Deployment Controls

Introduction

Deployment controls ensure that only software which has successfully passed through our Software Development Lifecycle is deployed. This can be implemented as a gate in the pipeline or as an admission controller in the environment, ideally both.

Implementation of this control

We use an assert artifact command prior to deployment to verify that the software meets our standards. Additionally, environment monitoring is used to alert us about any non-compliant workloads, ensuring that only approved software is deployed.