From 52c2d7b7adc61474427ecf2d8a824a962c8e7ced Mon Sep 17 00:00:00 2001
From: Daniel Meppiel <51440732+danielmeppiel@users.noreply.github.com>
Date: Tue, 5 May 2026 15:01:44 +0200
Subject: [PATCH] docs: update ci-policy-setup for drift detection default-on
 (PR #1137)

- Correct check count from 6 to 7 baseline lockfile checks
- Mention integration drift detection as default-on behavior
- Link to Drift Detection guide for details

Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
---
 docs/src/content/docs/guides/ci-policy-setup.md | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/docs/src/content/docs/guides/ci-policy-setup.md b/docs/src/content/docs/guides/ci-policy-setup.md
index 18f7b841d..88da84e3f 100644
--- a/docs/src/content/docs/guides/ci-policy-setup.md
+++ b/docs/src/content/docs/guides/ci-policy-setup.md
@@ -50,7 +50,7 @@ Commit this to the default branch of `your-org/.github`.
 
 ## Step 2: Add baseline CI checks
 
-Add `apm audit --ci` to your CI pipeline. This runs 6 lockfile consistency checks — no policy file needed:
+Add `apm audit --ci` to your CI pipeline. This runs 7 baseline lockfile checks plus integration drift detection — no policy file needed:
 
 ```yaml
 # .github/workflows/apm-policy.yml
@@ -80,7 +80,7 @@ jobs:
         run: apm audit --ci
 ```
 
-This catches lockfile/manifest drift, missing files, and hidden Unicode — without any policy configuration.
+This catches lockfile/manifest drift, missing files, hidden Unicode, and integration drift (forgot to re-run `apm install`, hand-edits to deployed files, orphaned files) — without any policy configuration. See the [Drift Detection guide](../drift-detection/) for details.
 
 ## Step 3: Enable policy enforcement