CIS GitHub Benchmark v1.0.0
Profile Applicability: Level 1 Description: Designate specific individuals or teams as code owners for critical, sensitive, or high-impact code sections ...
Tue, 27 May, 2025 at 2:34 AM
Profile Applicability: Level 1 Description: Deployment configuration manifests, such as Kubernetes YAML files, Helm charts, or other infrastructure-as-code...
Thu, 29 May, 2025 at 1:37 AM
Profile Applicability: Level 1 Description: Any code change affecting files or directories assigned to a specific code owner must receive explicit review...
Tue, 27 May, 2025 at 2:35 AM
Profile Applicability: Level 2 Description: Infrastructure as Code (IaC) templates and scripts, such as Terraform, CloudFormation, or Ansible configuration...
Thu, 29 May, 2025 at 1:40 AM
Profile Applicability: Level 1 Description: Access to deployment configuration files, including Infrastructure as Code (IaC) templates, Kubernetes manifest...
Thu, 29 May, 2025 at 1:41 AM
Profile Applicability: Level 1 Description: Automated or manual scanners should be used to detect the presence of sensitive data—such as passwords, API key...
Thu, 29 May, 2025 at 1:42 AM
Profile Applicability: Level 1 Description: Inactive or stale branches in version control repositories should be regularly reviewed and deleted if no long...
Tue, 27 May, 2025 at 2:37 AM
Profile Applicability: Level 1 Description: Before merging new code into the main or protected branches, all configured automated checks—such as continuo...
Wed, 28 May, 2025 at 3:08 AM
Profile Applicability: Level 1 Description: All modifications to deployment configuration files—such as Infrastructure as Code (IaC) templates, Kubernetes ...
Thu, 29 May, 2025 at 1:42 AM
Profile Applicability: Level 2 Description: Deployment configuration files, including Infrastructure as Code (IaC) templates, environment-specific settings...
Thu, 29 May, 2025 at 1:44 AM