Sentinel

Sentinel provides a policy‑as‑code language and execution framework that lets administrators define rules governing the behavior of HashiCorp products. Policies are written in a declarative syntax and evaluated before actions are performed, allowing the system to block deployments or operations that violate defined constraints. The tool integrates with Terraform, Vault, and Nomad, enabling checks on infrastructure configuration, secret access, and job scheduling respectively.

Typical users are DevOps engineers, security teams, and platform operators who need to enforce compliance, security, or operational standards across their infrastructure as code pipelines. By embedding policy evaluation in the workflow, Sentinel helps ensure that only approved changes reach production environments, reducing the risk of misconfiguration or unauthorized access.

Sentinel includes a command‑line interface for local development, a hosted playground for interactive testing with mock data, and documentation with examples for common use cases. It runs on macOS and is considered a stable component of the HashiCorp ecosystem.