← Policy gallery

ssdf_pw_secure_defaults

secure-development security pure_temporal secure-developmentnistssdfsupply-chainpwrag-amber

Software is configured with secure default settings (PW.9).

Formula

G(Release → secure_defaults)

Why it matters

SSDF PW.9: configure software to have secure settings by default.

Examples

passes the practice's evidence is present

fails the required secure-development step is absent

Use it

ponens policies add ssdf_pw_secure_defaults --into ./trace.json
ponens trace check ./trace.json