Policy Checks
AppControl enforces compliance by automatically checking policies whenever a new revision of an application is deployed. Policies consist of individual policy rules, which are categorized into two types:
Single-Run Rules: These rules are checked once per revision and typically apply to aspects such as app models, microflows, pages, and other structural elements.
Recurring Rules: These rules are continuously monitored beyond the initial deployment. They include checks for component vulnerabilities, support status of used components, and other external dependencies.
Recurring policy checks are performed at two key moments:
When a new revision of an application is deployed.
Every 24 hours to ensure that all applications remain compliant with the latest updates.
The data required for policy evaluations, including vulnerability information and support status of components, is sourced from the AppControl repository. This repository is updated once per day, ensuring that policy checks always use the most current information available.
Policy checks are designed by Blue Storm and are based on Mendix Best Practices, Community Best Practices, and customer feedback. After being developed and thoroughly tested, new policy checks are included in future AppControl product releases to continuously enhance compliance monitoring and enforcement.
Last updated