Stage Gate Enforcement

CI/CD as the Compliance Blocker

Navigate evaluates policy-defined rules at every pipeline checkpoint. Block non-compliant code, capture evidence, and provide clear remediation paths to developers.

Get StartedRequest Demo

How Navigate Works

Every pipeline run is evaluated against policy-defined controls.

1

Pipeline Triggers

Build, test, or deploy stage reaches a checkpoint.

2

Gate Evaluation

Navigate evaluates controls defined in the policy profile.

3

Evidence Check

Validates artifacts, thresholds, and required approvals.

4

Decision Returned

PASS, FAIL, PASS_WITH_EXCEPTION, or NOT_APPLICABLE.

Simple Configuration

One YAML File, Complete Compliance

Define your compliance requirements in a simple, version-controlled manifest. No complex setup, no separate tools to manage.

Framework Selection
Choose which compliance frameworks to enforce
Check Configuration
Enable/disable specific compliance checks
Severity Levels
Define what blocks vs what warns
Exceptions
Document approved exceptions with justification
normex.yaml
# normex.yaml
compliance:
  frameworks:
    - soc2
    - hipaa
  
  checks:
    security:
      enabled: true
      fail_on: critical
    
    dependencies:
      enabled: true
      license_allowlist:
        - MIT
        - Apache-2.0
        - BSD-3-Clause
    
    secrets:
      enabled: true
      scan_history: false
    
    code_review:
      required_approvers: 2
      require_codeowner: true

  notifications:
    slack: "#security-alerts"
    on_failure: true

Works With Your Pipeline

Native integrations with all major CI/CD platforms.

🐙
GitHub Actions
🦊
GitLab CI
🤵
Jenkins
☁️
Azure DevOps
CircleCI
🪣
Bitbucket
.github/workflows/compliance.yml
name: Compliance Check

on:
  pull_request:
    branches: [main]

jobs:
  navigate:
    runs-on: ubuntu-latest
    steps:
      - uses: actions/checkout@v4
      
      - name: Run Navigate
        uses: normex/navigate-action@v1
        with:
          token: ${{ secrets.NORMEX_TOKEN }}
          fail-on: critical
.gitlab-ci.yml
stages:
  - test
  - compliance

navigate:
  stage: compliance
  image: normex/navigate:latest
  script:
    - navigate scan --config normex.yaml
  rules:
    - if: $CI_PIPELINE_SOURCE == "merge_request_event"
  allow_failure: false
Gate Decision Outcomes

Clear, Auditable Decisions

Every gate evaluation returns a deterministic outcome with full evidence. Configure hard blocks, soft blocks, and exception workflows by environment.

PASS - All controls satisfied
FAIL - Pipeline blocked
PASS_WITH_EXCEPTION - Approved override
NOT_APPLICABLE - Gate not required
Hard block for production
Soft block with warning for lower envs
PR #142: Add user auth
Compliance Status
Security Scan
passed
License Check
passed
Secret Detection
passed
Code Review (2/2)
passed
Test Coverage (87%)
passed
Ready to merge

All compliance checks passed

Comprehensive Compliance Checks

Navigate runs a comprehensive suite of checks on every pipeline execution.

Security Scanning

SAST analysis for vulnerabilities, injection flaws, and insecure patterns.

License Compliance

Validate dependencies against your approved license allowlist.

Secret Detection

Prevent accidental commit of API keys, tokens, and credentials.

Code Review

Enforce required approvers and CODEOWNERS review.

Test Coverage

Ensure minimum test coverage thresholds are met.

Dependency Health

Check for outdated, deprecated, or vulnerable packages.

Unified Platform

Stronger Together with Atlas & Lens

Navigate works seamlessly with Atlas and Lens to provide end-to-end compliance coverage from policy definition to code analysis to pipeline enforcement.

📚

Atlas → Navigate

Policies and controls defined in Atlas automatically become enforcement rules in Navigate.

🔍

Lens → Navigate

Deep code analysis from Lens powers Navigate's compliance checks with richer context.

📊

Navigate → Atlas

Pipeline results flow back to Atlas as evidence for audit preparation and compliance reporting.

Navigate Dashboard

Pipeline compliance overview

Pipelines Today127
Pass Rate94%
Warnings8
Blocked PRs3

Ready to enforce compliance in your pipeline?

Add stage gate enforcement to your CI/CD and ensure every release meets your compliance standards with full evidence capture.

Start Free TrialTalk to Sales