Developer Configuration Management

System and Services Acquisition Policy for 18F


Configuration and deployment of the platform is managed using the BOSH project. BOSH releases and deployment manifests are stored in GitHub; sensitive credentials are stored in Amazon S3 and are protected using both client- and server-side encryption.


Changes to BOSH configuration are tracked in GitHub. Documentation is stored alongside deployment manifests and updated as configuration is changed; high-level documentation is also available at


All proposed configuration changes are reviewed by members of the team. Proposed changes must pass unit, integration, and acceptance tests before being deployed.


Configuration changes are made through pull requests in GitHub, which need to include documentation of all of the relevant context, as specified in 18F-wide policy here:


BOSH stemcell images and BOSH deployment artifacts are updated regularly, so that upstream security updates are applied. Covered By:

results matching ""

    No results matching ""