When doing a deploy to production, the branch name and commit ID used to get the environment, infrastructure and service from git experience needs to be validated. These resources must come from a release branch in GitHub, release branch is a protected branch ensuring 4 eyes principle and other controls. This information is also required for audit traceability

Using expressions in a pipeline, being able to obtain this information using:

similar thing for service.

Also require confirmation that the infrastructure yaml is always obtained from the same commit ID that the environment yaml was obtained from.