Governance by Design: M-of-N Approvals and Just-In-Time Authority for High-Risk CI/CD Actions

Introduction: Why Standing Privilege Is the Real Insider Threat Most CI/CD systems still rely on standing privilege: a small set of engineers permanently hold production deploy rights. This is conveni