This feature is a proprietary feature and is of Chainloop platform.
Supported policies
The following policies are supported and can be used with the runner context data.Branch protection
- branch-admin-enforcement - Ensures that branch protection rules are enforced for repository administrators, preventing admin bypass.
- branch-deletion-blocked - Ensures that branch deletion is blocked to protect important branches from accidental deletion.
- branch-force-push-blocked - Ensures that force pushes are blocked on branches to prevent bypassing code review and history integrity.
- branch-linear-history-required - Ensures that branches require linear history to prevent merge commits and maintain a clean commit history.
- repository-rules-change-restricted - Ensures that repository rules can only be changed by approved teams, protecting against unauthorized modifications to security policies.
Pull request protection
- pr-code-owner-review-required - Ensures that code owner reviews are required for pull requests.
- pr-conversation-resolution-required - Ensures that all conversations on pull requests must be resolved before merging.
- pr-review-required - Ensures that pull requests require a minimum number of reviewers before merging.
- pr-stale-reviews-dismissed - Ensures that stale pull request reviews are automatically dismissed when new commits are pushed.
Pull request quality
These policies evaluate built-in attestation metadata captured automatically by Chainloop and do not require runner context data.- pr-description-required - Ensures that pull requests have a description providing context about the changes.
- pr-user-story-linked - Ensures that pull requests are linked to a user story or issue for traceability.