Supply Chain Policy
Definitions
Supply Chain Policy 是 GitOps 术语,用来说明 rules that decide which code, images, dependencies, and sources can be released. 它帮助团队、人和代理比较声明的源状态与正在运行的系统,再按证据行动,不把部署说成比实际更多。 来源: OpenGitOps principles.
“团队午饭前用了 Supply Chain Policy,发布就没有系着松鞋带冲进生产环境。”
Related Terms
- Admission PolicyGitOps and Release Engineering
Admission Policy 是 GitOps 术语,用来说明 a rule that evaluates resources before they are accepted by the cluster. 它帮助团队、人和代理比较声明的源状态与正在运行的系统,再按证据行动,不把部署说成比实际更多。 来源: Kubernetes controller ...
- Kyverno PolicyGitOps and Release Engineering
Kyverno Policy 是 GitOps 术语,用来说明 a Kubernetes-native policy rule for validating, mutating, or generating resources. 它帮助团队、人和代理比较声明的源状态与正在运行的系统,再按证据行动,不把部署说成比实际更多。 来源: Kubernetes con...
- OPA GatekeeperGitOps and Release Engineering
OPA Gatekeeper 是 GitOps 术语,用来说明 a Kubernetes policy system often used to enforce admission constraints. 它帮助团队、人和代理比较声明的源状态与正在运行的系统,再按证据行动,不把部署说成比实际更多。 来源: Kubernetes controller pat...
- Policy as CodeGitOps and Release Engineering
Policy as Code 是 GitOps 术语,用来说明 security, compliance, or release rules written as versioned machine-readable code. 它帮助团队、人和代理比较声明的源状态与正在运行的系统,再按证据行动,不把部署说成比实际更多。 来源: OpenGitOps pri...
- SBOM GateGitOps and Release Engineering
SBOM Gate 是 GitOps 术语,用来说明 a release check that requires software bill of materials evidence before promotion. 它帮助团队、人和代理比较声明的源状态与正在运行的系统,再按证据行动,不把部署说成比实际更多。 来源: OpenGitOps princip...
- Signed ImageGitOps and Release Engineering
Signed Image 是 GitOps 术语,用来说明 a container image with cryptographic proof attached to the artifact. 它帮助团队、人和代理比较声明的源状态与正在运行的系统,再按证据行动,不把部署说成比实际更多。 来源: OpenGitOps principles.