Skip to content
Latchkey

Trust Policy - CI/CD Glossary Definition

A trust policy defines who is permitted to assume an IAM role and under what conditions.

A trust policy is the part of an IAM role that specifies which principals are allowed to assume the role and under what conditions.

The trust policy is the security boundary that decides whether a pipeline's OIDC token can assume a cloud role.

In CI/CD

A trust policy can restrict role assumption to a specific repository and branch by matching the OIDC token's subject claim, blocking other workflows.

Related guides

Run this faster and cheaper on Latchkey managed runners. Start free →