stella-ops.org/git.stella-ops.org
1
0
Fork 0
Code Issues Pull Requests Actions 2 Releases Wiki Activity
Files
d63af51f840f6131bb7f026b61d0db98b8db61d5
git.stella-ops.org/src/Policy/__Libraries/StellaOps.Policy/Schemas/spl-sample@1.json
StellaOps Bot d63af51f84
Some checks failed
api-governance / spectral-lint (push) Has been cancelled
Details
Docs CI / lint-and-preview (push) Has been cancelled
Details
oas-ci / oas-validate (push) Has been cancelled
Details
SDK Publish & Sign / sdk-publish (push) Has been cancelled
Details
Policy Lint & Smoke / policy-lint (push) Has been cancelled
Details
Policy Simulation / policy-simulate (push) Has been cancelled
Details
devportal-offline / build-offline (push) Has been cancelled
Details
up
2025-11-26 20:23:28 +02:00

47 lines
1.0 KiB
JSON
Raw Blame History

{
"apiVersion": "spl.stellaops/v1",
"kind": "Policy",
"metadata": {
"name": "demo-access",
"description": "Sample SPL policy allowing read access to demo resources",
"labels": {
"env": "demo",
"owner": "policy-guild"
}
},
"spec": {
"defaultEffect": "deny",
"statements": [
{
"id": "allow-read-demo",
"effect": "allow",
"description": "Allow read on demo resources",
"match": {
"resource": "demo/*",
"actions": ["read"],
"reachability": "direct",
"exploitability": {
"epss": 0.42,
"kev": false
},
"weighting": {
"reachability": 1.0,
"exploitability": 0.9
},
"conditions": [
{
"field": "request.tenant",
"operator": "eq",
"value": "demo"
}
]
},
"audit": {
"message": "demo read granted",
"severity": "info"
}
}
]
}
}
Reference in New Issue View Git Blame Copy Permalink