Patrol

Platform

Everything you need to run customer environments

Patrol covers the full lifecycle — from defining a reusable service template to deploying, scanning and auditing what's actually running.

Service catalogue

Build a library of reusable service templates

The Catalogue is where you define the 'shapes' of infrastructure you deploy for customers — things like 'Core API', 'Payments Worker', or 'Reporting DB'. Each template has a typed parameter schema, a QA checklist, and deployment config describing exactly how Patrol triggers a deploy.

  • Typed parameter schemas (instance sizes, versions, secret references) become per-environment form fields
  • Templates are versioned conceptually — environments snapshot the template's config at creation time
  • Keep templates in draft until they're ready; only active templates appear when registering environments
Core API template instance_size db_version replicas acme — Development instance_size: t3.small acme — Staging instance_size: t3.medium acme — Production instance_size: m5.large

Environment management

Track every environment across every customer

Environments belong to a customer and move through a clear lifecycle — Development, Staging, QA, Pre-production, Production. Each one carries its provider, region, cloud account ID and deployment status, all in one list.

  • Register environments against active service templates with auto-filled provider and region
  • See deployment status, run history and QA progress for every environment at a glance
  • Notes and target dates keep delivery context attached to the environment record
Environments acme-payments-api Production Deployed acme-payments-worker Staging Deployed acme-reporting-db QA Queued globex-core-api Development Deployed

Deployment orchestration

Trigger deployments through any pipeline

Deploying an environment creates a deployment run, resolves any secret references, and dispatches to the configured adapter. Synchronous adapters report success immediately; asynchronous ones complete later via a callback — and the run status updates automatically either way.

  • Webhook, GitHub Actions, GitLab, Terraform Cloud, Ansible AWX, Azure DevOps and Vagrant adapters
  • Run history, status and logs/links visible from the environment's Deployments panel
  • Adjust deployment trigger settings or parameter values without editing the underlying template
Service template instance_size db_version secret ref Environment Production acme-payments-worker Deploy GitHub Actions running Terraform Cloud success Ansible AWX queued Webhook success

Secrets management

Credentials stay out of your templates and config

Patrol never stores raw secret values in template or environment configuration — only a reference to where the value actually lives. Secrets are resolved at deploy and scan time, scoped to your tenant.

  • Store encrypted credentials once in Settings → Secrets, then reference them by name
  • Supports environment variables, Vault paths, and AWS/GCP secret manager references
  • Resolved just-in-time by the deployment and scanning workers — never persisted in plain text
Database password Referenced at deploy/scan time — never stored raw { "manager" : "vault", "ref" : "acme/payments/db-password" }

Multi-tenancy

Built for teams running many customers at once

Every environment, template and cloud account is scoped to your organisation — with people, teams and QA workflows to match.

Organisations

Create your organisation during onboarding, or join an existing one with a join code and wait for admin approval.

Customers

Track status (Active, Suspended, Offboarding), support tier and default cloud provider/region per customer.

Teams

Group people into teams so QA tasks can be assigned to a team rather than chasing individuals.

QA Kanban boards

Every environment gets a QA board with configurable columns, so reviewers can work through checklist items visually.

See drift detection in action

Patrol's continuous scanning model turns 'what changed?' into a reviewable, auditable workflow.

How drift detection works Get started