Build a Complete GitHub Actions CI/CD Workflow

Design a comprehensive GitHub Actions CI/CD workflow for a [LANGUAGE/FRAMEWORK] project hosted in a GitHub repository. The workflow should automate the full pipeline from code push to deployment. **Project Details:** - Language/Framework: [LANGUAGE/FRAMEWORK] - Package manager: [PACKAGE_MANAGER] (e.g., npm, pip, maven, cargo) - Target deployment platform: [DEPLOYMENT_TARGET] (e.g., AWS ECS, Vercel, Kubernetes, Azure App Service) - Branch strategy: main branch for production, [DEV_BRANCH] for staging **Workflow Requirements:** 1. **Trigger Configuration:** - Run on push to main and [DEV_BRANCH] branches - Run on pull requests targeting main - Allow manual dispatch with an input for environment selection 2. **CI Stage (Build & Test):** - Check out code and set up [LANGUAGE/FRAMEWORK] version [VERSION] - Cache dependencies to speed up builds - Install dependencies and run linting with [LINTER_TOOL] - Execute unit tests and generate a coverage report - Run security/vulnerability scanning (e.g., Snyk, Trivy, or npm audit) - Upload test results and coverage as artifacts 3. **CD Stage (Deploy):** - Only trigger on pushes to main or [DEV_BRANCH] (not on PRs) - Build a Docker image and push to [CONTAINER_REGISTRY] with semantic version tags - Deploy to [DEPLOYMENT_TARGET] using appropriate credentials stored as GitHub Secrets - Run a post-deployment smoke test hitting [HEALTH_CHECK_URL] 4. **Notifications:** - Send a Slack or email notification on failure - Post deployment status as a commit status check 5. **Best Practices:** - Use reusable workflows or composite actions where possible - Pin action versions by SHA for security - Include concurrency groups to cancel redundant runs Provide the complete .github/workflows/ci-cd.yml file with detailed inline comments.