← Policy gallery

ssdf_po_toolchain_secured

secure-development conformance pure_temporal secure-developmentnistssdfsupply-chainporag-amber

Supporting toolchains and development environments are configured to improve security (PO.3).

Formula

G(GitCommit → P(secure_toolchain))

Why it matters

SSDF PO.3: implement supporting toolchains and secure the environments used for development.

Examples

passes the practice's evidence is present

fails the required secure-development step is absent

Use it

ponens policies add ssdf_po_toolchain_secured --into ./trace.json
ponens trace check ./trace.json