CI/CD Course
Monitoring CI/CD Pipelines
In this lesson
Pipeline monitoring is the practice of collecting, visualising, and alerting on data about the CI/CD system itself — not just the applications it deploys, but the pipeline's own health, speed, reliability, and delivery performance. A team that does not measure its pipeline cannot systematically improve it. Pipeline durations trend upward unnoticed. Flaky tests accumulate. Deployment frequency drops. Change failure rates rise. These patterns are invisible without measurement — and without measurement, the pipeline degrades slowly while the team attributes each symptom to something else. Monitoring the pipeline is how teams turn CI/CD from a tool into a continuously improving system.
DORA Metrics — The Industry Standard for Delivery Performance
The DORA metrics — from the DevOps Research and Assessment programme — are the four measurements most strongly correlated with software delivery performance and organisational outcomes. They are the closest thing the industry has to a standard for measuring how well a CI/CD system is working. Teams that track these metrics have a shared vocabulary for describing delivery capability and a consistent basis for improvement.
Deployment Frequency
How often code is successfully deployed to production. Elite teams deploy on demand — multiple times per day. This metric reflects both pipeline maturity and organisational trust in the delivery process.
Lead Time for Changes
The time from a commit being merged to it running in production. Elite teams achieve under one hour. Long lead times indicate pipeline bottlenecks, manual gates, or large batch deployments that accumulate risk.
Change Failure Rate
The percentage of deployments that cause a production incident requiring a hotfix or rollback. Elite teams maintain below 5%. A high failure rate indicates insufficient pre-production testing or overly large deployment batches.
Time to Restore Service
How long it takes to recover from a production incident — from detection to restored service. Elite teams restore in under one hour. Long restoration times indicate slow rollback procedures, poor observability, or insufficient on-call tooling.
The Aircraft Instrument Panel Analogy
A pilot does not fly by looking out the window and feeling whether the plane seems to be going the right speed. They have an instrument panel: altitude, airspeed, heading, fuel, engine status — all measured continuously, all displayed in real time, all with warning indicators that alert before a problem becomes a crisis. A CI/CD system without monitoring is a plane flown by feel. The DORA metrics are the instrument panel: they do not tell you how to fly, but they tell you immediately when something is going wrong, before it becomes an incident that grounds the plane.
Pipeline Health Signals — What to Measure Beyond DORA
DORA metrics measure delivery outcomes. Pipeline health signals measure the pipeline's internal condition — the leading indicators that predict whether DORA metrics will deteriorate before they actually do. A team that tracks only DORA metrics sees problems after they have already affected delivery. A team that also tracks pipeline health signals sees problems forming and can intervene before they land.
Pipeline Health Signals — Metric, Target, and What Drift Indicates
Alerting on Pipeline Failures — Closing the Loop Quickly
A pipeline failure that nobody notices for an hour is an hour of blocked delivery. A main branch that is broken and stays broken while the team works on unrelated things is a compounding problem — every subsequent commit stacks on top of the broken state, making the eventual fix harder. Pipeline failure alerting ensures that a broken main branch is treated as an incident: visible, urgent, and resolved before new work is stacked on top of it.
The most common pattern is Slack notification on pipeline failure for the main branch, sent immediately to a dedicated channel that the team monitors. GitHub Actions supports this natively through webhook-based notification steps or through community actions. The notification should include the commit SHA, the author, the failing job name, and a direct link to the pipeline run — everything the engineer needs to start investigating without navigating the GitHub UI first.
Deployment Observability — What Happens After the Pipeline
The pipeline's job does not end when the deployment completes. A deployment that succeeds at the infrastructure level — new pods running, health checks passing — can still introduce production issues that only become visible through application-level observability: error rates rising, latency increasing, specific user flows failing. Deployment markers are the mechanism that connects pipeline events to observability data.
When a pipeline completes a deployment, it should emit a deployment event to the observability platform — Datadog, Grafana, New Relic, or equivalent. This event appears as a vertical marker on every dashboard, aligning the timing of any metric change with the exact deployment that caused it. An error rate spike that begins 3 minutes after a deployment marker is almost certainly caused by that deployment. Without the marker, the correlation requires manual archaeology through logs and deployment history. With it, the on-call engineer sees the cause immediately in the dashboard they are already watching.
Deployment Event and Failure Alert — GitHub Actions
jobs:
deploy:
runs-on: ubuntu-latest
environment: production
steps:
- name: Deploy to production
run: ./deploy.sh production ${{ github.sha }}
- name: Send deployment marker to Datadog
if: success()
run: |
curl -X POST "https://api.datadoghq.com/api/v1/events" \
-H "DD-API-KEY: ${{ secrets.DATADOG_API_KEY }}" \
-d '{
"title": "Deployment: api",
"text": "Deployed ${{ github.sha }} to production",
"tags": ["env:production", "service:api"],
"alert_type": "info"
}'
# Appears as a marker on all Datadog dashboards — correlates metric changes to this deploy
- name: Alert on deployment failure
if: failure()
uses: slackapi/slack-github-action@v1.26.0
with:
channel-id: 'C0DEPLOYALERTS'
slack-message: |
:red_circle: *Production deployment FAILED*
Service: `api`
Commit: `${{ github.sha }}`
Author: ${{ github.actor }}
<${{ github.server_url }}/${{ github.repository }}/actions/runs/${{ github.run_id }}|View pipeline run>
env:
SLACK_BOT_TOKEN: ${{ secrets.SLACK_BOT_TOKEN }}What just happened?
On a successful deployment, a deployment marker is emitted to Datadog — a timestamped event that appears on every dashboard as a vertical line, immediately correlating any subsequent metric changes to this specific deployment. On failure, a Slack alert fires immediately with the commit SHA, the author, and a direct link to the failing pipeline run — everything the on-call engineer needs to start the investigation without touching a keyboard other than clicking the link.
Warning: A Main Branch That Stays Broken Is a Delivery System That Has Stopped Working
When the main branch pipeline fails and the failure is not treated as an immediate priority, every subsequent commit stacks on top of a broken foundation. Tests that pass locally but rely on CI fail against the broken base. PRs that would have been clean now conflict with the broken state. The team's velocity collapses, morale drops, and the fix that eventually lands is harder because it has to untangle multiple changes accumulated during the outage. A broken main branch must be treated as a production incident — all other work stops, the failure is fixed or reverted within minutes, and only then does normal development resume. This standard is what makes a fast-moving CI/CD system sustainable.
Key Takeaways from This Lesson
Teacher's Note
Start tracking DORA metrics this week — even informally. The act of measuring deployment frequency for the first time almost always produces a number that surprises the team, and that surprise is the beginning of improvement.
Practice Questions
Answer in your own words — then check against the expected answer.
1. Which DORA metric measures the time from a commit being merged to it running in production — the metric that most directly reflects pipeline bottlenecks, manual gates, and batch deployment practices?
2. What are the timestamped events emitted to an observability platform at the moment a deployment completes — appearing as vertical lines on dashboards that allow engineers to immediately correlate metric changes with specific deployments?
3. Which DORA metric measures the percentage of deployments that cause a production incident requiring a hotfix or rollback — the metric that indicates whether pre-production testing is catching enough problems before they reach users?
Lesson Quiz
1. A team tracks all four DORA metrics but finds that problems are only visible after delivery has already been impacted — deployment frequency has dropped before they notice. What additional monitoring layer would give earlier warning?
2. An on-call engineer opens Datadog during a production incident and sees an error rate spike on the API service dashboard, with a deployment marker appearing 3 minutes before the spike began. What does the marker tell them immediately?
3. A CI pipeline failure on the main branch is detected at 2pm. The team lead says they will look at it after the sprint planning meeting at 3pm. Two developers continue merging PRs in the meantime. What is the correct response, and why does delayed action create compounding problems?
Up Next · Lesson 31
CI/CD for Microservices
Section IV opens with the enterprise challenge — deploying dozens of services independently, safely, and without coordination overhead. CI/CD for microservices requires patterns that do not exist in single-service pipelines.