.commitlintrc
.gitignore
.markdownlint.yaml
.markdownlintignore
.pre-commit-config.yaml
.pypirc
.yamllint.yml
CHANGELOG.md
CONTRIBUTING.md
LICENSE
MANIFEST.in
Makefile
README.md
SECURITY.md
pyproject.toml
renovate.json
.gitlab/.gitlab-ci.yml
.gitlab/CODEOWNERS
.gitlab/issue_templates/bug.md
.gitlab/issue_templates/feature.md
.gitlab/issue_templates/vuln.md
.gitlab/merge_request_templates/default.md
docs/limitations.md
docs/readme.md
docs/img/results.png
gitlabcis/__init__.py
gitlabcis/__main__.py
gitlabcis.egg-info/PKG-INFO
gitlabcis.egg-info/SOURCES.txt
gitlabcis.egg-info/dependency_links.txt
gitlabcis.egg-info/entry_points.txt
gitlabcis.egg-info/requires.txt
gitlabcis.egg-info/top_level.txt
gitlabcis/benchmarks/__init__.py
gitlabcis/benchmarks/artifacts_4/__init__.py
gitlabcis/benchmarks/artifacts_4/access_to_artifacts_4_2.py
gitlabcis/benchmarks/artifacts_4/origin_traceability_4_4.py
gitlabcis/benchmarks/artifacts_4/package_registries_4_3.py
gitlabcis/benchmarks/artifacts_4/verification_4_1.py
gitlabcis/benchmarks/build_pipelines_2/__init__.py
gitlabcis/benchmarks/build_pipelines_2/build_environment_2_1.py
gitlabcis/benchmarks/build_pipelines_2/build_worker_2_2.py
gitlabcis/benchmarks/build_pipelines_2/pipeline_instructions_2_3.py
gitlabcis/benchmarks/build_pipelines_2/pipeline_integrity_2_4.py
gitlabcis/benchmarks/dependencies_3/__init__.py
gitlabcis/benchmarks/dependencies_3/third_party_packages_3_1.py
gitlabcis/benchmarks/dependencies_3/validate_packages_3_2.py
gitlabcis/benchmarks/deployment_5/__init__.py
gitlabcis/benchmarks/deployment_5/deployment_configuration_5_1.py
gitlabcis/benchmarks/deployment_5/deployment_environment_5_2.py
gitlabcis/benchmarks/source_code_1/__init__.py
gitlabcis/benchmarks/source_code_1/code_changes_1_1.py
gitlabcis/benchmarks/source_code_1/code_risks_1_5.py
gitlabcis/benchmarks/source_code_1/contribution_access_1_3.py
gitlabcis/benchmarks/source_code_1/repository_management_1_2.py
gitlabcis/benchmarks/source_code_1/third_party_1_4.py
gitlabcis/cli/__init__.py
gitlabcis/cli/argsInput.py
gitlabcis/cli/auth.py
gitlabcis/cli/log.py
gitlabcis/cli/main.py
gitlabcis/cli/output.py
gitlabcis/recommendations/readme.md
gitlabcis/recommendations/template.yml
gitlabcis/recommendations/artifacts_4/readme.md
gitlabcis/recommendations/artifacts_4/access_to_artifacts_4_2/external_auth_server.yml
gitlabcis/recommendations/artifacts_4/access_to_artifacts_4_2/limit_artifact_uploaders.yml
gitlabcis/recommendations/artifacts_4/access_to_artifacts_4_2/limit_certifying_artifacts.yml
gitlabcis/recommendations/artifacts_4/access_to_artifacts_4_2/minimum_package_registry_admins.yml
gitlabcis/recommendations/artifacts_4/access_to_artifacts_4_2/readme.md
gitlabcis/recommendations/artifacts_4/access_to_artifacts_4_2/require_mfa_to_package_registry.yml
gitlabcis/recommendations/artifacts_4/access_to_artifacts_4_2/restrict_anonymous_access.yml
gitlabcis/recommendations/artifacts_4/origin_traceability_4_4/artifact_origin_info.yml
gitlabcis/recommendations/artifacts_4/origin_traceability_4_4/readme.md
gitlabcis/recommendations/artifacts_4/package_registries_4_3/all_artifact_versions_signed.yml
gitlabcis/recommendations/artifacts_4/package_registries_4_3/audit_package_registry_config.yml
gitlabcis/recommendations/artifacts_4/package_registries_4_3/readme.md
gitlabcis/recommendations/artifacts_4/package_registries_4_3/secure_repo_webhooks.yml
gitlabcis/recommendations/artifacts_4/package_registries_4_3/validate_signed_artifacts_on_upload.yml
gitlabcis/recommendations/artifacts_4/verification_4_1/encrypt_artifacts_before_distribution.yml
gitlabcis/recommendations/artifacts_4/verification_4_1/only_authorized_platforms_can_decrypt_artifacts.yml
gitlabcis/recommendations/artifacts_4/verification_4_1/readme.md
gitlabcis/recommendations/artifacts_4/verification_4_1/sign_artifacts_in_build_pipeline.yml
gitlabcis/recommendations/build_pipelines_2/readme.md
gitlabcis/recommendations/build_pipelines_2/build_environment_2_1/authenticate_build_access.yml
gitlabcis/recommendations/build_pipelines_2/build_environment_2_1/build_automation.yml
gitlabcis/recommendations/build_pipelines_2/build_environment_2_1/build_env_admins.yml
gitlabcis/recommendations/build_pipelines_2/build_environment_2_1/build_logging.yml
gitlabcis/recommendations/build_pipelines_2/build_environment_2_1/disable_build_tools_default_passwords.yml
gitlabcis/recommendations/build_pipelines_2/build_environment_2_1/immutable_pipeline_infrastructure.yml
gitlabcis/recommendations/build_pipelines_2/build_environment_2_1/limit_build_access.yml
gitlabcis/recommendations/build_pipelines_2/build_environment_2_1/limit_build_secrets_scope.yml
gitlabcis/recommendations/build_pipelines_2/build_environment_2_1/readme.md
gitlabcis/recommendations/build_pipelines_2/build_environment_2_1/secure_build_env_webhooks.yml
gitlabcis/recommendations/build_pipelines_2/build_environment_2_1/single_responsibility_pipeline.yml
gitlabcis/recommendations/build_pipelines_2/build_environment_2_1/vuln_scanning.yml
gitlabcis/recommendations/build_pipelines_2/build_worker_2_2/build_worker_vuln_scanning.yml
gitlabcis/recommendations/build_pipelines_2/build_worker_2_2/monitor_worker_resource_consumption.yml
gitlabcis/recommendations/build_pipelines_2/build_worker_2_2/pass_worker_envs_and_commands.yml
gitlabcis/recommendations/build_pipelines_2/build_worker_2_2/readme.md
gitlabcis/recommendations/build_pipelines_2/build_worker_2_2/restrict_worker_connectivity.yml
gitlabcis/recommendations/build_pipelines_2/build_worker_2_2/segregate_worker_duties.yml
gitlabcis/recommendations/build_pipelines_2/build_worker_2_2/single_use_workers.yml
gitlabcis/recommendations/build_pipelines_2/build_worker_2_2/store_worker_config.yml
gitlabcis/recommendations/build_pipelines_2/build_worker_2_2/worker_runtime_security.yml
gitlabcis/recommendations/build_pipelines_2/pipeline_instructions_2_3/build_stage_io.yml
gitlabcis/recommendations/build_pipelines_2/pipeline_instructions_2_3/build_steps_as_code.yml
gitlabcis/recommendations/build_pipelines_2/pipeline_instructions_2_3/limit_pipeline_triggers.yml
gitlabcis/recommendations/build_pipelines_2/pipeline_instructions_2_3/pipeline_misconfiguration_scanning.yml
gitlabcis/recommendations/build_pipelines_2/pipeline_instructions_2_3/pipeline_secret_scanning.yml
gitlabcis/recommendations/build_pipelines_2/pipeline_instructions_2_3/pipeline_vuln_scanning.yml
gitlabcis/recommendations/build_pipelines_2/pipeline_instructions_2_3/readme.md
gitlabcis/recommendations/build_pipelines_2/pipeline_instructions_2_3/secure_pipeline_output.yml
gitlabcis/recommendations/build_pipelines_2/pipeline_instructions_2_3/track_pipeline_files.yml
gitlabcis/recommendations/build_pipelines_2/pipeline_integrity_2_4/create_reproducible_artifacts.yml
gitlabcis/recommendations/build_pipelines_2/pipeline_integrity_2_4/lock_dependencies.yml
gitlabcis/recommendations/build_pipelines_2/pipeline_integrity_2_4/pipeline_produces_sbom.yml
gitlabcis/recommendations/build_pipelines_2/pipeline_integrity_2_4/pipeline_signs_sbom.yml
gitlabcis/recommendations/build_pipelines_2/pipeline_integrity_2_4/readme.md
gitlabcis/recommendations/build_pipelines_2/pipeline_integrity_2_4/sign_artifacts.yml
gitlabcis/recommendations/build_pipelines_2/pipeline_integrity_2_4/validate_dependencies.yml
gitlabcis/recommendations/dependencies_3/readme.md
gitlabcis/recommendations/dependencies_3/third_party_packages_3_1/define_package_managers.yml
gitlabcis/recommendations/dependencies_3/third_party_packages_3_1/dependency_sbom.yml
gitlabcis/recommendations/dependencies_3/third_party_packages_3_1/monitor_dependencies.yml
gitlabcis/recommendations/dependencies_3/third_party_packages_3_1/packages_over_60_days_old.yml
gitlabcis/recommendations/dependencies_3/third_party_packages_3_1/pin_dependency_version.yml
gitlabcis/recommendations/dependencies_3/third_party_packages_3_1/readme.md
gitlabcis/recommendations/dependencies_3/third_party_packages_3_1/third_party_sbom_required.yml
gitlabcis/recommendations/dependencies_3/third_party_packages_3_1/verify_artifacts.yml
gitlabcis/recommendations/dependencies_3/third_party_packages_3_1/verify_signed_metadata.yml
gitlabcis/recommendations/dependencies_3/validate_packages_3_2/org_wide_dependency_policy.yml
gitlabcis/recommendations/dependencies_3/validate_packages_3_2/package_license_scanning.yml
gitlabcis/recommendations/dependencies_3/validate_packages_3_2/package_ownership_change.yml
gitlabcis/recommendations/dependencies_3/validate_packages_3_2/package_vuln_scanning.yml
gitlabcis/recommendations/dependencies_3/validate_packages_3_2/readme.md
gitlabcis/recommendations/deployment_5/readme.md
gitlabcis/recommendations/deployment_5/deployment_configuration_5_1/audit_deployment_config.yml
gitlabcis/recommendations/deployment_5/deployment_configuration_5_1/limit_deployment_config_access.yml
gitlabcis/recommendations/deployment_5/deployment_configuration_5_1/pin_deployment_config_manifests.yml
gitlabcis/recommendations/deployment_5/deployment_configuration_5_1/readme.md
gitlabcis/recommendations/deployment_5/deployment_configuration_5_1/scan_iac.yml
gitlabcis/recommendations/deployment_5/deployment_configuration_5_1/secret_scan_deployment_config.yml
gitlabcis/recommendations/deployment_5/deployment_configuration_5_1/separate_deployment_config.yml
gitlabcis/recommendations/deployment_5/deployment_configuration_5_1/verify_deployment_config.yml
gitlabcis/recommendations/deployment_5/deployment_environment_5_2/automate_deployment.yml
gitlabcis/recommendations/deployment_5/deployment_environment_5_2/disable_default_passwords.yml
gitlabcis/recommendations/deployment_5/deployment_environment_5_2/limit_prod_access.yml
gitlabcis/recommendations/deployment_5/deployment_environment_5_2/readme.md
gitlabcis/recommendations/deployment_5/deployment_environment_5_2/reproducible_deployment.yml
gitlabcis/recommendations/source_code_1/readme.md
gitlabcis/recommendations/source_code_1/code_changes_1_1/audit_branch_protections.yml
gitlabcis/recommendations/source_code_1/code_changes_1_1/auto_risk_scan_merges.yml
gitlabcis/recommendations/source_code_1/code_changes_1_1/branch_protections_for_admins.yml
gitlabcis/recommendations/source_code_1/code_changes_1_1/branches_updated_before_merging.yml
gitlabcis/recommendations/source_code_1/code_changes_1_1/checks_pass_before_merging.yml
gitlabcis/recommendations/source_code_1/code_changes_1_1/code_approval_dismissals.yml
gitlabcis/recommendations/source_code_1/code_changes_1_1/code_approvals.yml
gitlabcis/recommendations/source_code_1/code_changes_1_1/code_changes_require_code_owners.yml
gitlabcis/recommendations/source_code_1/code_changes_1_1/code_dismissal_restrictions.yml
gitlabcis/recommendations/source_code_1/code_changes_1_1/code_owners.yml
gitlabcis/recommendations/source_code_1/code_changes_1_1/code_tracing.yml
gitlabcis/recommendations/source_code_1/code_changes_1_1/comments_resolved_before_merging.yml
gitlabcis/recommendations/source_code_1/code_changes_1_1/commits_must_be_signed_before_merging.yml
gitlabcis/recommendations/source_code_1/code_changes_1_1/default_branch_protected.yml
gitlabcis/recommendations/source_code_1/code_changes_1_1/deny_branch_deletions.yml
gitlabcis/recommendations/source_code_1/code_changes_1_1/ensure_force_push_is_denied.yml
gitlabcis/recommendations/source_code_1/code_changes_1_1/linear_history_required.yml
gitlabcis/recommendations/source_code_1/code_changes_1_1/merging_restrictions.yml
gitlabcis/recommendations/source_code_1/code_changes_1_1/readme.md
gitlabcis/recommendations/source_code_1/code_changes_1_1/stale_branch_reviews.yml
gitlabcis/recommendations/source_code_1/code_changes_1_1/version_control.yml
gitlabcis/recommendations/source_code_1/code_risks_1_5/dast_api_scanning.yml
gitlabcis/recommendations/source_code_1/code_risks_1_5/dast_web_scanning.yml
gitlabcis/recommendations/source_code_1/code_risks_1_5/dependency_scanning.yml
gitlabcis/recommendations/source_code_1/code_risks_1_5/enable_secret_detection.yml
gitlabcis/recommendations/source_code_1/code_risks_1_5/license_scanning.yml
gitlabcis/recommendations/source_code_1/code_risks_1_5/readme.md
gitlabcis/recommendations/source_code_1/code_risks_1_5/secure_iac_instructions.yml
gitlabcis/recommendations/source_code_1/code_risks_1_5/secure_pipeline_instructions.yml
gitlabcis/recommendations/source_code_1/code_risks_1_5/vulnerability_scanning.yml
gitlabcis/recommendations/source_code_1/contribution_access_1_3/domain_verification.yml
gitlabcis/recommendations/source_code_1/contribution_access_1_3/ensure_2_admins_per_repo.yml
gitlabcis/recommendations/source_code_1/contribution_access_1_3/limit_top_level_group_creation.yml
gitlabcis/recommendations/source_code_1/contribution_access_1_3/limit_user_registration_domain.yml
gitlabcis/recommendations/source_code_1/contribution_access_1_3/minimum_number_of_admins.yml
gitlabcis/recommendations/source_code_1/contribution_access_1_3/org_provided_ssh_certs.yml
gitlabcis/recommendations/source_code_1/contribution_access_1_3/readme.md
gitlabcis/recommendations/source_code_1/contribution_access_1_3/require_mfa_at_org_level.yml
gitlabcis/recommendations/source_code_1/contribution_access_1_3/require_mfa_for_contributors.yml
gitlabcis/recommendations/source_code_1/contribution_access_1_3/restrict_ip_addresses.yml
gitlabcis/recommendations/source_code_1/contribution_access_1_3/review_and_remove_inactive_users.yml
gitlabcis/recommendations/source_code_1/contribution_access_1_3/scm_notification_restriction.yml
gitlabcis/recommendations/source_code_1/contribution_access_1_3/strict_permissions_for_repo.yml
gitlabcis/recommendations/source_code_1/contribution_access_1_3/track_code_anomalies.yml
gitlabcis/recommendations/source_code_1/repository_management_1_2/limit_issue_deletions.yml
gitlabcis/recommendations/source_code_1/repository_management_1_2/limit_repo_creations.yml
gitlabcis/recommendations/source_code_1/repository_management_1_2/limit_repo_deletions.yml
gitlabcis/recommendations/source_code_1/repository_management_1_2/public_repos_have_security_file.yml
gitlabcis/recommendations/source_code_1/repository_management_1_2/readme.md
gitlabcis/recommendations/source_code_1/repository_management_1_2/review_and_archive_stale_repos.yml
gitlabcis/recommendations/source_code_1/repository_management_1_2/track_forks.yml
gitlabcis/recommendations/source_code_1/repository_management_1_2/track_project_visibility_status.yml
gitlabcis/recommendations/source_code_1/third_party_1_4/README.md
gitlabcis/recommendations/source_code_1/third_party_1_4/admin_approval_for_app_installs.yml
gitlabcis/recommendations/source_code_1/third_party_1_4/least_privilge_app_permissions.yml
gitlabcis/recommendations/source_code_1/third_party_1_4/secure_webhooks.yml
gitlabcis/recommendations/source_code_1/third_party_1_4/stale_app_reviews.yml
gitlabcis/tests/__init__.py
gitlabcis/tests/input/__init__.py
gitlabcis/tests/input/auth_test.py
gitlabcis/tests/input/conftest.py
gitlabcis/tests/input/no_input_test.py
gitlabcis/tests/input/ssl_test.py
gitlabcis/tests/input/switch_test.py
gitlabcis/tests/input/version_test.py
gitlabcis/tests/unit/__init__.py
gitlabcis/tests/unit/conftest.py
gitlabcis/tests/unit/benchmarks/conftest.py
gitlabcis/tests/unit/benchmarks/function_test.py
gitlabcis/tests/unit/benchmarks/artifacts_4/access_to_artifacts_4_2_test.py
gitlabcis/tests/unit/benchmarks/artifacts_4/origin_traceability_4_4_test.py
gitlabcis/tests/unit/benchmarks/artifacts_4/package_registries_4_3_test.py
gitlabcis/tests/unit/benchmarks/artifacts_4/verification_4_1_test.py
gitlabcis/tests/unit/benchmarks/build_pipelines_2/build_environment_2_1_test.py
gitlabcis/tests/unit/benchmarks/build_pipelines_2/build_worker_2_2_test.py
gitlabcis/tests/unit/benchmarks/build_pipelines_2/pipeline_instructions_2_3_test.py
gitlabcis/tests/unit/benchmarks/build_pipelines_2/pipeline_integrity_2_4_test.py
gitlabcis/tests/unit/benchmarks/dependencies_3/third_party_packages_3_1_test.py
gitlabcis/tests/unit/benchmarks/dependencies_3/validate_packages_3_2_test.py
gitlabcis/tests/unit/benchmarks/deployment_5/deployment_configuration_5_1_test.py
gitlabcis/tests/unit/benchmarks/deployment_5/deployment_environment_5_2_test.py
gitlabcis/tests/unit/benchmarks/source_code_1/code_changes_1_1_test.py
gitlabcis/tests/unit/benchmarks/source_code_1/code_risks_1_5_test.py
gitlabcis/tests/unit/benchmarks/source_code_1/contribution_access_1_3_test.py
gitlabcis/tests/unit/benchmarks/source_code_1/repository_management_1_2_test.py
gitlabcis/tests/unit/benchmarks/source_code_1/third_party_1_4_test.py
gitlabcis/tests/unit/log/log_test.py
gitlabcis/tests/unit/utils/argfilters_test.py
gitlabcis/tests/unit/utils/ci_test.py
gitlabcis/tests/unit/utils/output_test.py
gitlabcis/tests/unit/utils/utils_general_test.py
gitlabcis/tests/unit/utils/version_test.py
gitlabcis/tests/unit/yaml/bad_file_test.py
gitlabcis/tests/unit/yaml/recommendation_test.py
gitlabcis/utils/__init__.py
gitlabcis/utils/ci.py