Skip to main content
Guardrails ensure automations run securely and within defined boundaries. For general Ona guardrails (policies, SSO, audit logs), see Ona Guardrails.

Environment isolation

Each automation runs in an isolated environment with dedicated resources - no access to other automations or user environments. See Environments.

Command deny lists

Prevent automations from executing dangerous commands (sudo, rm -rf /, cloud CLIs). Blocked commands fail immediately. Configure at the organization level. See Command deny lists.

Audit logging

Every execution is logged - commands, file changes, PRs created, errors. Use for debugging and compliance. See Audit logs.

Concurrency limits

Control parallel execution to manage costs and prevent automations from running excessively.
LimitDefaultPurpose
Max concurrent10Actions running simultaneously
Max total100Total actions per automation run
StageConcurrentTotal
Initial test510
Team validation10100
Department rollout20200
Large-scale (1000+)Contact usCustom
Rule of thumb: Set concurrent to ~1/10 of total.

Queue behavior

When concurrent limit is reached, additional actions queue and start as others complete. When total limit is reached, the automation stops - increase limits and re-run to process remaining targets.

Next steps