CIS GitHub Benchmark v1.0.0
Profile Applicability: Level 1 Description: All external dependencies utilized during the build process must be locked to specific, known versions using de...
Thu, 29 May, 2025 at 4:03 AM
Profile Applicability: Level 1 and Level 2 Description: Every software artifact produced as part of a release must be digitally signed to verify its authen...
Thu, 29 May, 2025 at 4:04 AM
Profile Applicability: Level 2 Description: Automated scanning tools must be integrated into build and deployment pipelines to detect and prevent sensitive...
Thu, 29 May, 2025 at 4:05 AM
Profile Applicability: Level 1 Description: Build and deployment pipelines must include automated vulnerability scanning steps to identify security flaws i...
Thu, 29 May, 2025 at 4:05 AM
Profile Applicability: Level 1 Description: Build and deployment pipelines must include automated scanning tools that detect misconfigurations in infrastru...
Thu, 29 May, 2025 at 4:06 AM
Profile Applicability: Level 1 Description: Access to initiate or trigger build processes should be limited strictly to authorized personnel and automated ...
Thu, 29 May, 2025 at 4:09 AM
Profile Applicability: Level 1 Description: All modifications to pipeline configuration files (e.g., YAML, JSON, or scripts defining build/deployment workf...
Thu, 29 May, 2025 at 4:10 AM
Profile Applicability: Level 1 Description: All outputs generated by build or deployment pipelines—such as artifacts, logs, and reports—must be stored in d...
Thu, 29 May, 2025 at 4:13 AM
Profile Applicability: Level 1 Description: Each step in the build process must have clearly defined and documented inputs and outputs. This clarity ensure...
Thu, 29 May, 2025 at 4:17 AM
Profile Applicability: Level 1 Description: All steps involved in the build process must be defined explicitly as code using pipeline configuration files o...
Thu, 29 May, 2025 at 4:18 AM