Worked on the arrow-kt/arrow repository to implement secure artifact signing and publishing within the CI/CD pipeline. Updated GitHub Actions workflows using YAML to introduce new environment variables and tokenized Sonatype credentials, replacing legacy OSS credentials for enhanced security and compliance. Focused on secrets management to centralize artifact signing, improving traceability and audit readiness throughout the release process. This work reduced credential risk and streamlined artifact publishing, laying the foundation for compliant open-source software distribution. Demonstrated technical proficiency in CI/CD automation, GitHub Actions, and secure credential handling while collaborating with the repository team to modernize and standardize release workflows.