Create and manage Policies

There are four types of policies in Polaris:

  • Issue policies: Use issue policies to automate actions and flag policy violations when issues with specific properties are detected in a test (including setting fix-by dates, if necessary).
  • Pull/merge request policies: Policies that are triggered by a pull request and enable pull request comments when issues with specific properties are detected in a branch.
  • Component policies: Use component policies to automate actions and flag policy violations when components with specific properties are detected in a SCA test.
  • Test scheduling policies: Use test scheduling policies to automate tests of SCM-integrated branches on a weekly or daily basis.

Organization Admins and Organization Application Managers can create and manage policies on the Policies page.

Default policies

Organization Admins and Organization Application Managers can change their organization's default policies. The organization's default policies are automatically applied to new applications and projects.

Organization Admins, Organization Application Managers, Application Admins, and other users with permissions to manage project settings can change a project's default polices (effectively, override or disable the organization's default policies).

Assign policies to projects

Policies can be applied to projects when creating or editing policies, by default or on the project settings page (click "project name">Settings>Policies).

Assign policies to branches

Each project's default policies are applied to the project's default branch, but can be disabled.

When you create or edit non-default branches, you can:

  • Disable policies for the branch (None).
  • Use the project's policies.
  • Manually select policies for the branch (effectively, override the project's default policies).
    Note: Pull/Merge Request policies are different from other policies in that they automatically get assigned to all branches.
Note: See Add a branch to a project and Edit a branch (manually created) for more information.

Policy permissions

Before you proceed, review policy-related permissions here: Roles and permissions.