II.
SkillArea overview
Reference · liveskill-area:ci-security
CI/CD Security overview
Securing CI/CD pipelines against supply-chain attacks and credential leakage — OIDC token federation, secret scanning, SLSA artifact provenance, dependency review gates, and pipeline permission hardening.
Attributes
displayName
CI/CD Security
description
Securing CI/CD pipelines against supply-chain attacks and credential
leakage — OIDC token federation, secret scanning, SLSA artifact
provenance, dependency review gates, and pipeline permission hardening.
domains
expertiseLevels
- intermediate
- expert
Outgoing edges
applies_to2
- domain:devops·DomainDevOps
- domain:cybersecurity·DomainCybersecurity
prerequisite_for_learning1
- skill-area:secrets-rotation·SkillAreaSecrets Rotation
Incoming edges
prerequisite_for_learning2
- skill-area:ci-cd·SkillArea
- skill-area:compliance-automation·SkillAreaCompliance Automation
requires_skill_area2
- stack-profile:container-registry-scanning·StackProfileContainer Registry & Scanning (Docker, Trivy, Kubernetes, Go, Snyk)
- stack-profile:vulnerability-management-platform·StackProfileVulnerability Management (Python, Trivy, Snyk, PostgreSQL, React, Docker)
supports1
- definition:ci-pipeline-scheduled·DefinitionScheduled Pipeline
used_for1
- tool:terraform·ToolTerraform