implementation-roadmap
OfficialPhased SDLC hardening to enforcement.
Authoradaptive-enforcement-lab
Version1.0.0
Installs0
System Documentation
What problem does it solve?
Phased rollout plan for SDLC hardening and enforcement across development workflows, providing a clear path from foundation controls to runtime policy enforcement over a 90-day horizon.
Core Features & Use Cases
- A 12-week phased rollout that transitions from baseline controls (branch protections, required checks, and automation) to runtime enforcement, with evidence collection and governance artifacts.
- Comprehensive Week-by-Week plan including weeks for branch protection, CI/CD status checks, GitHub App setup, and monthly evidence archiving, plus advanced hardening steps like secrets detection, signed commits, SBOM generation, and PAT migration, culminating in policy-as-code validation and runbooks.
- Use Case: security-minded software teams implement automated governance, auditable evidence workflows, and scalable enforcement across multiple repositories.
Quick Start
Map your current SDLC controls to the 12-week plan and begin by enabling foundational branch protections and required checks in your main repository.
Dependency Matrix
Required Modules
ghjqgsutiltrufflehoggitgrepanchore/sbom-actiontrivy
Components
scripts
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: implementation-roadmap Download link: https://github.com/adaptive-enforcement-lab/claude-skills/archive/main.zip#implementation-roadmap Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.