Worked on the Skyscanner/backpack-foundations repository to address issues in the automated release workflow, focusing on improving the security and reliability of secret management. The main contribution involved fixing a bug where publishing secrets, such as NPM_TOKEN, were not properly scoped, which previously led to unauthorized access and unreliable releases. By configuring GitHub Actions to restrict these secrets to the Publishing environment, the workflow now prevents unintended usage and reduces the risk of flaky deployments. This work leveraged skills in CI/CD and GitHub Actions, utilizing YAML for workflow configuration, and demonstrated a targeted approach to maintaining robust automation pipelines.