Policy as Code - CI/CD Glossary Definition
Policy as code expresses governance and security rules (such as "no public S3 buckets") in machine-readable policies that a pipeline evaluates automatically to allow or block changes.
Policy as code expresses governance and security rules (such as "no public S3 buckets") in machine-readable policies that a pipeline evaluates automatically to allow or block changes.
Policy as code shifts compliance left: violations are caught in CI on the plan, not in a manual review afterward.
Related guides
Guardrails - CI/CD Glossary DefinitionGuardrails: Guardrails are automated, preventive or detective controls that keep teams inside approved bounda…
Least Privilege - CI/CD Glossary DefinitionLeast Privilege: Least privilege is the security principle of granting an identity only the permissions it ne…
Blast Radius - CI/CD Glossary DefinitionBlast Radius: Blast radius is the scope of impact if a change or failure goes wrong: how many systems, users,…