Skip to content
Latchkey

Attack Surface - CI/CD Glossary Definition

An attack surface is every point where a system could be attacked.

An attack surface is the total set of points where an attacker could try to enter, extract data from, or affect a system, including endpoints, inputs, dependencies, and configurations.

An attack surface is every point where a system could be attacked.

Reducing it in CI

Removing unused dependencies, disabling unneeded endpoints, and scanning configurations all shrink the attack surface, and pipelines can enforce these checks automatically.

Related guides

Run this faster and cheaper on Latchkey managed runners. Start free →