turbot/steampipe-mod-github-compliance

Benchmark: 1.2 Repository Management

Overview

This section consists of security recommendations for proper code repository management. Code repositories are where the application code is stored and organized. It is important to keep code repositories organized and maintained to avoid data loss, data theft, and other attacks that may happen unknowingly when a repository is not maintained well. The recommendations of this section are setting guides to do so.

Usage

Install the mod:

mkdir dashboards
cd dashboards
powerpipe mod init
powerpipe mod install github.com/turbot/steampipe-mod-github-compliance

Start the Powerpipe server:

steampipe service start
powerpipe server

Open http://localhost:9033 in your browser and select 1.2 Repository Management.

Run this benchmark in your terminal:

powerpipe benchmark run github_compliance.benchmark.cis_supply_chain_v100_1_2

Snapshot and share results via Turbot Pipes:

powerpipe benchmark run github_compliance.benchmark.cis_supply_chain_v100_1_2 --share

Controls

Tags