Overview
Core backend architecture and development workflows
Platform Relationships
Visual representation of all primary relationships between compliance objects
Project Structure
The structure of the Openlane source code
Helper Repositories
Additional repositories outside the main core repo
Developer Gotchas
Common pitfalls and non-obvious behaviors that trip up developers working in the core codebase
Create New Schema
Generate GraphQL and API layers from Ent schema changes
Migrations and DB
Database drivers, migration tooling, and local DB setup
Tenancy and Permissions
Understanding tenant boundaries and permission inheritance in Openlane
Workflows Engine
How workflow definitions, approvals, and events execute in core
Hooks and Interceptors
How mutation hooks and query interceptors extend entity behavior in the Ent ORM layer
Compliance Objects
Openlane provides a comprehensive compliance management platform built around interconnected objects that support various compliance frameworks, risk management, and audit preparation. This reference guide provides detailed documentation for each compliance object type.
Request Lifecycle
How HTTP requests flow through the middleware stack, and how REST and GraphQL endpoints coexist
Multi-Module Structure
How the core repository is organized as multiple Go modules with build tags for conditional compilation