Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

ci: [2024-Q3] CI/CD Audit Story #215

Open
9 of 28 tasks
rbarkerSL opened this issue Jul 19, 2024 · 0 comments
Open
9 of 28 tasks

ci: [2024-Q3] CI/CD Audit Story #215

rbarkerSL opened this issue Jul 19, 2024 · 0 comments
Labels
Audit Issues resulting from a code or process audit Improvement Code changes driven by non business requirements Needs Help Issues looking for contribution P3 Low priority issue. Will not impact the release schedule if not complete.

Comments

@rbarkerSL
Copy link
Contributor

CI/CD Quarterly Audit

  • Description: Perform quarterly CI/CD audit

Audit Criteria

  • All workflow items are using pinned actions
  • Appropriate permissions are set within the github workflows
  • Dependabot is enabled on the repository
  • The Repository is using self-hosted runners (if appropriate)
  • The repository uses the current rulesets
  • Individual branch protections are turned off
  • Individual tag protections are turned off
  • The Step-Security Hardened Security action is enabled
  • CODEOWNERS is valid and up-to-date
  • Teams are assigned to the repository
  • Individual contributors that are part of assigned teams are removed from contributors list
  • Actions are disabled if not in use within last 6 months
  • Repository settings are configured per organization standard
  • All webhooks present are needed and in use
  • If Applicable: Alert repository owners of software versions that are no longer supported
  • If Applicable: Alert repository owners when software versions are within 3 months of losing support
  • Custom properties: last-ci-review-by-team is set
  • Custom properties: last-ci-review-date is set (Use format: YYYY-MM-DD)

Repository Settings

  • Require contributors to sign off on web-based commits
  • Features: Issues
  • Features: Preserve this Repository
  • Features: Discussions
  • Features: Projects
  • Pull Requests: Allow Squash Merging
  • Pull Requests: Always suggest updating pull request branches
  • Pull Requests: Automatically delete head branches
  • Pushes: Limit how many branches and tags can be updated in a single push

Acceptance Criteria

  • All Audit Criteria have been met
@rbarkerSL rbarkerSL added the Audit Issues resulting from a code or process audit label Jul 19, 2024
@itsbrandondev itsbrandondev added Improvement Code changes driven by non business requirements P3 Low priority issue. Will not impact the release schedule if not complete. Needs Help Issues looking for contribution labels Aug 3, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
Audit Issues resulting from a code or process audit Improvement Code changes driven by non business requirements Needs Help Issues looking for contribution P3 Low priority issue. Will not impact the release schedule if not complete.
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@itsbrandondev @rbarkerSL