GitOpsHQ Docs
Governance & Security

Governance & Security

Control who can do what, enforce policies, and maintain a complete audit trail.

GitOpsHQ provides layered governance: from lightweight approval gates for sensitive actions to advanced OPA policy evaluation, scoped API keys for automation, and a comprehensive audit trail so you can prove who did what and when.

Approval Policies

Templates, bindings, quorum rules, break-glass override.

OPA Policy Engine

Rego-based governance, built-in policies, playground, violation tracking.

API Keys & Automation

Project keys, service accounts, webhooks, CI/CD integration.

Notifications & Audit

Channels, routing, escalation, audit log, compliance.

Progressive governance

Start with Approval Policies for basic human-in-the-loop control, then add OPA policies when you need advanced governance over values, structure, or organization-specific rules.

Env Compare & Bulk Ops

Compare configurations across environments and perform bulk image updates across tenants.

Policy and Approvals

Complete guide to approval policy templates, policy bindings, approval workflows, quorum rules, and governance decisions.