infisical-ci-integrationlisted

# Infisical CI/CD Integration Patterns for integrating Infisical secret injection into CI/CD pipelines and deployment targets. ## GitHub Actions ### Standard Pattern ```yaml - name: Install Infisical CLI run: | curl -1sLf 'https://dl.cloudsmith.io/public/infisical/infisical-cli/setup.deb.sh' | sudo -E bash sudo apt-get update && sudo apt-get install -y infisical - name: Authenticate run: | infisical login --method=universal-auth \ --client-id=${{ secrets.INFISICAL_UNIVERSAL_AUTH_CLIENT_ID }} \ --client-secret=${{ secrets.INFISICAL_UNIVERSAL_AUTH_CLIENT_SECRET }} env: INFISICAL_DISABLE_UPDATE_CHECK: "true" - name: Run with secrets run: infisical run --env=production -- npm run build ``` ### Multi-Environment Deploy ```yaml jobs: deploy-staging: runs-on: ubuntu-latest steps: # ... install + auth steps ... - run: infisical run --env=staging -- npm run deploy deploy-production: needs: deploy-staging runs-on: ubuntu-latest steps: # ... install + auth steps ... - run: infisical run --env=production -- npm run deploy ``` ### Export as Environment Variables When tools need env vars directly (not via `infisical run`): ```yaml - name: Export secrets run: | infisical export --env=production --format=dotenv >> $GITHUB_ENV ``` ## GitLab CI ### Standard Pattern ```yaml variables: INFISICAL_DISABLE_UPDATE_CHECK: "true" .infisical-setup: before_script: - curl -1sLf 'https://dl.cl