5 Pillars of Quality

Comprehensive scoring across every dimension that matters for AI-driven development. Each pillar contributes to your overall component score (0-10) with configurable weights and thresholds.

How Component Scoring Works

Weighted Average Calculation

Your component's overall score is calculated using a weighted average of all enabled policy categories. Each category can be customized with different weights based on your team's priorities.

// Example calculation
Hygiene: 8.4 × 10% = 0.84
Quality: 8.2 × 25% = 2.05
AI Trust: 8.5 × 20% = 1.70
Security: 9.1 × 25% = 2.28
DORA: 9.0 × 20% = 1.80
Total Score: 8.67/10

Release Gate Integration

Automatic Release
Score ≥ 8.0
⚠️
Manual Review Required
Score 6.0 - 7.9
🚫
Release Blocked
Score < 6.0
🧹

Hygiene

Development process hygiene including code review requirements, branching strategy compliance, and documentation completeness. Ensures consistent development practices across the team.

Key Policies

  • Code review compliance
  • Branching strategy adherence
  • Commit message standards
  • Documentation maintenance

Hygiene Score Breakdown

Code Review Rate
8.5
Branch Strategy
8.2
Commit Standards
8.7
Documentation
8.3
Overall Hygiene Score8.4
📊

Quality

Traditional software quality metrics including test coverage, code complexity, maintainability, and documentation standards. Ensures long-term codebase health and developer productivity.

Key Policies

  • Test coverage requirements
  • Code complexity and duplication limits
  • Maintainability metrics
  • Documentation completeness

Quality Score Breakdown

Test Coverage
8.5
Code Complexity
7.8
Maintainability
8.3
Documentation
8.0
Overall Quality Score8.2
🤖

AI Trust

Tracks AI contribution percentage, monitors human review compliance, and ensures transparency in AI involvement. Critical for maintaining accountability in AI-accelerated development.

Key Policies

  • AI contribution tracking and attribution
  • Human oversight requirements
  • Guardrail compliance verification
  • AI-generated code quality assessment

AI Trust Score Breakdown

AI Contribution Rate
8.5
Human Review Quality
8.2
Guardrail Compliance
9.0
Code Stability
8.7
Overall AI Trust Score8.5
🛡️

Security

Comprehensive security assessment covering vulnerabilities, dependencies, secrets detection, and compliance requirements. Based on OSSF Scorecard with organizational customizations.

Key Policies

  • Vulnerability scanning and remediation
  • Dependency security and license compliance
  • Secrets detection and prevention
  • Security review requirements

Security Score Breakdown

Vulnerability Scanning
9.2
Dependency Security
8.8
Secrets Detection
9.5
Security Reviews
9.0
Overall Security Score9.1

DORA Metrics

DevOps Research and Assessment metrics measuring deployment frequency, lead time for changes, change failure rate, and recovery time. Industry-standard indicators of team performance and velocity.

Key Metrics

  • Deployment frequency tracking
  • Lead time for changes
  • Change failure rate monitoring
  • Mean time to recovery

DORA Score Breakdown

Deployment Frequency
9.2
Lead Time
8.8
Change Failure Rate
9.0
Recovery Time
9.0
Overall DORA Score9.0

Ready to score your components?

See how your codebase measures up across all 5 pillars of quality

Start Free TrialLearn More About Cheer