mancitrus/system-prompts-and-models-of-ai-tools
1
0
Fork 0
mirror of https://github.com/x1xhlol/system-prompts-and-models-of-ai-tools.git synced 2026-06-17 23:09:35 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
f931dffa58
system-prompts-and-models-o.../docs/enterprise-readiness.md
Sami Assiri 1ceeea9004 feat(tier1): finalize production activation and revenue execution pack 
Complete Tier-1 closure follow-through by wiring docs governance gates, RC release readiness checks, source-of-truth enforcement, executive weekly contract surface, and go-live severity notes.
Add full go-live revenue execution documentation set (production activation, real production playbook, trust expansion, first 3 clients, live deployment, and automated revenue engine) and register all canonical paths.

Made-with: Cursor
2026-04-17 14:13:57 +03:00

74 lines
6.8 KiB
Markdown
Raw Blame History

This file contains ambiguous Unicode characters

This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

# Enterprise readiness — Dealix Sovereign OS
This checklist helps **internal teams** prepare for **B2B / enterprise** conversations and deployments. It is not a substitute for customer-specific due diligence, legal review, or penetration testing.
## 1. Read in order (governance spine)
1. [`MASTER_OPERATING_PROMPT.md`](../MASTER_OPERATING_PROMPT.md) — constitution and TOC.
2. [`dealix-six-tracks.md`](dealix-six-tracks.md) — six product lanes and honest **Implemented / Partial / Planned** status.
3. [`governance/approval-policy.md`](governance/approval-policy.md) — A/R/S and Class A/B/C.
4. [`governance/trust-fabric.md`](governance/trust-fabric.md) — trust substrate and tool verification.
5. [`governance/saudi-compliance-and-ai-governance.md`](governance/saudi-compliance-and-ai-governance.md) — PDPL / NCA readiness register and AI governance frames.
6. [`governance/github-and-release.md`](governance/github-and-release.md) — branch protection, environments, OIDC, audit retention.
7. [`execution-matrix-90d-tier1.md`](execution-matrix-90d-tier1.md) — Phase 01 measurable outcomes.
8. [`completion-program-workstreams.md`](completion-program-workstreams.md) — eight workstreams from constitution to production.
9. [`architecture-register.md`](architecture-register.md) — subsystem status snapshot.
10. [`TIER1_MASTER_CLOSURE_CHECKLIST_AR.md`](TIER1_MASTER_CLOSURE_CHECKLIST_AR.md) — إغلاق Tier-1 (عربي) + [`salesflow-saas/docs/tier1-master-closure-checklist.md`](../salesflow-saas/docs/tier1-master-closure-checklist.md) (50 بندًا).
11. [`SOURCE_OF_TRUTH_INDEX.md`](SOURCE_OF_TRUTH_INDEX.md) — مصدر واحد لكل موضوع (تقليل drift بين `docs/` و`salesflow-saas/docs/`).
12. [`RELEASE_READINESS_MATRIX_AR.md`](RELEASE_READINESS_MATRIX_AR.md) — صف لكل RC: docs truth، موصلات، أمان، سعودي، provenance.
13. [`governance/pdpl-nca-ai-control-matrices.md`](governance/pdpl-nca-ai-control-matrices.md) — **بوابة إصدار enterprise:** اتبع قسم «Enterprise release gate» قبل وسم الإصدار.
## 2. Product and legal surface
- Review customer-facing and internal policies under [`salesflow-saas/docs/legal/`](../salesflow-saas/docs/legal/) (consent, privacy, data protection, PDPL-oriented copy where present).
- Align marketing claims with **evidence**: tests, `verify-launch`, and run artifacts — see [`governance/discovery-and-output-checklist.md`](governance/discovery-and-output-checklist.md).
## 3. Technical evidence before “production-ready” claims
| Gate | Command / artifact |
|------|---------------------|
| Backend regression | `cd salesflow-saas/backend && pytest -v --tb=short` |
| Launch / hardening script | `salesflow-saas/verify-launch.ps1` (extend flags per [`salesflow-saas/docs/LAUNCH_CHECKLIST.md`](../salesflow-saas/docs/LAUNCH_CHECKLIST.md)) |
| Architecture traceability | [`blueprint-master-architecture.md`](blueprint-master-architecture.md) + [`Architecture_Pack.md`](../Architecture_Pack.md) + [`Execution_Matrix.md`](../Execution_Matrix.md) |
## 4. What not to promise yet
Until ADR [`adr/0001-tier1-execution-policy-spikes.md`](adr/0001-tier1-execution-policy-spikes.md) exit criteria are met, do **not** represent the following as fully shipped production standards:
- Temporal (or equivalent) as the **sole** system of record for all long workflows.
- OPA / OpenFGA / Vault / Keycloak as **in-path** dependencies without integration tests and security sign-off.
Use [`governance/technology-radar-tier1.md`](governance/technology-radar-tier1.md) for **official vs optional vs pilot** language.
## 5. Security and procurement FAQs (internal)
- **Data residency and subprocessors:** document actual regions and vendors; update when adding LLM or SaaS connectors.
- **RBAC and tenancy:** confirm `tenant_id` isolation and admin boundaries in code review for every net-new API.
- **Audit logs:** retention, export, and SIEM streaming per customer tier — see notes in [`governance/github-and-release.md`](governance/github-and-release.md).
## 6. Continuous improvement
Revisit this file after each major release or enterprise pilot; update [`dealix-six-tracks.md`](dealix-six-tracks.md) status table when capabilities move from Partial to Verified.
## 7. Maintainer sync
`scripts/architecture_brief.py` includes this path in `CONSTITUTION_PATHS` (بما فيها [`FINAL_TIER1_CLOSURE_PROGRAM_AR.md`](FINAL_TIER1_CLOSURE_PROGRAM_AR.md))؛ `.claude/settings.json` references it in `projectInstructions` for Claude Code. Update both when adding new enterprise-facing governance files.
## 8. Tier-1 complete (Definition of Done — operational)
Use this as the **release bar** alongside [`RELEASE_READINESS_MATRIX_AR.md`](RELEASE_READINESS_MATRIX_AR.md) and [`TIER1_MASTER_CLOSURE_CHECKLIST_AR.md`](TIER1_MASTER_CLOSURE_CHECKLIST_AR.md) §16.
| Gate | Evidence |
|------|----------|
| Source of truth | [`SOURCE_OF_TRUTH_INDEX.md`](SOURCE_OF_TRUTH_INDEX.md) — owners and review cadence filled for critical topics |
| RC row | [`RELEASE_READINESS_MATRIX_AR.md`](RELEASE_READINESS_MATRIX_AR.md) — one completed row per enterprise candidate |
| Docs CI | GitHub Actions workflow **`Docs governance`**: `architecture_brief`, `check_docs_links`, `check_no_overclaim`, `check_release_readiness_matrix`, `check_source_of_truth_index` |
| RC strict row (optional) | Workflow **`Release readiness RC row gate`**: runs `RELEASE_MATRIX_RC_ROW_REQUIRED=1` when the PR label is `release-candidate` or the PR changes `docs/RELEASE_READINESS_MATRIX_AR.md` — see [`governance/github-and-release.md`](governance/github-and-release.md) |
| Backend CI | **`Dealix CI`**: pytest, OpenAPI path verify, `check_no_overclaim`, `check_release_readiness_matrix`, **`check_go_live_gate` with `DEALIX_CI_FAIL_ON_GO_LIVE=1`** |
| Runtime Class B | `POST /api/v1/approval-center/validate-class-b-bundle` + bundle validation on approve/reject when `decision_bundle` is supplied |
| Golden path | [`golden-path-partner-intake-runbook.md`](golden-path-partner-intake-runbook.md) + `test_tier1_golden_path_partner` |
| Saudi sensitive path | Proposal `send` with `external_company_contacts` requires `pdpl_processing_class` + `owasp_surface_ref` (422 otherwise) |
| Severity V3 / critical contradictions | `POST /api/v1/contradictions` requires `evidence` when severity is `critical` or `V3` |
| No open V3 | Operational rule: no enterprise RC with unresolved **V3** per [`governance/operational-severity-model.md`](governance/operational-severity-model.md) |
| Revenue go-live (commercial) | [`GO_LIVE_REVENUE_ACTIVATION_SYSTEM_AR.md`](GO_LIVE_REVENUE_ACTIVATION_SYSTEM_AR.md) + [`FIRST_THREE_CLIENTS_PLAN_AR.md`](FIRST_THREE_CLIENTS_PLAN_AR.md) + [`LIVE_DEPLOYMENT_GUIDE_AR.md`](LIVE_DEPLOYMENT_GUIDE_AR.md) — pilot scope, deploy, and handoff evidence |
Reference in New Issue View Git Blame Copy Permalink