CIS GitHub Benchmark v1.0.0
Profile Applicability: Level 1 Description: The resource consumption (CPU, memory, disk I/O, network) of build workers must be actively monitored to ensure...
Thu, 29 May, 2025 at 4:21 AM
Profile Applicability: Level 1 Description: All deployment configurations for build workers—including infrastructure definitions, environment settings, and...
Thu, 29 May, 2025 at 4:27 AM
Profile Applicability: Level 1 Description: Build worker environments, including their operating systems, software, and dependencies, must be regularly and...
Thu, 29 May, 2025 at 4:28 AM
Profile Applicability: Level 1 Description: Build worker environments must enforce run-time security measures such as process isolation, least privilege ex...
Thu, 29 May, 2025 at 4:28 AM
Profile Applicability: Level 1 Description: Build workers should be configured to have only the minimal necessary network connectivity required for their o...
Thu, 29 May, 2025 at 4:33 AM
Profile Applicability: Level 1 Description: Responsibilities and privileges of build workers must be clearly segregated to prevent conflicts of interest an...
Thu, 22 May, 2025 at 7:13 AM
Profile Applicability: Level 1 Description: Build worker environments and commands should be explicitly defined and pushed to the build workers rather than...
Thu, 29 May, 2025 at 4:35 AM
Profile Applicability: Level 1 Description: Build workers must be provisioned as ephemeral, single-use instances that are created for a specific build and ...
Thu, 29 May, 2025 at 4:37 AM
Profile Applicability: Level 1 Description: The number of administrator accounts with privileged access to the build environment must be limited to the min...
Thu, 29 May, 2025 at 4:38 AM
Profile Applicability: Level 1 Description: Webhooks used in the build environment must be secured by validating incoming requests through mechanisms such ...
Thu, 29 May, 2025 at 4:42 AM