Hello,
Problem: Any OPS user can currently unlock all release tasks due to lack of granular permissions.
Solution: Add a new "Locker/Unlocker Team" field to tasks to specify which team is authorized to unlock each task.
Benefits: Improved security, compliance, and clear ownership of unlock operations.
This enhacement is mandatory to onboard Cybersecurity teams on Release before Deploypment in production
Template as code :
Release User: DEV Team
Release Admin: OPS Team
Security: Sec Team
# Exported from: https://xlrelease.dev.echonet/
# Release version: 25.3.7-531.1600
# Date created: Tue Jun 30 15:43:18 CEST 2026
---
apiVersion: xl-release/v1
kind: Templates
metadata:
home: "~~test "
spec:
- template: Security Gate Template
scheduledStartDate: 2026-06-30T09:00:00+02:00
phases:
- phase: NON PROD
tasks:
- name: Build
type: gitlab.CreatePipeline
gitlab_server: gitlab
team: Release User
locked: true
- name: Deploy
type: ansibletower.launchAndWait
ansibletower: test
team: Release User
locked: true
- name: Go to prod by OPS
type: xlrelease.Task
team: Release Admin
locked: true
color: "#3d6c9e"
- phase: PROD
tasks:
- name: Create Change Request
type: servicenow.CreateChangeRequest
team: Security
locked: true
- name: Vulnerability SCAN
type: xlrelease.ScriptTask
locked: true
- name: Automatic GO/NO GO
type: advancedGating.Gate
team: Security
locked: true
- name: Security Decision if NO GO
type: xlrelease.Task
team: Security
locked: true
- name: Deploy
type: ansibletower.launchAndWait
ansibletower: test
team: Release User
locked: true
color: "#3d6c9e"
riskProfile: Default risk profile
author: d6
by: Mahdi S. | 6 days ago | Integrations

Comments