Supply Chain Policy
Definitions
Supply Chain Policy is a GitOps term for rules that decide which code, images, dependencies, and sources can be released. It helps teams, humans, and agents compare declared source state with running systems, then act without pretending a deployment did more than the evidence shows. Source context: OpenGitOps principles.
“The team used Supply Chain Policy before lunch, so the release did not sprint into production wearing untied shoes.”
Related Terms
- Admission PolicyGitOps and Release Engineering
Admission Policy is a GitOps term for a rule that evaluates resources before they are accepted by the cluster. It helps teams, humans, and agents compare declared source state with...
- Kyverno PolicyGitOps and Release Engineering
Kyverno Policy is a GitOps term for a Kubernetes-native policy rule for validating, mutating, or generating resources. It helps teams, humans, and agents compare declared source st...
- OPA GatekeeperGitOps and Release Engineering
OPA Gatekeeper is a GitOps term for a Kubernetes policy system often used to enforce admission constraints. It helps teams, humans, and agents compare declared source state with ru...
- Policy as CodeGitOps and Release Engineering
Policy as Code is a GitOps term for security, compliance, or release rules written as versioned machine-readable code. It helps teams, humans, and agents compare declared source st...
- SBOM GateGitOps and Release Engineering
SBOM Gate is a GitOps term for a release check that requires software bill of materials evidence before promotion. It helps teams, humans, and agents compare declared source state ...
- Signed ImageGitOps and Release Engineering
Signed Image is a GitOps term for a container image with cryptographic proof attached to the artifact. It helps teams, humans, and agents compare declared source state with running...