CIS GitHub Benchmark v1.0.0

Ensure Prevent Unauthorized Branch Deletions
Profile Applicability:  Level 1 Description:  Deletion of branches, especially protected or main branches, must be restricted or denied to prevent accident...
Tue, 27 May, 2025 at 3:50 AM
​ Ensure Automate Risk Scanning of Code Merges
Profile Applicability:  Level 1 Description: All code merges must trigger automated scans for potential risks, including security vulnerabilities, code qua...
Tue, 27 May, 2025 at 3:57 AM
Ensure Audit All Modifications to Branch Protection Settings
Profile Applicability:  Level 1 Description:  All changes made to branch protection rules—such as enabling/disabling protections, modifying required review...
Tue, 27 May, 2025 at 4:05 AM
​ Ensure Enforce Protection Rules on the Default Branch
Profile Applicability:  Level 1 Description: The default branch (commonly "main" or "master") must have branch protection rules applied...
Tue, 27 May, 2025 at 4:13 AM
Ensure Mandate SECURITY.md File in Public Repositories
Profile Applicability:  Level 1 Description:  Every public repository must include a SECURITY.md file that outlines the project's security policies, vu...
Tue, 27 May, 2025 at 4:21 AM
Ensure Restrict Repository Creation Permissions to Authorized Users
Profile Applicability:  Level 1 Description: The ability to create new repositories within an organization or project must be restricted to a defined set o...
Tue, 27 May, 2025 at 4:26 AM
Ensure Restrict Repository Deletion Permissions to Authorized Users
Profile Applicability:  Level 1 Description:  The ability to delete repositories must be restricted to a defined group of authorized users or teams. This c...
Tue, 27 May, 2025 at 4:35 AM
Ensure ​Restrict Issue Deletion Permissions to Authorized Users
Profile Applicability:  Level 1 Description:  The ability to delete issues within a repository or project must be limited to designated users or teams. Thi...
Tue, 27 May, 2025 at 6:04 AM
Ensure to Maintain Visibility and Control Over All Code Forks
Profile Applicability:  Level 1 Description:  All forks or copies of the code repository must be tracked, monitored, and accounted for within the organizat...
Tue, 27 May, 2025 at 6:12 AM
Ensure Monitor and Audit Visibility Changes of Code Projects
Profile Applicability:  Level 1 Description:  Any change to the visibility status of code projects (e.g., from private to public or vice versa) must be tra...
Tue, 27 May, 2025 at 6:18 AM