Sebastián Sifontes

Sebastián Sifontes

Full-Stack AI Engineer. Building ViraClip, agente_seguros_ai, and other AI-powered products. Economist turned engineer.

GitHub Actions CI/CD for Python Projects: My Minimal Setup

1 minute read

Published:

After setting up CI/CD for ViraClip and agente_seguros_ai, I’ve distilled my GitHub Actions setup to the smallest config that still gives me real value.

What I Actually Need from CI

For a solo developer on a SaaS product, CI doesn’t need to be complex. My requirements:

  1. Run tests on every push to main and on PRs
  2. Build and push Docker image on merge to main
  3. Notify me if anything breaks

That’s it. No staging environments, no approval gates — just fast feedback.

The Workflow

# .github/workflows/ci.yml
name: CI

on:
  push:
    branches: [main]
  pull_request:
    branches: [main]

jobs:
  test:
    runs-on: ubuntu-latest
    services:
      postgres:
        image: postgres:15
        env:
          POSTGRES_PASSWORD: testpass
          POSTGRES_DB: testdb
        options: >-
          --health-cmd pg_isready
          --health-interval 5s
          --health-timeout 5s
          --health-retries 10
      redis:
        image: redis:7
        options: >-
          --health-cmd "redis-cli ping"
          --health-interval 5s

    steps:
      - uses: actions/checkout@v4

      - name: Set up Python
        uses: actions/setup-python@v5
        with:
          python-version: '3.11'
          cache: 'pip'

      - name: Install dependencies
        run: pip install -r requirements.txt

      - name: Run Alembic migrations
        run: alembic upgrade head
        env:
          DATABASE_URL: postgresql://postgres:testpass@localhost/testdb

      - name: Run tests
        run: pytest tests/ -v --tb=short
        env:
          DATABASE_URL: postgresql://postgres:testpass@localhost/testdb
          REDIS_URL: redis://localhost:6379

Key Decisions

Use services: for dependencies — GitHub Actions can spin up Postgres and Redis as sidecar containers. No mocking, no SQLite workarounds — your tests run against the real thing.

Cache pip dependenciescache: 'pip' in setup-python cuts install time from ~45s to ~5s on repeat runs.

Run migrations in CI — This catches broken migrations before they hit production. If alembic upgrade head fails, the build fails.

Docker Build on Merge

  build:
    needs: test
    if: github.ref == 'refs/heads/main'
    runs-on: ubuntu-latest
    steps:
      - uses: actions/checkout@v4

      - name: Build and push Docker image
        uses: docker/build-push-action@v5
        with:
          push: true
          tags: ghcr.io/$:latest

This only runs after tests pass and only on main — safe and simple.

You May Also Enjoy

Future Blog Post

less than 1 minute read

Published:

This post will show up by default. To disable scheduling of future posts, edit config.yml and set future: false.

FastAPI Background Tasks vs Celery: When to Use Each

1 minute read

Published:

FastAPI ships with a built-in BackgroundTasks system. It’s tempting to use it for everything async — but there’s a clear line where you should switch to a proper task queue like Celery or Redis workers.