Closed sluetze closed 4 months ago
I have created a PR: ComplianceAsCode/content#11393
Just a thought, but maybe this is too much: What about having checks to ensure a well-configure GitOps Instance? This would make it harder for people, who use other CIs, as they would have to exclude this rules.
discussed this with benjamin, we cant make a well configured gitops/pipelines architecture, because of to many possible good architectures. we wont add checks for this. it will stay org-only
merged upstream
Needs to be adressed on a organizational level adhering to the principle of least privilege for all service accounts. Example: Deployment using a well-configured OpenShift GitOps instance.
Needs to be adressed on a organizational level.