Build Controls
KBC1:
Version Control
KBC2:
Artifact Binary Provenance
KBC3:
Controlled Build Environment
KBC4:
Dependency Management
KBC5:
Infrastructure and Configuration Management
Validation Controls
KVC1:
Code Review
KVC2:
Quality Assurance
KVC3:
Security Vulnerability Scanning
KVC4:
Deployment Approvals
KVC5:
Service ownership
Change Controls
KCC1:
Change Records
KCC2:
Deployment Controls
KCC3:
Secrets Management
KCC4:
System Access Controls
KCC5:
Runtime Workload Monitoring