Policies
Define security, compliance, and operational rules for your infrastructure.
Built-in Policies
- Security: Enforce HTTPS, disable root access
- Compliance: GDPR, HIPAA, SOC2 templates
- Cost: Alert on high spending, auto-shutdown idle resources
Creating a Policy
- Go to Policies
- Click + New Policy
- Choose category (Security, Compliance, Cost)
- Define rules (e.g., “No public S3 buckets”)
- Apply to workspaces or clusters
Enforcement
- Audit Mode: Log violations
- Enforce Mode: Block non-compliant actions
💡 Policies can be versioned and shared across teams.