Ai strategy for Software Engineering by martyn-fewtrell · Pull Request #321 · UKHO/docs

martyn-fewtrell · 2026-02-26T17:28:26Z

Initial draft of Software Engineering's AI Strategy Document

Introduces a comprehensive AI strategy for Software Engineering, detailing the adoption and governance of developer-facing AI tools (primarily GitHub Copilot). The document covers principles, objectives, use cases, capability development, governance, security, implementation roadmap, metrics, risk mitigation, and review processes to ensure responsible and secure AI adoption.

Refined language to emphasize platform controls over sandboxes for AI developer tools. Updated "Enabling Platform & Tooling" for consistency, removed redundant lines, and omitted outdated references to annexes and sandboxes. Edits improve clarity and align the strategy with current Copilot adoption practices.

snyk-io-eu · 2026-02-26T17:28:40Z

✅ Snyk checks have passed. No issues have been found so far.

Status	Scan Engine	Critical	High	Medium	Low	Total (0)
✅	Open Source Security	0	0	0	0	0 issues
✅	Licenses	0	0	0	0	0 issues

💻 Catch issues earlier using the plugins for VS Code, JetBrains IDEs, Visual Studio, and Eclipse.

elerivaliant

Content reads fine, could use some links to where we're doing some of the things we're saying we going to do later.

- Updated Code Generation Tools Policy reference to a relative Markdown link. - Clarified Copilot training requirements and added PluralSight as a resource. - Fixed typographical error in Phase 2 heading. - Standardized hyphens and replaced non-ASCII characters in Risks & Mitigations.

Changed the policy link in software-engineering-ai-strategy.md to explicitly include the .md file extension, ensuring correct navigation and compatibility with environments that require file extensions.

Expanded risk section to cover superficial review practices and emphasized detailed peer reviews for AI-assisted code. Added mitigation for erosion of core engineering skills, recommending deep-dive reviews and periodic non-AI coding exercises, especially for high-security teams.

Strengthen policy to require senior engineering oversight and stronger security review for CI/CD optimization and release automation, especially for initial CD design and infrastructure/networking changes. Update rationale to highlight the need for experienced engineer involvement in higher-risk release automation.

Updated policy wording to specify that "classified" refers to data above Official, reinforcing restrictions on AI tooling use unless explicitly authorized and within approved environments.

Updated the Code Generation Tools Policy to reinforce responsible AI use in software engineering. Emphasized value-driven adoption, safety, human accountability, reproducibility, and security/compliance. Highlighted traceability of AI-assisted code changes and the importance of maintaining high quality and governance standards.

…rategy

martyn-fewtrell added 2 commits February 19, 2026 17:24

Merge branch 'main' into ai-strategy

5ea3e41

elerivaliant reviewed Mar 13, 2026

View reviewed changes

Comment thread software-engineering/strategy/software-engineering-ai-strategy.md Outdated