CI/CD Policies

During a CI/CD pipeline, there are multiple ways a developer can make a build pass or fail by using policies like the following

OSS Policy Licenses

With this a developer need to add the license either in Approved or Denied list via drag and drop

Any license detected by our scan, if it’s in approved list the build will pass from the CI/CD if not then it will fail the build

Build Policy List

With this feature a developer scan pass or fail a build based on the criteria like,

  1. Secrets Detection

  2. Owasp Top 10 Detection

  3. Vulnerability Count

  4. ID/CVE/CWE Match

Any number or criteria set can will make a build stop or pass during a CI/CD pipeline

Last updated