Profile Applicability:
Level 1
Description:
Access to initiate or trigger build processes should be limited strictly to authorized personnel and automated systems that require it. Minimizing this access reduces the risk of unauthorized or malicious build executions that could compromise software integrity or release unintended code.
Rationale:
Restricting build triggering permissions enforces the principle of least privilege, preventing unauthorized users from manipulating build workflows or injecting malicious code. It helps maintain the integrity of the software supply chain and supports audit and compliance requirements.
Impact:
Pros:
Reduces risk of unauthorized or malicious build triggers.
Enhances control and accountability over build processes.
Supports compliance with security policies and standards.
Cons:
Requires careful role and permission management.
May cause delays if authorized personnel are not available.
Default value:
Build triggering permissions may be overly permissive by default, increasing security risks.
Audit:
Review access control lists and permissions related to build triggering. Verify that only designated users and systems have the ability to start builds. Check logs for unauthorized build trigger attempts.
Remediation:
Implement role-based access control (RBAC) to limit build trigger permissions. Periodically review and update access rights. Educate teams on secure build process management.
References:
Jenkins Security Best Practices: https://www.jenkins.io/doc/book/security/
GitLab CI/CD Permissions: https://docs.gitlab.com/ee/ci/permissions/
CIS Controls v8, Control 5 - Account Management: https://www.cisecurity.org/controls/account-management/