@Colin Thank you so much for the response .If I am using developer edition .Kindly let me know if its possible to suppress mandatory rules during a PR build? If so, can we get notified / have a report on this occurrence? .
The same goes for a CI/PR build. If access to those definitions is restricted and they cant change it then they cant bypass it.
If you are one of the unfortunate souls who have been tricked into using pipeline as code (usually a yaml file checked into the repo), then you are out of luck because they can do whatever they want - including removing or disabling unit testing, sonar checks, etc.
Security is a process not a product. There are ways to bypass most anything. You should be considering how to identify when someone willfully bypassed a protection and what should happen to them, and then making sure everyone understands the consequences.