DevOps Shield

Base de connaissances en sécurité

Parcourir les règles de sécurité pour Azure DevOps, GitHub et GitLab

Base de connaissances en sécurité

Réinitialiser

Affichage de 123 règle(s)

ID de la règle Nom Plateforme Catégorie Sévérité
DOS1010 Artifacts - Restrict feeds creation to only administrators AzureDevOps organization Severityhigh
DOS1020 Extensions - Restrict extensions to only trusted publishers AzureDevOps organization Severityhigh
DOS1030 Extensions - Security Roles - Restrict extension manager role to only administrators AzureDevOps organization Severityhigh
DOS1040 An organization must have at least 2 and no more than 5 administrators AzureDevOps organization Severitymedium
DOS1050 Disable auto-provisioning of agent pools AzureDevOps organization Severityhigh
DOS1060 Enable auto-update of agents in the agent pool AzureDevOps organization Severityhigh
DOS1070 Pipeline Settings - Disable anonymous access to badges AzureDevOps organization Severitylow
DOS1075 Pipeline Settings - Disable building pull requests from forked repositories AzureDevOps organization Severitycritical
DOS1080 Pipeline Settings - Disable creation of classic build pipelines AzureDevOps organization Severitymedium
DOS1090 Pipeline Settings - Disable creation of classic release pipelines AzureDevOps organization Severitymedium
DOS1100 Pipeline Settings - Disable implied YAML CI trigger to prevent unintended pipeline runs AzureDevOps organization Severitylow
DOS1110 Pipeline Settings - Disable stage chooser AzureDevOps organization Severitylow
DOS1115 Pipeline Settings - Enable shell tasks arguments validation AzureDevOps organization Severityhigh
DOS1120 Pipeline Settings - Enforce job authorization scope to current project for non-release pipelines AzureDevOps organization Severitycritical
DOS1130 Pipeline Settings - Enforce access to repositories in YAML pipelines. AzureDevOps organization Severitycritical
DOS1140 Pipeline Settings - Enforce job authorization scope to current project for release pipelines AzureDevOps organization Severitycritical
DOS1150 Pipeline Settings - Limit variables that can be set at queue time AzureDevOps organization Severityhigh
DOS1160 Disallow OAuth Authentication AzureDevOps organization Severityhigh
DOS1170 Disallow SSH authentication AzureDevOps organization Severityhigh
DOS1180 Disallow Anonymous Access AzureDevOps organization Severitycritical

Copyright © DevOps Shield. Tous droits réservés. Politique de confidentialité | Politique de témoins | Conditions d'utilisation