CI/CD Policies

During a CI/CD pipeline, there are multiple ways a developer can make a build pass or fail by using policies like the following

OSS Policy Licenses

With this a developer need to add the license either in Approved or Denied list via drag and drop
Any license detected by our scan, if it’s in approved list the build will pass from the CI/CD if not then it will fail the build

Build Policy List

With this feature a developer scan pass or fail a build based on the criteria like,
  1. 1.
    Secrets Detection
  2. 2.
    Owasp Top 10 Detection
  3. 3.
    Vulnerability Count
  4. 4.
    ID/CVE/CWE Match
Any number or criteria set can will make a build stop or pass during a CI/CD pipeline