Policy

Once the root of trust has been initialized properly, it is time to define the security policy for the repository.

You must be either a Policy Administrator, or a Delegated Policy Administrator in order to manage the gittuf policy. The root of trust users appoint these administrators.

Root of Trust users (by default) are not Policy Administrators, nor are Contributors.

Policy Files

gittuf contains two types of policy files: primary rule files and delegated rule files.

The Primary Rule File

By default, gittuf places all rules defined in the primary rule file. This rule file is used by default for all gittuf policy operations, unless otherwise specified. In most cases, your repository will only need this rule file.

Delegated Rule Files

If you wish to delegate your policymaking authority to another user, this is done using delegated rule files. We will take a look at these later. For more information, see Delegated Policies.

Table of contents

Copyright © 2025 gittuf a Series of LF Projects, LLC. For web site terms of use, trademark policy and other project policies please see https://lfprojects.org/.
This site uses Just the Docs, a documentation theme for Jekyll.