Control (Compliance) - CI/CD Glossary Definition
A control is a specific safeguard implemented to reduce risk and satisfy a compliance requirement.
A control is a specific safeguard or countermeasure (technical, administrative, or physical) implemented to reduce risk and meet a requirement within a compliance framework.
Controls are the building blocks of every framework; many are operated and evidenced directly through CI/CD.
In CI/CD
A required code review, a mandatory vulnerability scan, and an enforced approval gate are each controls that a pipeline implements and can prove ran.
Related guides
Compliance Framework - CI/CD Glossary DefinitionCompliance Framework: A compliance framework is a structured set of controls and requirements (such as SOC 2…
Evidence Collection - CI/CD Glossary DefinitionEvidence Collection: Evidence collection is the gathering and retention of artifacts (logs, approvals, scan r…
Guardrail - CI/CD Glossary DefinitionGuardrail: A guardrail is an automated preventive or detective control that constrains what changes a pipelin…