CIS GitHub Benchmark v1.0.0
Profile Applicability: Level 1 Description: Default passwords on systems, devices, applications, and services must be changed before deployment or use. Use...
Thu, 29 May, 2025 at 4:43 AM
Profile Applicability: Level 1 Description: The build infrastructure—including build servers, agents, container hosts, and related components—must undergo ...
Thu, 29 May, 2025 at 4:44 AM
Profile Applicability: Level 1 Description: Secrets used within the build process—such as API keys, tokens, passwords, and certificates—must be scoped narr...
Thu, 22 May, 2025 at 7:38 AM
Profile Applicability: Level 1 Description: All users must authenticate before gaining access to build environments, including build servers, agents, and...
Thu, 29 May, 2025 at 5:12 AM
Profile Applicability: Level 1 Description: Access to build environments must be restricted to authorized users and systems only. This includes limiting ...
Thu, 29 May, 2025 at 5:22 AM
Profile Applicability: Level 1 Description: The process of creating and configuring build environments must be fully automated using scripts, templates, ...
Thu, 29 May, 2025 at 5:23 AM
Profile Applicability: Level 1 Description: All build environments must be comprehensively logged, capturing details such as build server identifiers, op...
Thu, 29 May, 2025 at 5:23 AM
Profile Applicability: Level 1 Description: All components of the pipeline infrastructure and configuration—including build agents, scripts, environment ...
Thu, 22 May, 2025 at 7:57 AM
Profile Applicability: Level 1 Description: Each continuous integration/continuous deployment (CI/CD) pipeline should be designed to perform a single, we...
Thu, 22 May, 2025 at 8:06 AM
Profile Applicability: Level 1 Description: Automated scanning tools must be deployed to analyze all open-source packages used within software projects f...
Thu, 29 May, 2025 at 5:26 AM