Specify vault approval rules

Use vault approval rules to set the criteria for approving or rejecting packages in a vault.

Available package approval rules

PulseUno includes the following automated approval rules for vaults.

Rule Description
defaultRule.js Approves all packages that have no critical or high security issues and have an Apache-2.0 license.
rejectGPL Rejects all packages that contain a GPL license.
rejectHighSeverity Rejects all packages that contain high severity vulnerabilities.

Tip: You can write your own approval scripts.

Back to top

Set a vault approval rule

You can apply the approval rule to all vaults or individual vaults. The rule you specify for an individual vault overrides the rule set for all vaults at the space level.

To set a vault approval rule:

  1. On the top navigation bar, select a space from the spaces list.

  2. Set a rule for all vaults or individual vaults:

    All vaults On the sidebar, select Settings > Vault Defaults.
    Individual vaults
    1. On the sidebar, select Vaults.
    2. On the Vaults page, open a local or remote vault. You can also open vaults inside virtual vaults.
    3. On the sidebar, select Settings > Approving Changes.

  3. For the Approval Rules option, select Enable automated approval and rejection using rule scripts.

  4. Select a rule from the list.

  5. Click Save.

Back to top

See also: