Back to articles
CI/CD security: threat modeling using a MITRE-style threat matrix
Datadog | The Monitor blog

CI/CD security: threat modeling using a MITRE-style threat matrix

10 views

Summary

This article highlights the critical need to secure CI/CD pipelines, which are increasingly vulnerable to attacks allowing malicious code injection, access to secrets, and permission manipulation. It introduces a CI/CD-specific threat matrix based on the MITRE ATT&CK framework to help identify potential attack paths and proactively model threats. The authors will demonstrate threat modeling with GitHub in a follow-up, emphasizing the importance of treating the SCM tool as part of the CI/CD security boundary.
Read the Original Article

This article originally appeared on Datadog | The Monitor blog.

Read Full Article on Original Site

Popular from Datadog | The Monitor blog

1
Understand session replays faster with AI summaries and smart chapters
Understand session replays faster with AI summaries and smart chapters

Datadog | The Monitor blog Apr 2, 2026 32 views

2
Datadog achieves ISO 42001 certification for responsible AI
Datadog achieves ISO 42001 certification for responsible AI

Datadog | The Monitor blog Mar 26, 2026 28 views

3
Analyzing round trip query latency
Analyzing round trip query latency

Datadog | The Monitor blog Mar 27, 2026 25 views

4
Introducing the Datadog Code Security MCP
Introducing the Datadog Code Security MCP

Datadog | The Monitor blog Apr 7, 2026 23 views

5
Introducing Bits AI Dev Agent for Code Security
Introducing Bits AI Dev Agent for Code Security

Datadog | The Monitor blog Mar 26, 2026 23 views