CI/CD Security Checks

Jit CI/CD Security Checks: What to know

  • Brief description: Scan your GitHub environment to detect misconfigurations that could enable access to your codebase, which can lead to sensitive data exposure, intellectual property theft, and system compromise.
  • Scanning process: Scanning takes place daily and documents findings in the Backlog page.
  • How to get started: Jit IaC Security Scanning can be enabled by navigating to Security Plans (left menu) → Jit Max Security PlanCI/CD Security. Locate Detect GitHub misconfigurations and select Activate.
  • Based on Legitify and Chainbench: Jit unifies and enhances the leading open source scanners for all product security scanning technologies. For CI/CD Security Checks, Jit uses Legitify and Chainbench, which are maintained by Legit Security and Aqua Security, respectively.
  • Source Code Manager support: Jit's CI/CD Security Checks are currently supported for GitHub environments.

Checks and Permissions

Legitify and Chain Bench will execute the same checks that they are using in the GitHub Security Plan. The permissions required to run the checks are also identical.

Read more about the checks and permissions in the GitHub Security Plan Documentation.