Which security advantage considers that anything that goes into production is created by the CI/CD pipeline on approved code and configuration templates?
Which security advantage considers that anything that goes into production is created by the CI/CD pipeline on approved code and configuration templates?
The security advantage that considers anything going into production being created by the CI/CD pipeline on approved code and configuration templates is standardization. This is because standardization ensures consistency in the production environment, reducing the risk of security vulnerabilities by using approved and tested code and configurations.
10.1.7.1 Standardization: With DevOps, anything that goes into production is created by the CI/CD pipeline on approved code and configuration templates.
As stated below
10.1.7.1 With DevOps, anything that goes into production is created by the CI/CD pipeline on approved code and configuration templates.