How do you secure a CI/CD pipeline? Cover secrets management, supply chain security, image scanning, and how to implement the principle of least privilege in automated deployments.

Sample answer preview

CI/CD pipelines are high-value targets for attackers because they have access to production systems. Securing them requires a comprehensive approach across multiple dimensions. For secrets management, never store secrets in code or environment variables that might be logged.