Hamburger Cross Icon
SAST Guardrails - Max Severity

Max Severity

Guardrail SAST Guardrails Stable Security And Compliance
sast.max-severity

Ensures no findings at or above the configured severity threshold. Configure min_severity to set the threshold (critical, high, medium, low).

sast critical high findings security code
Get Started View All SAST Guardrails

Compatible Integrations

This guardrail works with the following integrations. Click to see how to use Max Severity with each collector.

+
Max Severity + GitHub Collector Provides SAST data via GitHub App integrations (Semgrep, CodeQL)

Enable This Guardrail

Add the parent policy to your lunar-config.yml to enable this guardrail.

📄 lunar-config.yml 
policies:
  - uses: github://earthly/lunar-lib/policies/sast@v1.0.0
    include: [max-severity]
    # with: ...

How This Guardrail Works

This guardrail is part of the SAST Guardrails policy. It evaluates data collected by integrations and produces a pass/fail check with actionable feedback.

When enabled, this check runs automatically on every PR and in AI coding workflows, providing real-time enforcement of your engineering standards.

Learn How Lunar Works
1
Integrations Gather Data
Collectors extract metadata from code, CI pipelines, tool outputs, and scans
2
{ } Centralized as JSON
All data merged into each component's unified metadata document
3
This Guardrail Checks Current
Max Severity runs and provides pass/fail feedback

Configuration Options

These inputs can be configured in your lunar-config.yml to customize how the parent policy (and this guardrail) behaves.

Input Required Default Description
min_severity Optional high Minimum severity to fail on (critical, high, medium, low)
max_total_threshold Required Maximum total findings allowed (must be configured)

Related Guardrails

Other guardrails in the SAST Guardrails policy.

Guardrail Security And Compliance
Executed

Verifies that SAST scanning was executed on the component. Fails if no scanner has written to .sast.
Guardrail Security And Compliance
Max Total

Ensures total code findings are under a configurable threshold.
SAST Guardrails

SAST Guardrails

This guardrail is part of the SAST Guardrails policy, which includes 3 guardrails for security and compliance.

View Policy

Ready to Automate Your Standards?

See how Lunar can turn your engineering wiki, compliance docs, or postmortem action items into automated guardrails with our 100+ built-in guardrails.

Works with any process
check Infrastructure conventions
check Post-mortem action items
check Security & compliance policies
check Testing & quality requirements
Automate Now
Turn any process doc into guardrails
Book a Demo