The guidelines address the rising threat of malicious cyber actors (MCAs) exploiting vulnerabilities in CI/CD pipelines, particularly through the exposure of secrets. CI/CD pipelines are essential in modern software development, enabling seamless and efficient integration and deployment processes.

Source: Infosecurity