Tiexin Guo, a Senior DevOps Consultant at Amazon Web Services, shares insights on building a modern CI pipeline using GitHub Actions, focusing on testing, building, and pushing Docker images while ensuring security through GitGuardian's ggshield action. He recounts his experience in an agile team managing over 25 microservices and facing the challenges of adding a new stage to an existing CI pipeline characterized by its complexity and monolithic structure. The article provides a step-by-step guide to constructing a declarative CI pipeline, demonstrating the use of Golang for building a demo app, utilizing Docker multi-stage builds, and implementing GitHub Actions for efficient and secure CI workflows. It emphasizes the importance of security by integrating secret scanning into the CI pipeline and highlights the advantages of a daemon-less Docker build using tools like Kaniko and Podman, which align with OCI standards to enhance security in containerized CI environments.