File tree Expand file tree Collapse file tree
data-new/BuildAndDeployment Expand file tree Collapse file tree Original file line number Diff line number Diff line change 44 icon : " Build and Deployment.png"
55 description : |-
66 A markdown description of this dimension.
7+ _yaml_references :
8+ tools :
9+ ci-cd : &ci-cd CI/CD tools, eg. Jenkins
10+
711Build :
812 Building and testing of artifacts in virtual environments :
9- risk :
10- - While building and testing artifacts, third party systems, application frameworks
13+ description : |-
14+ While building and testing artifacts, third party systems, application frameworks
1115 and 3rd party libraries are used. These might be malicious as a result of
1216 vulnerable libraries or because they are altered during the delivery phase.
17+ risk :
18+ - |-
19+ While building and testing artifacts, third party systems, application frameworks
20+ and 3rd party libraries are used. These might be malicious as a result of
21+ vulnerable libraries or because they are altered during the delivery phase.
1322measure : Each step during within the build and testing phase is performed in
1423 a separate virtual environments, which is destroyed afterward.
1524 meta :
2332 usefulness : 2
2433 implementation :
2534 - Container technologies and orchestration like Docker, Kubernetes
26- - CI/CD Tools, e.g. Jenkins
35+ - *ci-cd
2736 level : 2
2837 samm2 : i-secure-build|A|2
2938 iso27001-2017 :
4453 usefulness : 4
4554 level : 1
4655 implementation :
47- - CI/CD Tools, e.g. Jenkins
56+ - *ci-cd
4857 - Container technologies and orchestration like Docker, Kubernetes
4958 samm2 : i-secure-build|A|1
5059 iso27001-2017 :
You can’t perform that action at this time.
0 commit comments