Enforce on the request path
License, version, and provenance rules run on every install. Consistent whether the install happens in CI, on a laptop, or inside a Dockerfile.
For DevSecOps & Compliance
When a public npm or PyPI compromise hits the feed, a scanner tells you after the package is already installed. Chainsaw decides on the install path: the same license, version, and provenance rules run in CI, on a laptop, and in Dockerfiles, and a bad version never installs. Every verdict — the rule, the reason, the repo, the CI job, the user — lands in a structured log. So when the security questionnaire asks how you stop a poisoned dependency, the answer is a query, not a quarter of collection work.
The pain
What changes
License, version, and provenance rules run on every install. Consistent whether the install happens in CI, on a laptop, or inside a Dockerfile.
Carry the same policy across CI, developer endpoints via MDM, and the network egress path — then export an audit trail of what was decided, with audit logs streaming to Splunk HEC, Microsoft Sentinel, or IBM QRadar on Enterprise. That closure and audit trail are the paid wedge: a local CLI cannot produce them.
Roll out policy without breaking builds. Capture what would have been blocked, then flip to enforce rule by rule when you're confident.
Evidence mapping
You don't turn Chainsaw on for a framework — you turn it on to stop the next compromised package. The audit trail it leaves happens to be the evidence a questionnaire or auditor asks for. Chainsaw doesn't certify you compliant; it produces the proof. Here's how the install-path firewall lines up against the frameworks we see most often.
CC 7.1 change management, CC 8.1 system changes, CC 6.6 logical access
Install-path audit log demonstrates approval boundaries. Exception expiry and RBAC-scoped API keys satisfy the access-change controls.
SR-3, SR-4, SR-11 supply-chain controls
Supply-chain attack signals, SBOM export, and maintainer-change detection map directly to the supply-chain risk controls introduced in r1.
A.8.9 config mgmt, A.8.22 segregation, A.5.19 supplier
Centralised policy and tenant-scoped rules satisfy the segregation controls. Supplier controls land on the provenance and attack-signal rules.
Provenance L2–L3, Source L2+, Build L3
Chainsaw ingests Sigstore attestations, npm provenance, and Go sumdb to enforce the provenance levels your consumers require.
Enforce, then prove it
Allow-list licenses, block versions below a floor, require signed provenance. Single declarative surface; same YAML runs everywhere.
Every install produces a verdict in the audit log even in monitor mode. You see what enforcement would do without breaking anyone's build.
One-click CycloneDX SBOMs per repo. Audit trails stream to Splunk HEC, Microsoft Sentinel, or IBM QRadar on Enterprise. No spreadsheet assembly at quarter-end.
Before the next questionnaire
See what a real compromise would have hit today — without breaking a single build. Flip to enforce rule by rule when you're ready, and the audit log is there when the questionnaire arrives.