DevSecOps

DevSecOps Automation

Embed HARDN compliance checks directly in your GitHub Actions or GitLab CI pipeline. Fail builds that don't meet your STIG or CIS baseline before they ever reach production.

View Pipeline Examples

.github/workflows/compliance.yml

- name: STIG Compliance Check

run: |

# Run HARDN hardening and compliance check

sudo make hardn

# Fails pipeline if score < 95%

COMING SOONv2.x Roadmap

HARDN Daemon for GitHub Self-Hosted Runners

A lightweight persistent daemon that runs directly on your GitHub Actions self-hosted runner nodes. Continuously enforces CIS and STIG baselines on the runner OS, monitors for configuration drift between jobs, and hard-fails any workflow that runs on a non-compliant host, before a single line of your pipeline code executes.

Runner OS Hardening

Applies HARDN controls to the runner host automatically at registration. No manual provisioning.

Pre-Job Compliance Gate

Checks runner health before each workflow run. Quarantines the runner if drift is detected.

GitHub Actions Native

Registers as a service on the runner, zero changes to your workflow YAML required.

Follow Development Contact SIG to get early access

GitHub Actions integration

GitLab CI/CD support

Jenkins pipeline plugin

Ansible playbook role

Terraform hardening module

Policy-as-code with OPA