Workflow Runs
These rules apply to CI/CD execution and automation activity. They prevent drift, enforce runtime limits, and control sensitive operations.
| ID | Title | Description | Significance | Severity |
|---|---|---|---|---|
| W1 | Workflow Timeout | Workflow runs must complete within the configured time limit (seconds) | Workflow Hygiene | medium |
| W2 | Required Jobs Must Succeed | All required jobs in a workflow must complete successfully | SDLC Compliance | critical |
| W3 | No Weekend Deployments | Workflows targeting production must not run on weekends | Incident Management Policy | medium |
| W4 | Maximum Workflow Runtime | Workflow runs must not exceed the organization’s maximum allowed duration | Workflow Hygiene | medium |
| W5 | Manual Approval for Sensitive Workflows | Sensitive workflows (e.g., deploy.yaml, secrets.yaml) require approval | SOC-2 (Audit Readiness) | high |
💡 Want to recommend a rule? Contact us at support@warestack.com — we’d love to hear from you.
Last updated on