Features
Developer Tooling
SHIP-HATS provides a suite of tools to cater to each stage of the CI/CD pipeline, along with AI developer tools to accelerate software development across each stage, with coverage eventually expanding to every stage of the AI-native SDLC.
Dashboards and Insights
SHIP-HATS provides the Unified Quality Dashboard (UQD), which consolidates metrics from multiple tools including GitLab, Jira, and SonarQube into a single view, helping teams track deployment frequency, code quality, and system health for data-driven decisions. The Runner Insights dashboard helps teams monitor shared runner consumption, usage patterns, and capacity. Additionally, GitLab-native dashboards included with the GitLab Ultimate tier cover DevOps adoption, delivery performance via DORA metrics, security findings, value stream analytics, and environment and operational health.
Shared Runners
SHIP-HATS provides a pool of managed runners available to all users, so teams can run pipeline jobs without provisioning or maintaining their own infrastructure. Available at no additional cost, runners are created on-demand and support CStack, Docker, GitLab-hosted, and Windows environments.
Pipeline Templates, COE, and Compliance Framework
SHIP-HATS provides a suite of tools to help teams build and run secure, compliant CI/CD pipelines efficiently. Pipeline Templates and Pipeline COE provide ready-made configuration files and pre-built images based on the GitLab DevSecOps Governance Framework (DGF), open for InnerSourcing across the government. The Compliance Framework automates DevSecOps practices across pipelines, aligned with ICT&SS Management policies and IM8 DevSecOps guidelines.
Pipeline Security Tooling
SHIP-HATS integrates a range of security tools across the pipeline to help teams identify and address vulnerabilities early. SonarQube checks code quality and security during development. Nexus IQ scans dependencies and components for known vulnerabilities and licensing risks during the build. FOD provides static and dynamic application security testing (SAST/DAST) to catch issues before release. Supply-chain Levels for Software Artifacts (SLSA), an add-on component, protects against supply chain attacks by securing the integrity of the build process.
InnerSource
The InnerSource Group in SHIP-HATS provides government officers with a community for learning, sharing of knowledge, and discussion. It is open for all public officers to contribute, view and adopt common code. Learn more here.
Roadmap
For latest roadmap, refer to the SHIP-HATS Roadmap documentation.
Last updated 12 Jun 2026
Thanks for letting us know that this page is useful for you!
If you've got a moment, please tell us what we did right so that we can do more of it.
Did this page help you? - No
Thanks for letting us know that this page still needs work to be done.
If you've got a moment, please tell us how we can make this page better.
A CI/CD Component That Speeds Up CI Setup, Testing and Delivery