639\u062a\u0645\u0627\u062f \u0644\u0644\u0642\u064a\u0627\u0645 \u0628\u0639\u0645\u0644 \u0645\u0641\u064a\u062f: \u0631\u0645\u0648\u0632 API \u0648\u0645\u0641\u0627\u062a\u064a\u062d \u0645\u0632\u0648\u062f\u064a \u0627\u0644\u0633\u062d\u0627\u0628\u0629 \u0648\u0643\u0644\u0645\u0627\u062a \u0645\u0631\u0648\u0631 \u0627\u0644\u0633\u062c\u0644\u0627\u062a \u0648\u0645\u0641\u0627\u062a\u064a\u062d \u0627\u0644\u062a\u0648\u0642\u064a\u0639. \u064a\u062d\u062f\u062f \u062d\u062f \u0627\u0644\u062b\u0642\u0629 \u0628\u064a\u0646 \u0628\u064a\u0626\u0629 \u0627\u0644\u062a\u0646\u0641\u064a\u0630 \u0648\u0645\u062e\u0632\u0646 \u0627\u0644\u0623\u0633\u0631\u0627\u0631 \u0645\u0627 \u064a\u0645\u0643\u0646 \u0644\u0623\u0646\u0628\u0648\u0628\u0629 \u0645\u062e\u062a\u0631\u0642\u0629 \u0627\u0644\u0648\u0635\u0648\u0644 \u0625\u0644\u064a\u0647. \u064a\u064f\u0639\u062f\u0651 \u0627\u0644\u0648\u0635\u0648\u0644 \u0627\u0644\u0645\u0641\u0631\u0637 \u0625\u0644\u0649 \u0627\u0644\u0623\u0633\u0631\u0627\u0631 \u0645\u0646 \u0623\u0643\u062b\u0631 \u0627\u0644\u0623\u062e\u0637\u0627\u0621 \u0634\u064a\u0648\u0639\u0627\u064b \u0648\u062e\u0637\u0648\u0631\u0629 \u0641\u064a \u062a\u0643\u0648\u064a\u0646\u0627\u062a CI\/CD.<\/p>\n \u062d\u062f \u0627\u0644\u062b\u0642\u0629 \u0627\u0644\u0623\u062e\u064a\u0631 \u064a\u0642\u0639 \u0628\u064a\u0646 \u0645\u0627 \u062a\u0646\u062a\u062c\u0647 \u0627\u0644\u0623\u0646\u0628\u0648\u0628\u0629 (\u0635\u0648\u0631\u0629 \u062d\u0627\u0648\u064a\u0629 \u0623\u0648 \u0645\u0644\u0641 \u062b\u0646\u0627\u0626\u064a \u0623\u0648 \u062e\u0637\u0629 Terraform) \u0648\u0627\u0644\u0646\u0638\u0627\u0645 \u0627\u0644\u0630\u064a \u062a\u064f\u0646\u0634\u0631 \u0641\u064a\u0647 \u062a\u0644\u0643 \u0627\u0644\u0645\u062e\u0631\u062c\u0627\u062a. \u0625\u0630\u0627 \u0643\u0627\u0646\u062a \u0647\u0648\u064a\u0629 \u0627\u0644\u0623\u0646\u0628\u0648\u0628\u0629 \u0627\u0644\u062a\u064a \u062a\u0628\u0646\u064a \u0627\u0644\u062d\u0632\u0645\u0629 \u0647\u064a \u0646\u0641\u0633 \u0627\u0644\u0647\u0648\u064a\u0629 \u0627\u0644\u062a\u064a \u062a\u0646\u0634\u0631\u0647\u0627 \u0641\u064a \u0627\u0644\u0625\u0646\u062a\u0627\u062c\u060c \u0641\u0644\u0627 \u064a\u0648\u062c\u062f \u0641\u0635\u0644 \u0641\u064a \u0627\u0644\u0645\u0633\u0624\u0648\u0644\u064a\u0627\u062a. \u064a\u0645\u0643\u0646 \u0623\u0646 \u062a\u0624\u062f\u064a \u062e\u0637\u0648\u0629 \u0628\u0646\u0627\u0621 \u0648\u0627\u062d\u062f\u0629 \u0645\u062e\u062a\u0631\u0642\u0629 \u0645\u0628\u0627\u0634\u0631\u0629 \u0625\u0644\u0649 \u0627\u062e\u062a\u0631\u0627\u0642 \u0628\u064a\u0626\u0629 \u0627\u0644\u0625\u0646\u062a\u0627\u062c.<\/p>\n \u0645\u0646 \u0627\u0644\u0646\u0627\u062d\u064a\u0629 \u0627\u0644\u0645\u0641\u0627\u0647\u064a\u0645\u064a\u0629\u060c \u062a\u0645\u0631 \u0623\u0646\u0628\u0648\u0628\u0629 CI\/CD \u0639\u0628\u0631 \u0623\u0631\u0628\u0639 \u0645\u0646\u0627\u0637\u0642 \u062b\u0642\u0629:<\/p>\n \u064a\u0645\u062b\u0644 \u0643\u0644 \u0633\u0647\u0645 \u062d\u062f \u062b\u0642\u0629. \u064a\u062c\u0628 \u0623\u0646 \u062a\u0648\u062c\u062f \u0636\u0648\u0627\u0628\u0637 \u0623\u0645\u0646\u064a\u0629 \u0639\u0646\u062f \u0643\u0644 \u0627\u0646\u062a\u0642\u0627\u0644: \u0642\u0648\u0627\u0639\u062f \u062d\u0645\u0627\u064a\u0629 \u0627\u0644\u0641\u0631\u0648\u0639 \u0639\u0646\u062f \u062d\u062f \u0627\u0644\u0645\u064f\u062d\u0641\u0650\u0651\u0632\u060c \u0648\u0639\u0632\u0644 \u0627\u0644\u0645\u064f\u0634\u063a\u0651\u0644 \u0639\u0646\u062f \u062d\u062f \u0627\u0644\u062a\u0646\u0641\u064a\u0630\u060c \u0648\u0628\u064a\u0627\u0646\u0627\u062a \u0627\u0639\u062a\u0645\u0627\u062f \u0645\u062d\u062f\u0648\u062f\u0629 \u0627\u0644\u0646\u0637\u0627\u0642 \u0639\u0646\u062f \u062d\u062f \u0627\u0644\u0623\u0633\u0631\u0627\u0631\u060c \u0648\u0645\u0648\u0627\u0641\u0642\u0627\u062a \u0627\u0644\u0646\u0634\u0631 \u0639\u0646\u062f \u062d\u062f \u0627\u0644\u0646\u0634\u0631.<\/p>\n \u062a\u064f\u0639\u062f\u0651 GitHub Actions \u0648\u0627\u062d\u062f\u0629 \u0645\u0646 \u0623\u0643\u062b\u0631 \u0645\u0646\u0635\u0627\u062a CI\/CD \u0627\u0639\u062a\u0645\u0627\u062f\u0627\u064b\u060c \u0648\u0646\u0645\u0648\u0630\u062c \u062a\u0646\u0641\u064a\u0630\u0647\u0627 \u064a\u062a\u0645\u062a\u0639 \u0628\u0639\u062f\u0629 \u062e\u0635\u0627\u0626\u0635 \u062b\u0642\u0629 \u0641\u0631\u064a\u062f\u0629 \u062a\u0633\u062a\u062d\u0642 \u0627\u0644\u0641\u0647\u0645 \u0627\u0644\u0645\u0639\u0645\u0651\u0642.<\/p>\n \u0627\u0644\u0645\u064f\u0634\u063a\u0651\u0644\u0627\u062a \u0627\u0644\u0645\u0633\u062a\u0636\u0627\u0641\u0629 \u0645\u0646 GitHub \u0647\u064a \u0622\u0644\u0627\u062a \u0627\u0641\u062a\u0631\u0627\u0636\u064a\u0629 \u0645\u0624\u0642\u062a\u0629 \u062a\u064f\u0648\u0641\u0651\u0631\u0647\u0627 GitHub \u0644\u0643\u0644 \u0645\u0647\u0645\u0629. \u062a\u0639\u0645\u0644 \u0639\u0644\u0649 \u0628\u0646\u064a\u0629 Azure \u0627\u0644\u062a\u062d\u062a\u064a\u0629\u060c \u0648\u062a\u064f\u062f\u0645\u064e\u0651\u0631 \u0628\u0639\u062f \u0627\u0643\u062a\u0645\u0627\u0644 \u0643\u0644 \u0645\u0647\u0645\u0629\u060c \u0648\u062a\u0648\u0641\u0631 \u0639\u0632\u0644\u0627\u064b \u0642\u0648\u064a\u0627\u064b \u0628\u064a\u0646 \u0627\u0644\u0645\u0647\u0627\u0645. \u0623\u0645\u0627 \u0627\u0644\u0645\u064f\u0634\u063a\u0651\u0644\u0627\u062a \u0630\u0627\u062a\u064a\u0629 \u0627\u0644\u0627\u0633\u062a\u0636\u0627\u0641\u0629 \u0641\u0647\u064a \u0623\u062c\u0647\u0632\u0629 \u062a\u0633\u062c\u0651\u0644\u0647\u0627 \u0644\u062f\u0649 GitHub. \u062a\u0633\u062a\u0645\u0631 \u0628\u064a\u0646 \u0627\u0644\u0645\u0647\u0627\u0645 \u0648\u064a\u0645\u0643\u0646\u0647\u0627 \u062a\u062c\u0645\u064a\u0639 \u062d\u0627\u0644\u0629\u060c \u0648\u0627\u0644\u0623\u0647\u0645 \u0645\u0646 \u0630\u0644\u0643 \u0623\u0646 \u0623\u064a \u0645\u0633\u062a\u0648\u062f\u0639 \u0641\u064a \u0627\u0644\u0645\u0646\u0638\u0645\u0629 \u0644\u062f\u064a\u0647 \u0648\u0635\u0648\u0644 \u0625\u0644\u0649 \u0627\u0644\u0645\u064f\u0634\u063a\u0651\u0644 \u064a\u0645\u0643\u0646\u0647 \u062a\u0646\u0641\u064a\u0630 \u0634\u064a\u0641\u0631\u0629 \u0639\u0644\u064a\u0647.<\/p>\n \u0628\u0627\u0644\u0646\u0633\u0628\u0629 \u0644\u0644\u0645\u064f\u0634\u063a\u0651\u0644\u0627\u062a \u0630\u0627\u062a\u064a\u0629 \u0627\u0644\u0627\u0633\u062a\u0636\u0627\u0641\u0629\u060c \u062a\u062d\u0630\u0631 GitHub \u0635\u0631\u0627\u062d\u0629\u064b: \u0644\u0627 \u062a\u0633\u062a\u062e\u062f\u0645 \u0627\u0644\u0645\u064f\u0634\u063a\u0651\u0644\u0627\u062a \u0630\u0627\u062a\u064a\u0629 \u0627\u0644\u0627\u0633\u062a\u0636\u0627\u0641\u0629 \u0645\u0639 \u0627\u0644\u0645\u0633\u062a\u0648\u062f\u0639\u0627\u062a \u0627\u0644\u0639\u0627\u0645\u0629.<\/strong> \u064a\u0645\u0643\u0646 \u0644\u0623\u064a fork \u062a\u0642\u062f\u064a\u0645 \u0637\u0644\u0628 \u0633\u062d\u0628 \u064a\u064f\u0634\u063a\u0651\u0644 \u0633\u064a\u0631 \u0639\u0645\u0644\u060c \u0648\u0647\u0630\u0627 \u0627\u0644\u0633\u064a\u0631 \u064a\u064f\u0646\u0641\u064e\u0651\u0630 \u0639\u0644\u0649 \u0628\u0646\u064a\u062a\u0643 \u0627\u0644\u062a\u062d\u062a\u064a\u0629 \u0645\u0639 \u0648\u0635\u0648\u0644\u0643 \u0644\u0644\u0634\u0628\u0643\u0629.<\/p>\n \u064a\u062a\u0644\u0642\u0649 \u0643\u0644 \u062a\u0634\u063a\u064a\u0644 \u0633\u064a\u0631 \u0639\u0645\u0644 \u062a\u0644\u0642\u0627\u0626\u064a\u0627\u064b \u064a\u064f\u0639\u062f\u0651 \u062a\u0639\u064a\u064a\u0646 \u0627\u0644\u0623\u0630\u0648\u0646\u0627\u062a \u0639\u0644\u0649 \u0645\u0633\u062a\u0648\u0649 \u0623\u0639\u0644\u0649 \u0625\u0644\u0649 \u0647\u0630\u0627 \u0623\u062d\u062f \u0623\u062e\u0637\u0631 \u062d\u062f\u0648\u062f \u0627\u0644\u062b\u0642\u0629 \u0641\u064a GitHub Actions. \u064a\u064f\u0634\u063a\u0651\u0644 \u062d\u062f\u062b \u064a\u0646\u0634\u0623 \u0627\u0644\u062e\u0637\u0631 \u0639\u0646\u062f\u0645\u0627 \u062a\u0642\u0648\u0645 \u0633\u064a\u0631 \u0639\u0645\u0644 \u064a\u0645\u0646\u062d \u0647\u0630\u0627 \u0627\u0644\u0646\u0645\u0637 \u0627\u0644\u0645\u0647\u0627\u062c\u0645 \u0627\u0644\u0642\u062f\u0631\u0629 \u0639\u0644\u0649 \u062a\u0646\u0641\u064a\u0630 \u0634\u064a\u0641\u0631\u0629 \u0639\u0634\u0648\u0627\u0626\u064a\u0629 \u0645\u0639 \u0627\u0644\u0648\u0635\u0648\u0644 \u0625\u0644\u0649 \u0623\u0633\u0631\u0627\u0631 \u0645\u0633\u062a\u0648\u062f\u0639\u0643. \u0648\u0647\u0648 \u0627\u0644\u0645\u062b\u0627\u0644 \u0627\u0644\u0646\u0645\u0648\u0630\u062c\u064a \u0644\u062a\u0646\u0641\u064a\u0630 \u0627\u0644\u0623\u0646\u0628\u0648\u0628\u0629 \u0627\u0644\u0645\u0633\u0645\u0648\u0645\u0629 (poisoned pipeline execution) \u0641\u064a GitHub Actions.<\/p>\n \u062a\u062a\u064a\u062d \u0644\u0643 \u0633\u064a\u0631 \u0627\u0644\u0639\u0645\u0644 \u0627\u0644\u0642\u0627\u0628\u0644\u0629 \u0644\u0625\u0639\u0627\u062f\u0629 \u0627\u0644\u0627\u0633\u062a\u062e\u062f\u0627\u0645 \u0645\u0631\u0643\u0632\u0629 \u0645\u0646\u0637\u0642 \u0627\u0644\u0623\u0646\u0628\u0648\u0628\u0629 \u0641\u064a \u0645\u0633\u062a\u0648\u062f\u0639 \u0645\u0634\u062a\u0631\u0643 \u0648\u0627\u0633\u062a\u062f\u0639\u0627\u0621\u0647\u0627 \u0645\u0646 \u0645\u0633\u062a\u0648\u062f\u0639\u0627\u062a \u0623\u062e\u0631\u0649. \u0639\u0646\u062f \u0627\u0633\u062a\u062f\u0639\u0627\u0621 \u0633\u064a\u0631 \u0639\u0645\u0644 \u0642\u0627\u0628\u0644 \u0644\u0625\u0639\u0627\u062f\u0629 \u0627\u0644\u0627\u0633\u062a\u062e\u062f\u0627\u0645\u060c \u064a\u0639\u0645\u0644 \u0628\u0623\u0630\u0648\u0646\u0627\u062a \u0648\u0623\u0633\u0631\u0627\u0631 \u0633\u064a\u0631 \u0627\u0644\u0639\u0645\u0644 \u0627\u0644\u0645\u064f\u0633\u062a\u062f\u0639\u064a<\/strong>. \u064a\u064f\u0646\u0634\u0626 \u0647\u0630\u0627 \u0633\u0644\u0633\u0644\u0629 \u062a\u0641\u0648\u064a\u0636 \u062b\u0642\u0629: \u0623\u0646\u062a \u062a\u062b\u0642 \u0628\u0623\u0646 \u0634\u064a\u0641\u0631\u0629 \u0633\u064a\u0631 \u0627\u0644\u0639\u0645\u0644 \u0627\u0644\u0642\u0627\u0628\u0644 \u0644\u0625\u0639\u0627\u062f\u0629 \u0627\u0644\u0627\u0633\u062a\u062e\u062f\u0627\u0645 (\u0641\u064a \u0645\u0633\u062a\u0648\u062f\u0639 \u0622\u062e\u0631) \u0633\u062a\u062a\u0639\u0627\u0645\u0644 \u0645\u0639 \u0623\u0633\u0631\u0627\u0631\u0643 \u0628\u0645\u0633\u0624\u0648\u0644\u064a\u0629.<\/p>\n \u062b\u0628\u0651\u062a \u0633\u064a\u0631 \u0627\u0644\u0639\u0645\u0644 \u0627\u0644\u0642\u0627\u0628\u0644\u0629 \u0644\u0625\u0639\u0627\u062f\u0629 \u0627\u0644\u0627\u0633\u062a\u062e\u062f\u0627\u0645 \u0639\u0644\u0649 SHA commit \u0645\u062d\u062f\u062f\u060c \u0648\u0644\u064a\u0633 \u0639\u0644\u0649 \u0641\u0631\u0639 \u0623\u0648 \u0648\u0633\u0645:<\/p>\n \u062a\u0648\u0641\u0631 GitHub Environments \u062d\u062f \u062b\u0642\u0629 \u062d\u0627\u0633\u0645\u0627\u064b \u0644\u0633\u064a\u0631 \u0639\u0645\u0644 \u0627\u0644\u0646\u0634\u0631. \u064a\u0645\u0643\u0646\u0643 \u062a\u0643\u0648\u064a\u0646 \u0645\u0631\u0627\u062c\u0639\u064a\u0646 \u0645\u0637\u0644\u0648\u0628\u064a\u0646 \u0648\u0645\u0624\u0642\u062a\u0627\u062a \u0627\u0646\u062a\u0638\u0627\u0631 \u0648\u0642\u064a\u0648\u062f \u0641\u0631\u0648\u0639 \u0639\u0644\u0649 \u0627\u0644\u0628\u064a\u0626\u0627\u062a. \u0639\u0646\u062f\u0645\u0627 \u062a\u0634\u064a\u0631 \u0645\u0647\u0645\u0629 \u0625\u0644\u0649 \u0628\u064a\u0626\u0629\u060c \u064a\u062c\u0628 \u0623\u0646 \u062a\u0633\u062a\u0648\u0641\u064a \u0642\u0648\u0627\u0639\u062f \u0627\u0644\u062d\u0645\u0627\u064a\u0629 \u0642\u0628\u0644 \u0625\u062a\u0627\u062d\u0629 \u0627\u0644\u0623\u0633\u0631\u0627\u0631 \u0627\u0644\u0645\u0631\u062a\u0628\u0637\u0629 \u0628\u062a\u0644\u0643 \u0627\u0644\u0628\u064a\u0626\u0629:<\/p>\n \u064a\u0636\u0645\u0646 \u0647\u0630\u0627 \u0623\u0646\u0647 \u062d\u062a\u0649 \u0644\u0648 \u062a\u0645 \u062a\u0634\u063a\u064a\u0644 \u0633\u064a\u0631 \u0627\u0644\u0639\u0645\u0644\u060c \u0644\u0646 \u062a\u064f\u0643\u0634\u0641 \u0628\u064a\u0627\u0646\u0627\u062a \u0627\u0639\u062a\u0645\u0627\u062f \u0627\u0644\u0625\u0646\u062a\u0627\u062c \u0628\u062f\u0648\u0646 \u0645\u0648\u0627\u0641\u0642\u0629 \u0628\u0634\u0631\u064a\u0629.<\/p>\n \u064a\u062a\u0645\u064a\u0632 GitLab CI \u0628\u0646\u0645\u0648\u0630\u062c \u062a\u0646\u0641\u064a\u0630 \u0645\u062e\u062a\u0644\u0641 \u0645\u0639 \u062e\u0635\u0627\u0626\u0635 \u062b\u0642\u0629 \u062e\u0627\u0635\u0629 \u0628\u0647\u060c \u0644\u0627 \u0633\u064a\u0645\u0627 \u062d\u0648\u0644 \u0646\u0637\u0627\u0642 \u0627\u0644\u0645\u064f\u0634\u063a\u0651\u0644\u0627\u062a \u0648\u062d\u0645\u0627\u064a\u0629 \u0627\u0644\u0645\u062a\u063a\u064a\u0631\u0627\u062a.<\/p>\n \u064a\u0642\u062f\u0645 GitLab \u062b\u0644\u0627\u062b\u0629 \u0645\u0633\u062a\u0648\u064a\u0627\u062a \u0645\u0646 \u0646\u0637\u0627\u0642 \u0627\u0644\u0645\u064f\u0634\u063a\u0651\u0644\u0627\u062a. Shared runners<\/strong> (\u0639\u0644\u0649 GitLab.com\u060c \u062a\u064f\u062f\u0627\u0631 \u0628\u0648\u0627\u0633\u0637\u0629 GitLab) \u0645\u062a\u0627\u062d\u0629 \u0644\u062c\u0645\u064a\u0639 \u0627\u0644\u0645\u0634\u0627\u0631\u064a\u0639. Group runners<\/strong> \u0645\u062a\u0627\u062d\u0629 \u0644\u062c\u0645\u064a\u0639 \u0627\u0644\u0645\u0634\u0627\u0631\u064a\u0639 \u0636\u0645\u0646 \u0645\u062c\u0645\u0648\u0639\u0629 GitLab. Project runners<\/strong> \u0645\u062e\u0635\u0635\u0629 \u0644\u0645\u0634\u0631\u0648\u0639 \u0648\u0627\u062d\u062f. \u064a\u062d\u062f\u062f \u0627\u0644\u0646\u0637\u0627\u0642 \u0646\u0635\u0641 \u0642\u0637\u0631 \u0627\u0644\u0627\u0646\u0641\u062c\u0627\u0631 \u0644\u0645\u064f\u0634\u063a\u0651\u0644 \u0645\u062e\u062a\u0631\u0642 \u2014 \u0627\u062e\u062a\u0631\u0627\u0642 shared runner \u064a\u0624\u062b\u0631 \u0639\u0644\u0649 \u062c\u0645\u064a\u0639 \u0627\u0644\u0645\u0634\u0627\u0631\u064a\u0639\u060c \u0628\u064a\u0646\u0645\u0627 \u0627\u062e\u062a\u0631\u0627\u0642 project runner \u0645\u062d\u0635\u0648\u0631 \u0628\u0645\u0634\u0631\u0648\u0639 \u0648\u0627\u062d\u062f.<\/p>\n \u0644\u0644\u0623\u062d\u0645\u0627\u0644 \u0627\u0644\u062d\u0633\u0627\u0633\u0629\u060c \u0627\u0633\u062a\u062e\u062f\u0645 \u062f\u0627\u0626\u0645\u0627\u064b \u0645\u064f\u0634\u063a\u0651\u0644\u0627\u062a \u062e\u0627\u0635\u0629 \u0628\u0627\u0644\u0645\u0634\u0631\u0648\u0639 \u0645\u0639 \u0648\u0633\u0648\u0645 \u0645\u0646\u0627\u0633\u0628\u0629:<\/p>\n \u062a\u064f\u0639\u062f\u0651 \u0622\u0644\u064a\u0629 \u0627\u0644\u0645\u062a\u063a\u064a\u0631\u0627\u062a \u0627\u0644\u0645\u062d\u0645\u064a\u0629 \u0641\u064a GitLab \u0636\u0627\u0628\u0637 \u062b\u0642\u0629 \u0631\u0626\u064a\u0633\u064a\u0627\u064b. \u0627\u0644\u0645\u062a\u063a\u064a\u0631\u0627\u062a \u0627\u0644\u0645\u064f\u0639\u0644\u064e\u0651\u0645\u0629 \u0643\u0640 “\u0645\u062d\u0645\u064a\u0629” \u062a\u064f\u0643\u0634\u0641 \u0641\u0642\u0637 \u0644\u0644\u0623\u0646\u0627\u0628\u064a\u0628 \u0627\u0644\u062a\u064a \u062a\u0639\u0645\u0644 \u0639\u0644\u0649 \u0641\u0631\u0648\u0639 \u0645\u062d\u0645\u064a\u0629 \u0623\u0648 \u0648\u0633\u0648\u0645 \u0645\u062d\u0645\u064a\u0629. \u0647\u0630\u0627 \u064a\u0639\u0646\u064a \u0623\u0646 \u0623\u0646\u0628\u0648\u0628\u0629 \u062a\u064f\u0634\u063a\u064e\u0651\u0644 \u0628\u0648\u0627\u0633\u0637\u0629 \u0637\u0644\u0628 \u062f\u0645\u062c \u0645\u0646 \u0641\u0631\u0639 \u0645\u064a\u0632\u0629 \u2014 \u0623\u0648 \u0623\u0633\u0648\u0623 \u0645\u0646 \u0630\u0644\u0643\u060c \u0645\u0646 fork \u2014 \u0644\u0646 \u062a\u0645\u0644\u0643 \u0648\u0635\u0648\u0644\u0627\u064b \u0625\u0644\u0649 \u0627\u0644\u0645\u062a\u063a\u064a\u0631\u0627\u062a \u0627\u0644\u0645\u062d\u0645\u064a\u0629.<\/p>\n \u0647\u0630\u0647 \u0647\u064a \u0627\u0644\u0622\u0644\u064a\u0629 \u0627\u0644\u0623\u0633\u0627\u0633\u064a\u0629 \u0641\u064a GitLab \u0644\u0645\u0646\u0639 \u0643\u0634\u0641 \u0627\u0644\u0623\u0633\u0631\u0627\u0631 \u0644\u0644\u0634\u064a\u0641\u0631\u0629 \u063a\u064a\u0631 \u0627\u0644\u0645\u0648\u062b\u0648\u0642\u0629:<\/p>\n \u062a\u062a\u0644\u0642\u0649 \u0643\u0644 \u0645\u0647\u0645\u0629 GitLab CI \u0631\u0645\u0632 \u0641\u064a \u0625\u0639\u062f\u0627\u062f\u0627\u062a \u0645\u0634\u0631\u0648\u0639\u0643 \u0636\u0645\u0646 CI\/CD \u2192 Token Access<\/strong>\u060c \u0642\u064a\u0651\u062f \u0646\u0637\u0627\u0642 \u0627\u0644\u0631\u0645\u0632 \u0625\u0644\u0649 \u0627\u0644\u0645\u0634\u0627\u0631\u064a\u0639 \u0627\u0644\u062a\u064a \u062a\u062d\u062a\u0627\u062c \u0623\u0646\u0628\u0648\u0628\u062a\u0643 \u0641\u0639\u0644\u0627\u064b \u0644\u0644\u062a\u0641\u0627\u0639\u0644 \u0645\u0639\u0647\u0627 \u0641\u0642\u0637.<\/p>\n \u064a\u0645\u064a\u0651\u0632 GitLab \u0628\u064a\u0646 \u0623\u0646\u0627\u0628\u064a\u0628 \u0627\u0644\u0641\u0631\u0639 \u0648\u0623\u0646\u0627\u0628\u064a\u0628 \u0637\u0644\u0628 \u0627\u0644\u062f\u0645\u062c. \u062a\u0639\u0645\u0644 \u0623\u0646\u0627\u0628\u064a\u0628 \u0637\u0644\u0628 \u0627\u0644\u062f\u0645\u062c \u0641\u064a \u0633\u064a\u0627\u0642 \u0637\u0644\u0628 \u0627\u0644\u062f\u0645\u062c \u0648\u0644\u0647\u0627 \u0648\u0635\u0648\u0644 \u0625\u0644\u0649 \u0645\u062c\u0645\u0648\u0639\u0629 \u0645\u062d\u062f\u0648\u062f\u0629 \u0645\u0646 \u0627\u0644\u0645\u062a\u063a\u064a\u0631\u0627\u062a \u0627\u0644\u0645\u064f\u062d\u062f\u062f\u0629 \u0645\u0633\u0628\u0642\u0627\u064b. \u0628\u0627\u0644\u0646\u0633\u0628\u0629 \u0644\u0644\u0623\u0646\u0627\u0628\u064a\u0628 \u0627\u0644\u0645\u064f\u0634\u063a\u064e\u0651\u0644\u0629 \u0628\u0648\u0627\u0633\u0637\u0629 \u0637\u0644\u0628\u0627\u062a \u062f\u0645\u062c \u0645\u0646 forks\u060c \u0644\u0627 \u064a\u0643\u0634\u0641 GitLab \u0627\u0644\u0645\u062a\u063a\u064a\u0631\u0627\u062a \u0627\u0644\u0645\u062d\u0645\u064a\u0629 \u0623\u0648 \u0623\u0633\u0631\u0627\u0631 \u0645\u0633\u062a\u0648\u0649 \u0627\u0644\u0645\u0634\u0631\u0648\u0639 \u2014 \u0647\u0630\u0627 \u062d\u062f \u062b\u0642\u0629 \u0645\u0642\u0635\u0648\u062f.<\/p>\n \u0648\u0645\u0639 \u0630\u0644\u0643\u060c \u0641\u0625\u0646 \u0627\u0644\u0623\u0646\u0627\u0628\u064a\u0628 \u0627\u0644\u062a\u064a \u062a\u0639\u0645\u0644 \u0639\u0644\u0649 \u0627\u0644\u0646\u062a\u064a\u062c\u0629 \u0627\u0644\u0645\u062f\u0645\u062c\u0629<\/strong> ( \u0641\u0647\u0645 \u0646\u0645\u0627\u0630\u062c \u0627\u0644\u062a\u0646\u0641\u064a\u0630 \u0645\u0647\u0645\u060c \u0644\u0643\u0646 \u0627\u0644\u0642\u064a\u0645\u0629 \u0627\u0644\u062d\u0642\u064a\u0642\u064a\u0629 \u062a\u0623\u062a\u064a \u0645\u0646 \u0627\u0644\u062a\u0639\u0631\u0641 \u0639\u0644\u0649 \u0627\u0644\u0623\u0646\u0645\u0627\u0637 \u0627\u0644\u062a\u064a \u062a\u0624\u062f\u064a \u0625\u0644\u0649 \u0627\u0644\u0627\u062e\u062a\u0631\u0627\u0642. \u0647\u0630\u0647 \u0647\u064a \u0625\u062e\u0641\u0627\u0642\u0627\u062a \u0627\u0641\u062a\u0631\u0627\u0636\u0627\u062a \u0627\u0644\u062b\u0642\u0629 \u0627\u0644\u062a\u064a \u062a\u0638\u0647\u0631 \u0628\u0634\u0643\u0644 \u0645\u062a\u0643\u0631\u0631 \u0641\u064a \u0627\u062e\u062a\u0631\u0627\u0642\u0627\u062a CI\/CD \u0627\u0644\u0648\u0627\u0642\u0639\u064a\u0629.<\/p>\n \u064a\u062d\u062f\u062b \u062a\u0646\u0641\u064a\u0630 \u0627\u0644\u0623\u0646\u0628\u0648\u0628\u0629 \u0627\u0644\u0645\u0633\u0645\u0648\u0645\u0629 \u0639\u0646\u062f\u0645\u0627 \u064a\u0633\u062a\u0637\u064a\u0639 \u0645\u0647\u0627\u062c\u0645 \u062a\u0639\u062f\u064a\u0644 \u062a\u0639\u0631\u064a\u0641 \u0627\u0644\u0623\u0646\u0628\u0648\u0628\u0629 \u0627\u0644\u0630\u064a \u064a\u0639\u0645\u0644 \u0641\u064a \u0633\u064a\u0627\u0642 \u0630\u064a \u0627\u0645\u062a\u064a\u0627\u0632\u0627\u062a. \u0647\u0630\u0627 \u0647\u0648 \u0627\u0644\u0641\u0626\u0629 \u0627\u0644\u0623\u0643\u062b\u0631 \u0627\u0646\u062a\u0634\u0627\u0631\u0627\u064b \u0645\u0646 \u062b\u063a\u0631\u0627\u062a CI\/CD. \u064a\u062d\u062f\u062b \u0639\u0646\u062f\u0645\u0627:<\/p>\n \u064a\u0639\u062f\u0651\u0644 \u0627\u0644\u0645\u0647\u0627\u062c\u0645 \u0645\u0644\u0641 YAML \u0627\u0644\u062e\u0627\u0635 \u0628\u0627\u0644\u0623\u0646\u0628\u0648\u0628\u0629 (\u0623\u0648 \u0633\u0643\u0631\u064a\u0628\u062a \u062a\u0633\u062a\u062f\u0639\u064a\u0647) \u0644\u0627\u0633\u062a\u062e\u0631\u0627\u062c \u0627\u0644\u0623\u0633\u0631\u0627\u0631 \u0623\u0648 \u062d\u0642\u0646 \u0623\u0628\u0648\u0627\u0628 \u062e\u0644\u0641\u064a\u0629 \u0641\u064a \u062d\u0632\u0645 \u0627\u0644\u0628\u0646\u0627\u0621 \u0623\u0648 \u0627\u0644\u062a\u0645\u062d\u0648\u0631 \u0625\u0644\u0649 \u0627\u0644\u0623\u0646\u0638\u0645\u0629 \u0627\u0644\u062f\u0627\u062e\u0644\u064a\u0629.<\/p>\n \u0639\u0646\u062f\u0645\u0627 \u062a\u062a\u0634\u0627\u0631\u0643 \u0641\u0631\u0642 \u0623\u0648 \u0645\u0634\u0627\u0631\u064a\u0639 \u0645\u062a\u0639\u062f\u062f\u0629 \u0641\u064a \u0627\u0644\u0645\u064f\u0634\u063a\u0651\u0644\u0627\u062a \u2014 \u062e\u0627\u0635\u0629 \u0627\u0644\u0645\u064f\u0634\u063a\u0651\u0644\u0627\u062a \u0630\u0627\u062a\u064a\u0629 \u0627\u0644\u0627\u0633\u062a\u0636\u0627\u0641\u0629 \u2014 \u063a\u0627\u0644\u0628\u0627\u064b \u0645\u0627 \u064a\u0643\u0648\u0646 \u0647\u0646\u0627\u0643 \u0627\u0641\u062a\u0631\u0627\u0636 \u0636\u0645\u0646\u064a \u0644\u0644\u0639\u0632\u0644 \u0644\u0627 \u064a\u0648\u062c\u062f \u0641\u0639\u0644\u064a\u0627\u064b. \u064a\u0645\u0643\u0646 \u0644\u0645\u0647\u0645\u0629 \u062a\u0639\u0645\u0644 \u0639\u0644\u0649 \u0645\u064f\u0634\u063a\u0651\u0644 \u0630\u0627\u062a\u064a \u0627\u0644\u0627\u0633\u062a\u0636\u0627\u0641\u0629 \u0645\u0634\u062a\u0631\u0643 \u0623\u0646:<\/p>\n \u0645\u0646 \u0627\u0644\u0623\u0646\u0645\u0627\u0637 \u0627\u0644\u0634\u0627\u0626\u0639\u0629 \u0628\u0634\u0643\u0644 \u0645\u0642\u0644\u0642 \u0645\u0646\u062d \u062d\u0633\u0627\u0628 \u062e\u062f\u0645\u0629 CI\/CD \u0648\u0635\u0648\u0644\u0627\u064b \u0625\u062f\u0627\u0631\u064a\u0627\u064b \u0648\u0627\u0633\u0639\u0627\u064b \u2014 “\u0641\u0642\u0637 \u0644\u062c\u0639\u0644 \u0627\u0644\u0623\u0645\u0648\u0631 \u062a\u0639\u0645\u0644”. \u062f\u0648\u0631 AWS IAM \u0645\u0639 \u0627\u0633\u062a\u062e\u062f\u0627\u0645 GitHub Actions \u0623\u0648 \u0642\u0648\u0627\u0644\u0628 GitLab CI \u0645\u0646 \u0627\u0644\u0645\u062c\u062a\u0645\u0639 \u064a\u0639\u0646\u064a \u062a\u0646\u0641\u064a\u0630 \u0634\u064a\u0641\u0631\u0629 \u0634\u062e\u0635 \u0622\u062e\u0631 \u0641\u064a \u0623\u0646\u0628\u0648\u0628\u062a\u0643 \u0645\u0639 \u0623\u0633\u0631\u0627\u0631\u0643. \u0639\u0646\u062f\u0645\u0627 \u062a\u0634\u064a\u0631 \u0625\u0644\u0649 \u0645\u0631\u0627\u062c\u0639 \u0627\u0644\u0648\u0633\u0648\u0645 \u0642\u0627\u0628\u0644\u0629 \u0644\u0644\u062a\u063a\u064a\u064a\u0631. \u064a\u0645\u0643\u0646 \u0644\u0645\u0647\u0627\u062c\u0645 \u064a\u062e\u062a\u0631\u0642 \u0645\u0633\u062a\u0648\u062f\u0639 action \u0646\u0642\u0644 \u0648\u0633\u0645 \u062a\u0633\u062a\u062e\u062f\u0645 \u0627\u0644\u0639\u062f\u064a\u062f \u0645\u0646 \u0627\u0644\u0623\u0646\u0627\u0628\u064a\u0628 \u0647\u0648\u064a\u0629 \u0648\u0627\u062d\u062f\u0629 (\u062d\u0633\u0627\u0628 \u062e\u062f\u0645\u0629 \u0623\u0648 \u062f\u0648\u0631 IAM \u0623\u0648 \u0631\u0645\u0632 \u0645\u0645\u064a\u0632) \u0644\u0643\u0644 \u0645\u0646 \u0627\u0644\u0628\u0646\u0627\u0621 \u0648\u0627\u0644\u0646\u0634\u0631. \u0647\u0630\u0627 \u0627\u0644\u062f\u0645\u062c \u064a\u0639\u0646\u064a \u0623\u0646 \u0627\u0644\u0627\u062e\u062a\u0631\u0627\u0642 \u0623\u062b\u0646\u0627\u0621 \u0645\u0631\u062d\u0644\u0629 \u0627\u0644\u0628\u0646\u0627\u0621 \u2014 \u0627\u0644\u062a\u064a \u062a\u062a\u0639\u0627\u0645\u0644 \u0645\u0639 \u0634\u064a\u0641\u0631\u0629 \u063a\u064a\u0631 \u0645\u0648\u062b\u0648\u0642\u0629 \u2014 \u064a\u0645\u0646\u062d \u0648\u0635\u0648\u0644\u0627\u064b \u0645\u0628\u0627\u0634\u0631\u0627\u064b \u0625\u0644\u0649 \u0623\u0647\u062f\u0627\u0641 \u0627\u0644\u0646\u0634\u0631. \u064a\u062c\u0628 \u0623\u0646 \u062a\u0643\u0648\u0646 \u0647\u0648\u064a\u0629 \u0627\u0644\u0628\u0646\u0627\u0621 \u0642\u0627\u062f\u0631\u0629 \u0641\u0642\u0637 \u0639\u0644\u0649 \u0625\u0646\u062a\u0627\u062c \u0627\u0644\u062d\u0632\u0645. \u064a\u062c\u0628 \u0627\u0633\u062a\u062e\u062f\u0627\u0645 \u0647\u0648\u064a\u0629 \u0646\u0634\u0631 \u0645\u0646\u0641\u0635\u0644\u0629 \u0648\u0623\u0643\u062b\u0631 \u062a\u0642\u064a\u064a\u062f\u0627\u064b \u0644\u0646\u0634\u0631 \u062a\u0644\u0643 \u0627\u0644\u062d\u0632\u0645 \u0641\u064a \u0627\u0644\u0625\u0646\u062a\u0627\u062c.<\/p>\n \u0645\u0639 \u0648\u0636\u0648\u062d \u0646\u0645\u0648\u0630\u062c \u0627\u0644\u062a\u0647\u062f\u064a\u062f\u060c \u0625\u0644\u064a\u0643 \u0627\u0644\u062a\u062f\u0627\u0628\u064a\u0631 \u0627\u0644\u0645\u0644\u0645\u0648\u0633\u0629 \u0627\u0644\u062a\u064a \u062a\u064f\u0648\u0627\u0626\u0645 \u0627\u0644\u0636\u0648\u0627\u0628\u0637 \u0645\u0639 \u062d\u062f\u0648\u062f \u0627\u0644\u062b\u0642\u0629.<\/p>\n \u0644\u0627 \u062a\u0633\u0645\u062d \u0623\u0628\u062f\u0627\u064b \u0628\u0645\u064f\u062d\u0641\u0650\u0651\u0632\u0627\u062a \u0623\u0646\u0628\u0648\u0628\u0629 \u063a\u064a\u0631 \u0645\u0642\u064a\u062f\u0629. \u062d\u062f\u0651\u062f \u0627\u0644\u0623\u062d\u062f\u0627\u062b \u0627\u0644\u062a\u064a \u064a\u0645\u0643\u0646\u0647\u0627 \u062a\u0634\u063a\u064a\u0644 \u0633\u064a\u0631 \u0627\u0644\u0639\u0645\u0644\u060c \u0648\u062a\u0623\u0643\u062f \u0645\u0646 \u0623\u0646 \u0627\u0644\u0623\u0646\u0627\u0628\u064a\u0628 \u0630\u0627\u062a \u0627\u0644\u0627\u0645\u062a\u064a\u0627\u0632\u0627\u062a \u062a\u0639\u0645\u0644 \u0641\u0642\u0637 \u0639\u0644\u0649 \u0641\u0631\u0648\u0639 \u0645\u0648\u062b\u0648\u0642\u0629:<\/p>\n \u0637\u0628\u0651\u0642 \u0645\u0628\u062f\u0623 \u0627\u0644\u062d\u062f \u0627\u0644\u0623\u062f\u0646\u0649 \u0645\u0646 \u0627\u0644\u0627\u0645\u062a\u064a\u0627\u0632\u0627\u062a \u0639\u0644\u0649 \u0643\u0644 \u0631\u0645\u0632 \u0641\u064a \u0623\u0646\u0628\u0648\u0628\u062a\u0643. \u0641\u064a GitHub Actions\u060c \u0639\u064a\u0651\u0646 \u0623\u0630\u0648\u0646\u0627\u062a \u0627\u0641\u062a\u0631\u0627\u0636\u064a\u0629 \u0645\u0642\u064a\u0651\u062f\u0629 \u0648\u0627\u0645\u0646\u062d \u0623\u0630\u0648\u0646\u0627\u062a \u0645\u062d\u062f\u062f\u0629 \u0644\u0643\u0644 \u0645\u0647\u0645\u0629:<\/p>\n\u0645\u0646 \u062a\u0639\u0631\u064a\u0641 \u0627\u0644\u0623\u0646\u0628\u0648\u0628\u0629 \u0625\u0644\u0649 \u0628\u064a\u0626\u0629 \u0627\u0644\u062a\u0646\u0641\u064a\u0630<\/h3>\n
\u0645\u0646 \u0628\u064a\u0626\u0629 \u0627\u0644\u062a\u0646\u0641\u064a\u0630 \u0625\u0644\u0649 \u0627\u0644\u0623\u0633\u0631\u0627\u0631 \u0648\u0628\u064a\u0627\u0646\u0627\u062a \u0627\u0644\u0627\u0639\u062a\u0645\u0627\u062f<\/h3>\n
\u0645\u0646 \u0645\u062e\u0631\u062c\u0627\u062a \u0627\u0644\u0628\u0646\u0627\u0621 \u0625\u0644\u0649 \u0647\u062f\u0641 \u0627\u0644\u0646\u0634\u0631<\/h3>\n
\u0631\u0633\u0645 \u062e\u0631\u064a\u0637\u0629 \u0645\u0646\u0627\u0637\u0642 \u0627\u0644\u062b\u0642\u0629<\/h3>\n
Zone 1: Source Control (Developer workstations, branches, PRs)\n \u2193 [Trigger boundary]\nZone 2: Pipeline Definition (YAML\/config parsed by CI platform)\n \u2193 [Execution boundary]\nZone 3: Execution Environment (Runner, container, VM \u2014 with secrets)\n \u2193 [Deployment boundary]\nZone 4: Deployment Targets (Production, staging, registries, cloud APIs)\n<\/code><\/pre>\n\u0646\u0645\u0648\u0630\u062c \u062a\u0646\u0641\u064a\u0630 GitHub Actions<\/h2>\n
\u0627\u0644\u0645\u064f\u0634\u063a\u0651\u0644\u0627\u062a \u0627\u0644\u0645\u0633\u062a\u0636\u0627\u0641\u0629 \u0645\u0646 GitHub \u0645\u0642\u0627\u0628\u0644 \u0627\u0644\u0645\u064f\u0634\u063a\u0651\u0644\u0627\u062a \u0630\u0627\u062a\u064a\u0629 \u0627\u0644\u0627\u0633\u062a\u0636\u0627\u0641\u0629<\/h3>\n
\u0623\u0630\u0648\u0646\u0627\u062a \u0648\u0646\u0637\u0627\u0642 GITHUB_TOKEN<\/h3>\n
GITHUB_TOKEN<\/code> \u0628\u0623\u0630\u0648\u0646\u0627\u062a \u0645\u062d\u062f\u062f\u0629 \u0627\u0644\u0646\u0637\u0627\u0642 \u0644\u0644\u0645\u0633\u062a\u0648\u062f\u0639. \u0627\u0641\u062a\u0631\u0627\u0636\u064a\u0627\u064b\u060c \u064a\u0645\u062a\u0644\u0643 \u0647\u0630\u0627 \u0627\u0644\u0631\u0645\u0632 \u0623\u0630\u0648\u0646\u0627\u062a \u0642\u0631\u0627\u0621\u0629\/\u0643\u062a\u0627\u0628\u0629 \u0648\u0627\u0633\u0639\u0629 \u0644\u0645\u062d\u062a\u0648\u064a\u0627\u062a \u0627\u0644\u0645\u0633\u062a\u0648\u062f\u0639 \u0648\u0627\u0644\u062d\u0632\u0645 \u0648\u0627\u0644\u0645\u0634\u0643\u0644\u0627\u062a \u0648\u0623\u0643\u062b\u0631. \u064a\u0633\u0645\u062d \u0645\u0641\u062a\u0627\u062d permissions<\/code> \u0628\u062a\u0642\u064a\u064a\u062f \u0647\u0630\u0627 \u0627\u0644\u0631\u0645\u0632 \u0625\u0644\u0649 \u0645\u0627 \u0647\u0648 \u0645\u0637\u0644\u0648\u0628 \u0641\u0642\u0637:<\/p>\npermissions:\n contents: read\n packages: write\n id-token: write # For OIDC federation\n<\/code><\/pre>\nread-all<\/code> \u0623\u0648 \u062d\u062a\u0649 \u0641\u0627\u0631\u063a\u0629 ({}<\/code>) \u062b\u0645 \u0645\u0646\u062d \u0623\u0630\u0648\u0646\u0627\u062a \u0645\u062d\u062f\u062f\u0629 \u0644\u0643\u0644 \u0645\u0647\u0645\u0629 \u062e\u0637\u0648\u0629 \u062a\u0642\u0648\u064a\u0629 \u062d\u0627\u0633\u0645\u0629. \u0628\u062f\u0648\u0646 \u0630\u0644\u0643\u060c \u0641\u0625\u0646 \u0623\u064a \u062e\u0637\u0648\u0629 \u0645\u062e\u062a\u0631\u0642\u0629 \u0641\u064a \u0623\u064a \u0645\u0647\u0645\u0629 \u062a\u0645\u0644\u0643 \u0648\u0635\u0648\u0644 \u0643\u062a\u0627\u0628\u0629 \u0625\u0644\u0649 \u0645\u0633\u062a\u0648\u062f\u0639\u0643.<\/p>\n\u0633\u064a\u0631 \u0639\u0645\u0644 Fork PR: pull_request \u0645\u0642\u0627\u0628\u0644 pull_request_target<\/h3>\n
pull_request<\/code> \u062a\u0639\u0631\u064a\u0641 \u0633\u064a\u0631 \u0627\u0644\u0639\u0645\u0644 \u0645\u0646 \u0641\u0631\u0639 head \u0627\u0644\u062e\u0627\u0635 \u0628\u0637\u0644\u0628 \u0627\u0644\u0633\u062d\u0628 \u2014 \u0645\u0645\u0627 \u064a\u0639\u0646\u064a \u0623\u0646 \u0627\u0644\u0645\u0633\u0627\u0647\u0645 \u064a\u062a\u062d\u0643\u0645 \u0641\u064a \u0634\u064a\u0641\u0631\u0629 \u0633\u064a\u0631 \u0627\u0644\u0639\u0645\u0644 \u2014 \u0644\u0643\u0646\u0647 \u0628\u0634\u0643\u0644 \u062d\u0627\u0633\u0645 \u0644\u0627<\/strong> \u064a\u0645\u0644\u0643 \u0648\u0635\u0648\u0644\u0627\u064b \u0625\u0644\u0649 \u0623\u0633\u0631\u0627\u0631 \u0627\u0644\u0645\u0633\u062a\u0648\u062f\u0639. \u0623\u0645\u0627 \u062d\u062f\u062b pull_request_target<\/code> \u0641\u064a\u064f\u0634\u063a\u0651\u0644 \u0633\u064a\u0631 \u0627\u0644\u0639\u0645\u0644 \u0645\u0646 \u0627\u0644\u0641\u0631\u0639 \u0627\u0644\u0623\u0633\u0627\u0633\u064a<\/strong> (\u0627\u0644\u0641\u0631\u0639 \u0627\u0644\u0631\u0626\u064a\u0633\u064a \u0644\u0645\u0633\u062a\u0648\u062f\u0639\u0643) \u0648\u064a\u0645\u0644\u0643<\/strong> \u0648\u0635\u0648\u0644\u0627\u064b \u0625\u0644\u0649 \u0627\u0644\u0623\u0633\u0631\u0627\u0631.<\/p>\npull_request_target<\/code> \u0628\u0633\u062d\u0628 \u0634\u064a\u0641\u0631\u0629 \u0641\u0631\u0639 head \u0627\u0644\u062e\u0627\u0635 \u0628\u0637\u0644\u0628 \u0627\u0644\u0633\u062d\u0628:<\/p>\n# DANGEROUS: pull_request_target with explicit checkout of PR code\non: pull_request_target\n\njobs:\n build:\n runs-on: ubuntu-latest\n steps:\n - uses: actions\/checkout@v4\n with:\n ref: ${{ github.event.pull_request.head.sha }}\n # This now runs UNTRUSTED CODE with access to SECRETS\n - run: npm install && npm test\n<\/code><\/pre>\n\u0633\u064a\u0631 \u0627\u0644\u0639\u0645\u0644 \u0627\u0644\u0642\u0627\u0628\u0644\u0629 \u0644\u0625\u0639\u0627\u062f\u0629 \u0627\u0644\u0627\u0633\u062a\u062e\u062f\u0627\u0645 \u0648\u062a\u0641\u0648\u064a\u0636 \u0627\u0644\u062b\u0642\u0629 (Reusable Workflows)<\/h3>\n
jobs:\n deploy:\n uses: my-org\/shared-workflows\/.github\/workflows\/deploy.yml@a1b2c3d4e5f6\n secrets: inherit\n<\/code><\/pre>\n\u0642\u0648\u0627\u0639\u062f \u062d\u0645\u0627\u064a\u0629 \u0627\u0644\u0628\u064a\u0626\u0629 (Environment Protection Rules)<\/h3>\n
jobs:\n deploy-production:\n runs-on: ubuntu-latest\n environment:\n name: production\n url: https:\/\/example.com\n steps:\n - name: Deploy\n run: .\/deploy.sh\n env:\n AWS_ACCESS_KEY_ID: ${{ secrets.PROD_AWS_KEY }}\n<\/code><\/pre>\n\u0646\u0645\u0648\u0630\u062c \u062a\u0646\u0641\u064a\u0630 GitLab CI<\/h2>\n
Shared Runners \u0645\u0642\u0627\u0628\u0644 Group Runners \u0645\u0642\u0627\u0628\u0644 Project Runners<\/h3>\n
deploy-production:\n stage: deploy\n tags:\n - production-runner\n - isolated\n script:\n - .\/deploy.sh\n rules:\n - if: $CI_COMMIT_BRANCH == \"main\"\n<\/code><\/pre>\n\u0627\u0644\u0641\u0631\u0648\u0639 \u0627\u0644\u0645\u062d\u0645\u064a\u0629 \u0648\u0627\u0644\u0645\u062a\u063a\u064a\u0631\u0627\u062a \u0627\u0644\u0645\u062d\u0645\u064a\u0629 (Protected Branches and Protected Variables)<\/h3>\n
# In .gitlab-ci.yml, protected variables are only available on protected branches\ndeploy:\n stage: deploy\n script:\n - echo \"Deploying with $PRODUCTION_API_KEY\"\n rules:\n - if: $CI_COMMIT_BRANCH == \"main\" # main is a protected branch\n environment:\n name: production\n<\/code><\/pre>\n\u0646\u0637\u0627\u0642 \u0648\u0642\u064a\u0648\u062f CI_JOB_TOKEN<\/h3>\n
CI_JOB_TOKEN<\/code>\u060c \u0648\u0647\u0648 \u0631\u0645\u0632 \u064a\u064f\u0646\u0634\u0623 \u062a\u0644\u0642\u0627\u0626\u064a\u0627\u064b \u0648\u0645\u062d\u062f\u062f \u0627\u0644\u0646\u0637\u0627\u0642 \u0644\u0644\u0645\u0634\u0631\u0648\u0639. \u0627\u0641\u062a\u0631\u0627\u0636\u064a\u0627\u064b\u060c \u064a\u0645\u0643\u0646 \u0644\u0647\u0630\u0627 \u0627\u0644\u0631\u0645\u0632 \u0627\u0644\u0648\u0635\u0648\u0644 \u0625\u0644\u0649 \u0645\u0648\u0627\u0631\u062f \u0645\u0634\u0627\u0631\u064a\u0639 \u0623\u062e\u0631\u0649\u060c \u0645\u0645\u0627 \u064a\u064f\u0646\u0634\u0626 \u0639\u0644\u0627\u0642\u0629 \u062b\u0642\u0629 \u0636\u0645\u0646\u064a\u0629. \u064a\u0633\u0645\u062d GitLab \u0628\u062a\u0642\u064a\u064a\u062f \u0648\u0635\u0648\u0644 CI_JOB_TOKEN<\/code> \u0645\u0646 \u062e\u0644\u0627\u0644 \u062a\u0643\u0648\u064a\u0646 \u0642\u0627\u0626\u0645\u0629 \u0645\u0633\u0645\u0648\u062d \u0628\u0647\u0627 \u0645\u0646 \u0627\u0644\u0645\u0634\u0627\u0631\u064a\u0639 \u0627\u0644\u062a\u064a \u064a\u0645\u0643\u0646 \u0627\u0644\u0648\u0635\u0648\u0644 \u0625\u0644\u064a\u0647\u0627 \u2014 \u062e\u0637\u0648\u0629 \u062a\u0642\u0648\u064a\u0629 \u062d\u0627\u0633\u0645\u0629 \u062a\u062d\u062f \u0645\u0646 \u0627\u0644\u062d\u0631\u0643\u0629 \u0627\u0644\u062c\u0627\u0646\u0628\u064a\u0629 \u0625\u0630\u0627 \u062a\u0645 \u0627\u062e\u062a\u0631\u0627\u0642 \u0623\u0646\u0628\u0648\u0628\u0629.<\/p>\n\u0623\u0646\u0627\u0628\u064a\u0628 \u0637\u0644\u0628 \u0627\u0644\u062f\u0645\u062c \u0648\u062d\u062f\u0648\u062f \u0627\u0644\u062b\u0642\u0629 (Merge Request Pipelines)<\/h3>\n
merge_request_event<\/code> \u0645\u0639 \u062a\u0645\u0643\u064a\u0646 \u0623\u0646\u0627\u0628\u064a\u0628 \u0627\u0644\u0646\u062a\u0627\u0626\u062c \u0627\u0644\u0645\u062f\u0645\u062c\u0629) \u0644\u0627 \u062a\u0632\u0627\u0644 \u062a\u064f\u0646\u0641\u0651\u0630 \u0627\u0644\u0634\u064a\u0641\u0631\u0629 \u0645\u0646 \u0627\u0644\u0640 fork. \u0625\u0630\u0627 \u0633\u0645\u062d \u062a\u0639\u0631\u064a\u0641 \u0623\u0646\u0628\u0648\u0628\u062a\u0643 \u0628\u062a\u0646\u0641\u064a\u0630 \u0634\u064a\u0641\u0631\u0629 \u0639\u0634\u0648\u0627\u0626\u064a\u0629 \u0648\u0643\u0627\u0646\u062a \u0627\u0644\u0645\u0647\u0645\u0629 \u062a\u0645\u0644\u0643 \u0648\u0635\u0648\u0644\u0627\u064b \u0625\u0644\u0649 \u0627\u0644\u0623\u0633\u0631\u0627\u0631 \u0645\u0646 \u062e\u0644\u0627\u0644 \u0645\u062a\u063a\u064a\u0631\u0627\u062a \u063a\u064a\u0631 \u0645\u062d\u0645\u064a\u0629\u060c \u0641\u0644\u0627 \u064a\u0632\u0627\u0644 \u0645\u0646 \u0627\u0644\u0645\u0645\u0643\u0646 \u0627\u0633\u062a\u063a\u0644\u0627\u0644 \u0630\u0644\u0643.<\/p>\n\u0625\u062e\u0641\u0627\u0642\u0627\u062a \u0627\u0641\u062a\u0631\u0627\u0636\u0627\u062a \u0627\u0644\u062b\u0642\u0629 \u0627\u0644\u0634\u0627\u0626\u0639\u0629<\/h2>\n
\u062a\u0646\u0641\u064a\u0630 \u0627\u0644\u0623\u0646\u0628\u0648\u0628\u0629 \u0627\u0644\u0645\u0633\u0645\u0648\u0645\u0629 (Poisoned Pipeline Execution – PPE)<\/h3>\n
\n
\u0627\u0641\u062a\u0631\u0627\u0636 \u0639\u0632\u0644 \u0627\u0644\u0645\u064f\u0634\u063a\u0651\u0644 \u0639\u0644\u0649 \u0627\u0644\u0628\u0646\u064a\u0629 \u0627\u0644\u062a\u062d\u062a\u064a\u0629 \u0627\u0644\u0645\u0634\u062a\u0631\u0643\u0629<\/h3>\n
\n
\u062d\u0633\u0627\u0628\u0627\u062a \u0627\u0644\u062e\u062f\u0645\u0629 \u0630\u0627\u062a \u0627\u0644\u0627\u0645\u062a\u064a\u0627\u0632\u0627\u062a \u0627\u0644\u0645\u0641\u0631\u0637\u0629<\/h3>\n
AdministratorAccess<\/code>\u060c \u0623\u0648 \u062d\u0633\u0627\u0628 \u062e\u062f\u0645\u0629 Kubernetes \u0645\u0639 cluster-admin<\/code>\u060c \u0623\u0648 \u062d\u0633\u0627\u0628 cloud SQL \u0628\u0627\u0645\u062a\u064a\u0627\u0632\u0627\u062a DBA. \u0639\u0646\u062f \u0627\u062e\u062a\u0631\u0627\u0642 \u0623\u064a \u062e\u0637\u0648\u0629 \u0641\u064a \u0627\u0644\u0623\u0646\u0628\u0648\u0628\u0629\u060c \u064a\u0631\u062b \u0627\u0644\u0645\u0647\u0627\u062c\u0645 \u062c\u0645\u064a\u0639 \u0647\u0630\u0647 \u0627\u0644\u0623\u0630\u0648\u0646\u0627\u062a.<\/p>\n\u0627\u0644\u062b\u0642\u0629 \u0627\u0644\u0636\u0645\u0646\u064a\u0629 \u0641\u064a Actions \u0648\u0627\u0644\u0642\u0648\u0627\u0644\u0628 \u0645\u0646 \u062c\u0647\u0627\u062a \u062e\u0627\u0631\u062c\u064a\u0629<\/h3>\n
uses: some-org\/some-action@v2<\/code>\u060c \u0641\u0623\u0646\u062a \u062a\u062b\u0642 \u0628\u0623\u0646:<\/p>\n\n
v2<\/code> \u0644\u0645 \u064a\u064f\u0646\u0642\u0644 \u0644\u064a\u0634\u064a\u0631 \u0625\u0644\u0649 \u0634\u064a\u0641\u0631\u0629 \u0645\u062e\u062a\u0644\u0641\u0629<\/li>\nv2<\/code> \u0625\u0644\u0649 commit \u062e\u0628\u064a\u062b\u060c \u0648\u0643\u0644 \u0623\u0646\u0628\u0648\u0628\u0629 \u062a\u0634\u064a\u0631 \u0625\u0644\u0649 \u0630\u0644\u0643 \u0627\u0644\u0648\u0633\u0645 \u0633\u062a\u064f\u0646\u0641\u0651\u0630 \u0627\u0644\u0634\u064a\u0641\u0631\u0629 \u0627\u0644\u062c\u062f\u064a\u062f\u0629 \u0641\u064a \u062a\u0634\u063a\u064a\u0644\u0647\u0627 \u0627\u0644\u062a\u0627\u0644\u064a.<\/p>\n\u0627\u0644\u062e\u0644\u0637 \u0628\u064a\u0646 \u0647\u0648\u064a\u0629 \u0648\u0642\u062a \u0627\u0644\u0628\u0646\u0627\u0621 \u0648\u0647\u0648\u064a\u0629 \u0648\u0642\u062a \u0627\u0644\u0646\u0634\u0631<\/h3>\n
\u062a\u0642\u0648\u064a\u0629 \u0627\u0641\u062a\u0631\u0627\u0636\u0627\u062a \u0627\u0644\u062b\u0642\u0629<\/h2>\n
\u0634\u0631\u0648\u0637 \u0627\u0644\u062a\u0634\u063a\u064a\u0644 \u0627\u0644\u0635\u0631\u064a\u062d\u0629 \u0648\u0645\u0631\u0634\u062d\u0627\u062a \u0627\u0644\u0641\u0631\u0648\u0639<\/h3>\n
# GitHub Actions: restrict deployment to main branch only\non:\n push:\n branches: [main]\n pull_request:\n branches: [main]\n # Only trigger on PRs targeting main; PR code runs without secrets\n\njobs:\n deploy:\n if: github.event_name == 'push' && github.ref == 'refs\/heads\/main'\n runs-on: ubuntu-latest\n steps:\n - uses: actions\/checkout@v4\n - run: .\/deploy.sh\n<\/code><\/pre>\n# GitLab CI: use rules to restrict sensitive jobs\ndeploy-production:\n stage: deploy\n script:\n - .\/deploy.sh\n rules:\n - if: $CI_COMMIT_BRANCH == \"main\" && $CI_PIPELINE_SOURCE != \"merge_request_event\"\n when: manual\n allow_failure: false\n environment:\n name: production\n<\/code><\/pre>\n\u0623\u0630\u0648\u0646\u0627\u062a \u0627\u0644\u0631\u0645\u0648\u0632 \u0627\u0644\u0645\u0645\u064a\u0632\u0629 \u0628\u0627\u0644\u062d\u062f \u0627\u0644\u0623\u062f\u0646\u0649<\/h3>\n
# Set restrictive defaults at the workflow level\npermissions: read-all\n\njobs:\n build:\n runs-on: ubuntu-latest\n permissions:\n contents: read\n packages: write\n steps:\n - uses: actions\/checkout@v4\n - run: npm ci && npm run build\n\n deploy:\n needs: build\n runs-on: ubuntu-latest\n permissions:\n contents: read\n id-token: write # Only for OIDC, no write to repo\n environment: production\n steps:\n - run: .\/deploy.sh\n<\/code><\/pre>\n