Contact us

What a Healthy CI/CD Pipeline Actually Looks Like

by Eric Hanson, Backend Developer at Clean Systems Consulting

You Know Something Is Wrong. You're Not Sure What Right Looks Like.

The symptom is usually vague: "our pipeline is kind of a mess," or "CI is a pain point." Engineers feel it — the 40-minute builds, the tests that pass locally and fail in CI, the staging environment that's perpetually broken, the deploy that requires three people in a Slack thread. But because nobody's defined what healthy looks like, every improvement proposal starts from scratch and gets evaluated without a target.

A healthy pipeline has specific, observable characteristics. Here's what they are and how to measure them.

Fast Feedback on the Critical Path

The critical path of a CI pipeline — the sequence of jobs that must complete before a PR is mergeable — should complete in under 10 minutes. This isn't arbitrary. Research on developer flow (specifically the work behind the DORA metrics) shows that feedback loops longer than 10 minutes cause context switching that compounds through the day. Under 10 minutes, developers stay engaged. Over 10 minutes, they start the next thing.

Measuring this is straightforward: most CI platforms expose per-job duration in their UI or API. The number to track is the 95th percentile of critical-path duration across all pipeline runs, not the average. Averages hide the tail — the 25-minute run that happens when the test environment is under load.

A healthy pipeline distinguishes between the critical path (what must pass to merge) and the full pipeline (everything that runs post-merge). Smoke tests, SAST scanning, and container builds can run post-merge in parallel without blocking the developer. This architecture is intentional, not lazy.

Flake Rate Below 1%

A flaky test — one that fails intermittently without a code change — is not a minor inconvenience. It is a trust erosion machine. Every false failure teaches developers that red doesn't mean broken, which means they start ignoring failures, which means real failures slip through.

Measure your flake rate: percentage of pipeline runs that fail at least once but pass on retry. Most teams are surprised by how high this number is. Anything above 1% means flaky tests are affecting developer workflow daily. Above 5%, and you have a systemic trust problem.

Fixing flakes is unglamorous work, but it's more valuable than most feature work on the pipeline. Common causes: tests that depend on wall-clock time, shared mutable state between tests, tests that hit external services without stubbing, and Dockerized services with slow startup times that race against test execution.

// Flaky: depends on external time
@Test
void tokenShouldExpireAfterOneHour() {
    Token token = tokenService.issue();
    Thread.sleep(3_600_000); // nobody actually does this, but...
    assertFalse(token.isValid());
}

// Not flaky: inject a clock
@Test
void tokenShouldExpireAfterOneHour() {
    Clock fixedClock = Clock.fixed(Instant.now(), ZoneOffset.UTC);
    TokenService service = new TokenService(fixedClock);
    Token token = service.issue();
    Clock advanced = Clock.fixed(Instant.now().plusSeconds(3601), ZoneOffset.UTC);
    assertFalse(token.isValid(advanced.instant()));
}

Every Stage Has a Known Failure Mode

In a healthy pipeline, every engineer who works in the codebase can answer: "what does it mean when job X fails?" If the answer is "it depends" or "you have to look at the logs and kind of feel it out," that stage is not contributing meaningfully — it's generating noise.

This is auditable. Run a retrospective: for the last 20 pipeline failures, what stage failed, and what did the team do in response? If the answer is "retried it" more than 30% of the time for a given stage, that stage has a trust problem. If the answer is "ignored it and deployed anyway" more than 0% of the time, that stage should not be in your blocking critical path.

Deployment Is a Non-Event

The final characteristic of a healthy pipeline is the most culturally significant: production deployment is boring. Not scary, not ceremonial, not the thing that requires the senior developer to be available — boring. It runs, it completes, a Slack notification appears, and everyone moves on.

This requires: automated smoke tests post-deploy, proper health checks that the orchestration layer (ECS, Kubernetes, etc.) uses to validate the new instances before terminating old ones, and a tested rollback path. Not documented — tested. Run a rollback drill in staging monthly until it's muscle memory.

# Kubernetes readiness probe: the deploy doesn't succeed until this passes
readinessProbe:
  httpGet:
    path: /actuator/health/readiness
    port: 8080
  initialDelaySeconds: 10
  periodSeconds: 5
  failureThreshold: 6

The Audit

Score your pipeline against these four characteristics: critical path under 10 minutes, flake rate below 1%, every stage with a known failure mode, deployment as a non-event. Any characteristic you can't score confidently is a gap worth addressing. Start with flake rate — it's often the fastest win and has the highest impact on team trust.

Scale Your Backend - Need an Experienced Backend Developer?

We provide backend engineers who join your team as contractors to help build, improve, and scale your backend systems.

We focus on clean backend design, clear documentation, and systems that remain reliable as products grow. Our goal is to strengthen your team and deliver backend systems that are easy to operate and maintain.

We work from our own development environments and support teams across US, EU, and APAC timezones. Our workflow emphasizes documentation and asynchronous collaboration to keep development efficient and focused.

  • Production Backend Experience. Experience building and maintaining backend systems, APIs, and databases used in production.
  • Scalable Architecture. Design backend systems that stay reliable as your product and traffic grow.
  • Contractor Friendly. Flexible engagement for short projects, long-term support, or extra help during releases.
  • Focus on Backend Reliability. Improve API performance, database stability, and overall backend reliability.
  • Documentation-Driven Development. Development guided by clear documentation so teams stay aligned and work efficiently.
  • Domain-Driven Design. Design backend systems around real business processes and product needs.

Tell us about your project

Say Hej

Our offices

  • Copenhagen
    1 Carlsberg Gate
    1260, København, Denmark
  • Magelang
    12 Jalan Bligo
    56485, Magelang, Indonesia

More articles

Spring Security in Practice — Authentication, Authorization, and the Filters That Run on Every Request

Spring Security is comprehensive and opaque until you understand its filter chain model. Here is how authentication and authorization actually work, how to configure each layer, and what runs on every request before your controller sees it.

Read more

Why Stockholm's Best Backend Engineers Leave for Big Tech — and How Startups Ship Without Them

You built a great team. Then Google opened a Stockholm office and two of your backend engineers were gone within a quarter.

Read more

How to Set Clear Expectations Before Starting a Project

Nothing derails a project faster than mismatched expectations. Setting them clearly from the start saves time, stress, and headaches later.

Read more

Naming Your API Endpoints Is Harder Than It Looks

Endpoint naming seems trivial until it becomes inconsistent, ambiguous, and hard to evolve. Good naming requires treating APIs as long-lived contracts, not quick implementations.

Read more