stella-ops.org/git.stella-ops.org
1
0
Fork 0
Code Issues Pull Requests Actions 1 Releases Wiki Activity
Files
8da4e12a90fd82f6b2ec870bb73e0499b4ff6343
git.stella-ops.org/docs/examples/policies/baseline.yaml
master d870da18ce Restructure solution layout by module
2025-10-28 15:10:40 +02:00

35 lines
751 B
YAML
Raw Blame History

version: "1.0"
metadata:
description: Baseline production policy
tags:
- baseline
- production
rules:
- name: Block Critical
severity: [Critical]
action: block
- name: Escalate High Internet
severity: [High]
environments: [internet]
action:
type: escalate
escalate:
minimumSeverity: Critical
- name: Require VEX justification
sources: [NVD, GHSA]
action:
type: requireVex
requireVex:
vendors: [VendorX, VendorY]
justifications:
- component_not_present
- vulnerable_code_not_present
- name: Alert warn EOL runtime
priority: 1
severity: [Low, Medium]
tags: [runtime:eol]
action: warn
Reference in New Issue View Git Blame Copy Permalink