Threat Modeling CI/CD Pipelines with OWASP and MITRE ATT&CK
Mapping Real-World Attack Paths to Supply-Chain Security Controls
Apr 18, 20269 min read
Command Palette
Search for a command to run...
#cybersecurity
Articles tagged with #cybersecurity
Governance by Design: M-of-N Approvals and Just-In-Time Authority for High-Risk CI/CD Actions
Replacing Standing Privilege with Contextual, Multi-Human Control
Apr 11, 20268 min read1FIDO2 for CI/CD: Why Origin-Bound Hardware Authentication Beats TOTP and Push Approvals
Using WebAuthn as a Cryptographic Proof of Human Presence in Hostile Networks Introduction: Authentication That Fails in Real Attacks Most CI/CD systems rely on: TOTP codes Push notifications Long
Apr 4, 20263 min read5Plausible Compliance: Designing Duress Protocols for Human Coercion in CI/CD Security
Why High-Assurance Systems Must Treat Humans as Coercible Attack Surfaces Introduction: The Missing Threat Model in DevSecOps Most CI/CD security models treat the human operator as a trusted, volunta
Mar 28, 20263 min read8The Physical Sentinel: Designing an Isolated Approval Terminal for Hostile CI/CD Environments
Hardware-Rooted Intent Verification as a Trust Boundary Introduction: Why CI/CD Approval Must Leave the Laptop Modern CI/CD approval flows run on developer laptops. This is a structural error. Develo
Mar 21, 20263 min read2The Attack Cost Escalation Model: Why Physical Security Changes Adversary Economics
Forcing Digital Supply-Chain Attacks Into the Physical World Introduction: Security Is Economics, Not Perfection Security architecture does not eliminate attacks.It reshapes the economics of attackin
Mar 14, 20265 min read5