docs(dev): add sofiia-console v1 technical release announcement
Made-with: Cursor
This commit is contained in:
Apple
71
docs/release/sofiia-console-v1-announcement.md
Normal file
71
docs/release/sofiia-console-v1-announcement.md
Normal file
@@ -0,0 +1,71 @@
|
|||||||
|
# Sofiia Console v1.0 — Technical Release Announcement
|
||||||
|
|
||||||
|
Sofiia Console v1 переходить у production-controlled стан: релізний процес відтворюваний, операційні перевірки формалізовані, ключові ризики закриті технічними контролями.
|
||||||
|
|
||||||
|
## 1) Scope of This Release
|
||||||
|
|
||||||
|
- Redis-backed idempotent send (multi-instance safe).
|
||||||
|
- Per-chat and per-operator rate limiting.
|
||||||
|
- Structured audit trail (write + query endpoint).
|
||||||
|
- Strict authentication for `/api/audit`.
|
||||||
|
- Cursor pagination hardening (tie-breaker safe).
|
||||||
|
- Structured JSON logging.
|
||||||
|
- `/metrics` endpoint for operational visibility.
|
||||||
|
- Audit retention (default 90 days) + pruning script.
|
||||||
|
- Preflight checks + release runbook + release evidence generator.
|
||||||
|
|
||||||
|
## 2) New Guarantees (What is now true)
|
||||||
|
|
||||||
|
### Reliability
|
||||||
|
|
||||||
|
- Duplicate `send` requests are safe across instances.
|
||||||
|
- Pagination remains stable even with identical timestamps.
|
||||||
|
- Multi-node routing is verified by E2E tests.
|
||||||
|
|
||||||
|
### Security
|
||||||
|
|
||||||
|
- `/api/audit` requires explicit API key (no localhost bypass).
|
||||||
|
- Rate limits are enforced both per chat and per operator.
|
||||||
|
- Operator actions are captured in structured audit trail.
|
||||||
|
|
||||||
|
### Operational Control
|
||||||
|
|
||||||
|
- Release process is reproducible via runbook and scripts.
|
||||||
|
- Preflight checks catch key misconfigurations before deploy.
|
||||||
|
- Audit DB growth is controlled through retention + pruning.
|
||||||
|
|
||||||
|
## 3) What Changes for Operators
|
||||||
|
|
||||||
|
- `/api/audit` now requires API key even on localhost.
|
||||||
|
- Excessive sends may return `429 rate_limited`.
|
||||||
|
- Audit trail is queryable for incident investigations.
|
||||||
|
- Retention pruning should be scheduled (cron recommended).
|
||||||
|
|
||||||
|
## 4) Known Limitations
|
||||||
|
|
||||||
|
- Chat index remains local (not Redis-backed yet).
|
||||||
|
- Rate-limit backend defaults to inmemory unless Redis is enabled.
|
||||||
|
- No automatic alerting dashboards yet (manual metric review required).
|
||||||
|
- Audit DB is SQLite (single-node storage model).
|
||||||
|
|
||||||
|
## 5) Release-Day Expectations (On-Call)
|
||||||
|
|
||||||
|
During first release window:
|
||||||
|
|
||||||
|
- Run preflight with strict mode:
|
||||||
|
- `STRICT=1 bash ops/preflight_sofiia_console.sh`
|
||||||
|
- Execute full smoke:
|
||||||
|
- health and metrics checks
|
||||||
|
- Redis idempotency A/B smoke
|
||||||
|
- Verify:
|
||||||
|
- audit write and read paths
|
||||||
|
- rate-limit counters increment as expected
|
||||||
|
- Monitor first 5-10 minutes for:
|
||||||
|
- 5xx error spikes
|
||||||
|
- unexpected rate-limit spikes
|
||||||
|
- replay spikes
|
||||||
|
|
||||||
|
Rollback procedure:
|
||||||
|
- `docs/runbook/release-runbook-sofiia-console.md`
|
||||||
|
|
||||||
|
> Sofiia Console v1 is production-controlled and operationally reproducible.
|
||||||
Reference in New Issue
Block a user