German Suarez Alonso focused on enhancing CI/CD security for the Telefonica/mistica-design repository by overhauling GitHub Actions workflows. He implemented DevOps best practices using YAML, introducing stricter credential handling and reducing exposure risks, particularly from fork pull requests. His approach included updating token permissions and creating a dedicated, restricted token for sensitive workflow steps. German also improved input validation to mitigate script injection threats within the CI/CD pipeline. Throughout the process, he ensured documentation and naming conventions aligned with security standards. The work demonstrated a thorough, security-driven mindset, addressing potential vulnerabilities and strengthening the repository’s automated deployment processes at the workflow level.