Control CI/CD security: view system & custom policies. Create and manage policies to ensure pipeline integrity and compliance.
CI/CD policies define how a system should respond to threats in pipelines. It includes conditions that trigger the policy, the scope of its application, and the actions to be taken when these conditions are met. When a policy detects a threat, it generates an issue for remediation.
Cortex Cloud provides out-of-the-box CI/CD policies. In addition, you can create custom policies to tailor it to your specific business or infrastructure requirements. Out-of-the-box policies cannot be modified directly. However, you can create a custom policy by cloning the existing one. This allows you to make changes to the original policy according to your requirements. Refer to Manage CI/CD policies for more information.
Tip
For Cortex Cloud Code policies, refer to Unified Application Security policies.