CIS GitHub Benchmark v1.0.0
Profile Applicability: Level 1 Description: All changes to source code must be tracked using a version control system (VCS) such as Git, SVN, or Mercuri...
Tue, 27 May, 2025 at 1:47 AM
Profile Applicability: Level 1 Description: Every change made to the source code must be linked to an associated task, issue, or ticket within a project ...
Wed, 28 May, 2025 at 3:05 AM
Profile Applicability: Level 1 Description: All code changes must undergo a mandatory approval process by at least two distinct users who are strongly au...
Tue, 27 May, 2025 at 2:26 AM
Profile Applicability: Level 1 Description: When a code change proposal (such as a pull request or merge request) is updated with new commits or modifica...
Tue, 27 May, 2025 at 2:31 AM
Profile Applicability: Level 1 Description: Access to dismiss or revoke code review approvals must be restricted to authorized personnel only. This contro...
Wed, 28 May, 2025 at 3:09 AM
Profile Applicability: Level 1 Description: Default passwords provided by hardware or software vendors must be changed before deployment or use in any envi...
Wed, 28 May, 2025 at 2:14 AM
Profile Applicability: Level 1 Description: Access to production environments must be strictly limited to authorized personnel only. This includes restrict...
Wed, 28 May, 2025 at 2:16 AM
Profile Applicability: Level 1 Description: The deployment environment should be designed and managed so that it can be reliably recreated or reproduced fr...
Wed, 28 May, 2025 at 2:17 AM
Profile Applicability: Level 1 Description: Deployments of applications and infrastructure should be automated using tools such as CI/CD pipelines, deploym...
Wed, 28 May, 2025 at 2:26 AM
Profile Applicability: Level 1 Description: All deployment configuration manifests—such as Kubernetes YAML files, Helm charts, or other infrastructure de...
Wed, 28 May, 2025 at 3:09 AM