Code Review Policy

EFFECTIVE DATE: August 8th, 2022

APPROVED BY: James Kilty

LAST UPDATED: August 3, 2022

PURPOSE

The purpose of this policy is to ensure consistent adoption of code review activities within InnovaSystems Intl, LLC (ISI).

SCOPE OF THE POLICY

This policy defines Peer Review (PR) relating to Technical Solutions (TS) for all applications/software developed by ISI.

APPLICABILITY

Responsibility and authority for Code Reviews will be assigned to each software project. The assigned group or individuals will be responsible for preparing and facilitating code reviews. Additionally, the assigned group or individuals will ensure all code reviews are performed in accordance with the organizational set of standard processes.

AUTHORITY AND COMPLIANCE

This policy is authorized by the Chief Technical Officer (CTO). Compliance to this policy will be evaluated through an appraisal/audit process. Results will be provided to the appropriate personnel and non-compliance, risks and issues will be submitted to the CTO for remediation.

POLICY STATEMENT

Code Review activities shall:

1. Define a set of processes to establish structure and expectations for the execution of code review activities.
2. Standardize Git for development source control.
3. Require pull requests for merging into any branch that targets a production release such as Main or a Release Candidate branch.
4. Ensure coding standards are established for each team and their relationship to code reviews.
5. Establish criteria for minimum approval of pull requests including voting, role participation, comment resolution, and checklists.
6. Establish a branch policy in Azure DevOps enacting the critiera for minimum approval of code reviews.
7. Provide guidance for automated development testing and its relationship to code reviews.

Process Guidance Version: 10.4