Shivasurya developed automated security scanning for infrastructure code in the sourcegraph/deploy-sourcegraph-helm repository, focusing on enhancing CI/CD pipelines and DevOps practices. By implementing a GitHub Actions workflow using YAML, Shivasurya integrated Checkov to scan Helm charts on every push and pull request to the main branch. The workflow outputs SARIF-formatted results, enabling real-time security feedback and streamlined triage for vulnerabilities. This work established a baseline for consistent, auditable security checks, improving the security posture of deployments. Although no major bugs were addressed during this period, the emphasis on security automation laid a strong foundation for ongoing hardening and faster remediation.