cis-controls
Installation
SKILL.md
CIS Controls v8.1 Skill
Purpose
Implement prioritized CIS Controls for cyber defense across all Hack23 projects, focusing on high-impact security controls organized by Implementation Groups.
Rules
Implementation Group 1 (Essential - All Projects)
Control 1: Inventory of Enterprise Assets
- MUST maintain asset inventory for all repositories and infrastructure
- MUST tag all cloud resources with Application, Environment, and Owner
Control 2: Inventory of Software Assets
- MUST track all dependencies (package.json, pom.xml, requirements.txt)
- MUST enable Dependabot for automated dependency tracking
- MUST generate Software Bill of Materials (SBOM) for releases