Policy Engine

Programmable rules enforced across code, cloud, container, and workflow.

Block PRs with critical SAST findings

Code · updated over 56 years ago

critical

12 violations

Enforcing

Require MFA on all IAM users

Cloud · updated over 56 years ago

high

4 violations

Enforcing

No public S3 buckets

Cloud · updated over 56 years ago

critical

3 violations

Enforcing

Containers must run as non-root

Container · updated over 56 years ago

high

22 violations

Enforcing

Patch high CVEs within 14 days

SLA · updated over 56 years ago

high

41 violations

Enforcing

No hardcoded secrets in code

Code · updated over 56 years ago

critical

7 violations

Enforcing

Encrypt RDS at rest

Cloud · updated over 56 years ago

high

2 violations

Enforcing

Allow accept-risk for low only

Workflow · updated over 56 years ago

medium

0 violations

Disabled