Add synthetic fixtures and proposed policy contracts for safely demonstrating future Lariza capabilities. Assisted-by: Codex: GPT-5.6
37 lines
993 B
YAML
37 lines
993 B
YAML
apiVersion: policy.lariza.dev/v1alpha1
|
|
kind: RepositoryPolicyIntent
|
|
metadata:
|
|
name: production-service
|
|
complianceProfiles: [internal, production-critical]
|
|
spec:
|
|
mode: audit
|
|
inheritance:
|
|
organizationPolicy: engineering-baseline
|
|
lockedFields:
|
|
- branches.main.forcePush
|
|
- branches.main.requiredStatusChecks
|
|
- exceptions.requireIndependentApproval
|
|
branches:
|
|
main:
|
|
requirePullRequest: true
|
|
approvals: 2
|
|
dismissStaleApprovals: true
|
|
requireConversationResolution: true
|
|
requireSignedCommits: false
|
|
forcePush: deny
|
|
requiredStatusChecks: [manual-ci/policy-check]
|
|
pathRules:
|
|
- pattern: internal/payment/**
|
|
approvalGroups:
|
|
- group: payments-owners
|
|
minimum: 1
|
|
disallowAuthor: true
|
|
- pattern: .lariza/**
|
|
approvalGroups:
|
|
- group: governance-owners
|
|
minimum: 1
|
|
exceptions:
|
|
maximumDuration: 7d
|
|
requireReason: true
|
|
requireIndependentApproval: true
|