CI/CD governance with template-driven pipelines
Blog post from Harness
Modern CI/CD platforms have accelerated the speed of software delivery, allowing for quick and frequent deployments. However, in regulated environments like the financial sector, speed must be balanced with governance, auditability, and control. A financial institution addressed this by redesigning their delivery architecture to separate the authoring and execution of pipelines. Non-production environments were used for development and testing, while production environments executed only pre-approved templates, ensuring governance and compliance. This model integrated strict policies, such as using Git as the source of truth for template versioning and requiring pull requests for changes, which improved auditability and control. By embedding governance directly into the pipeline architecture, the institution maintained a secure and compliant delivery system, demonstrating an effective approach to platform engineering that balances speed with security and governance.
| Trend | Post Mentions | Total Month Mentions | Posts | Companies | MoM |
|---|---|---|---|---|---|
| Kubernetes | 13 | 2,306 | 381 | 103 | +25% |
| Platform Engineering | 9 | 1,080 | 232 | 64 | +125% |
| Observability | 2 | 4,496 | 812 | 176 | +40% |
| Developer Experience | 1 | 611 | 275 | 100 | +27% |
| Secrets Management | 1 | 1,821 | 338 | 111 | +22% |