Guardrails Management

Overview

Guardrails Management in Xygeni provides a centralized interface to define, configure, and enforce security guardrails for projects. Guardrails are logic-based policies (written in the XyFlow Guardrail DSL) that determine how the Xygeni scanner behaves when certain conditions are met—such as failing a build when a critical issue or new vulnerability is detected. This feature ensures automated compliance enforcement and consistent security posture across projects.

Guardrails Management Interface

To acces the Guardrails Management tab go to Settings → Guardrails Management.

The main panel lists all existing guardrails and their current status. You can create, edit, or delete guardrails directly from this page.

Column
Description

Guardrail Name

The unique name assigned to the guardrail definition.

Status

Indicates whether the guardrail is currently Enabled or Disabled.

Associated Projects

Lists the projects to which this guardrail applies. Hover or click to view the full list.

Creating a Guardrail

To create a new guardrail, click on the New Guardrail button at the top right of the interface. This will open a slide where you can configure a new guardrail:

Field
Description

Name

Enter a unique name for your guardrail (e.g., Block Critical Issues).

Status

Choose between: Enabled — activates the guardrail immediately. Disabled — saves the guardrail without applying it.

Apply From

Defines application scope: Wildcard — applies to all projects matching the specified wildcard. Projects — limits to specific projects selected manually.

Set Wildcard

Specify a matching pattern (e.g., *prod*, *backend*) if Wildcard is selected.

Set Project

Specify what projects you desire to apply the guardrail to.

Editor

Code area for defining guardrail logic using the XyFlow Guardrail Syntax. Syntax highlighting is supported. You may also upload a guardrail as a file directly.

After configuring your guardrail, click on Create to complete the setup.

Modifying and Removing a Guardrail

From this interface you can also modify existing guardrails by selecting the edit button for a specific guardrail. As well as remove a guardrail completely by selecting the delete button.

For more information about guardails please visit the Guardrail Documentation.

PreviousAuto-fixNextGroups Management

Last updated