Launch Preparation Workflow
Pre-launch checklist and deployment workflow covering testing, security, deployment, and monitoring phases
The Launch Preparation workflow provides a comprehensive pre-launch checklist and systematic deployment process, ensuring your application is production-ready across quality, security, and operational dimensions.
Overview#
| Property | Value |
|---|---|
| Phases | 4 |
| Tier | Free |
| Typical Duration | 5-7 days |
| Best For | Initial launches, major releases, production deployments |
Outcomes#
A successful launch preparation results in:
- Launch readiness validated across quality, security, and ops
- Release checklist complete
- Monitoring configured and alerting active
- Rollback plan confirmed and tested
Phases#
Phase 1: Testing (2-3 days)#
Agents: testing-expert, performance-expert
Comprehensive testing to ensure application quality and performance meet launch requirements.
Tasks:
- Run full test suite (unit, integration, e2e)
- Verify test coverage meets thresholds
- Perform load testing for expected traffic
- Test critical user journeys end-to-end
- Validate mobile and cross-browser compatibility
- Review and fix accessibility issues
Testing Checklist:
┌────────────────────────────────────────────────────────────┐
│ Testing Categories │
├─────────────────┬──────────────────────────────────────────┤
│ Unit Tests │ [ ] All passing │
│ │ [ ] Coverage > 80% │
├─────────────────┼──────────────────────────────────────────┤
│ Integration │ [ ] API tests passing │
│ │ [ ] Database tests passing │
├─────────────────┼──────────────────────────────────────────┤
│ E2E Tests │ [ ] Critical paths covered │
│ │ [ ] Authentication flows tested │
│ │ [ ] Payment flows tested │
├─────────────────┼──────────────────────────────────────────┤
│ Performance │ [ ] Load test completed │
│ │ [ ] P95 latency acceptable │
│ │ [ ] No memory leaks detected │
├─────────────────┼──────────────────────────────────────────┤
│ Compatibility │ [ ] Chrome, Firefox, Safari tested │
│ │ [ ] Mobile responsive verified │
│ │ [ ] Accessibility audit passed │
└─────────────────┴──────────────────────────────────────────┘
Testing Commands:
1# Run full test suite
2npm run test
3
4# Run e2e tests
5npm run test:e2e
6
7# Check coverage
8npm run test:coverage
9
10# Run load tests
11npx artillery run load-test.yml
12
13# Accessibility audit
14npx pa11y-ciPhase 2: Security (1-2 days)#
Agents: security-expert
Final security review to ensure the application is protected against common vulnerabilities.
Tasks:
- Run security vulnerability scan
- Verify authentication and authorization
- Check for exposed secrets or credentials
- Review security headers configuration
- Test rate limiting and abuse prevention
- Validate input sanitization
Security Checklist:
1## Authentication & Authorization
2- [ ] Strong password requirements enforced
3- [ ] Session management secure
4- [ ] CSRF protection enabled
5- [ ] OAuth flows secure (if applicable)
6- [ ] API authentication working
7
8## Data Protection
9- [ ] Sensitive data encrypted
10- [ ] PII properly handled
11- [ ] HTTPS enforced everywhere
12- [ ] Secure cookies configured
13
14## Infrastructure
15- [ ] Security headers configured
16- [ ] Rate limiting active
17- [ ] No exposed debug endpoints
18- [ ] Environment variables secure
19- [ ] No secrets in code/logs
20
21## Compliance
22- [ ] Privacy policy in place
23- [ ] Terms of service published
24- [ ] Cookie consent implemented (if needed)
25- [ ] GDPR compliance verified (if applicable)Security Scan Commands:
1# Dependency vulnerabilities
2npm audit
3npx snyk test
4
5# Secret scanning
6npx secretlint "**/*"
7
8# OWASP check
9npx owasp-dependency-check --project myapp --scan .Phase 3: Deployment (1 day)#
Agents: devops-expert, vercel-expert
Execute the production deployment with proper staging validation.
Tasks:
- Deploy to staging environment
- Verify staging deployment works correctly
- Execute production deployment
- Verify DNS and SSL configuration
- Test production environment
- Document deployment configuration
Deployment Checklist:
Pre-Deployment
━━━━━━━━━━━━━━
[ ] All tests passing in CI
[ ] Code review approved
[ ] Staging deployment verified
[ ] Database migrations ready
[ ] Environment variables configured
[ ] Rollback procedure documented
Deployment
━━━━━━━━━━
[ ] Create production build
[ ] Deploy to production
[ ] Run database migrations
[ ] Verify health checks
[ ] Test critical paths
Post-Deployment
━━━━━━━━━━━━━━━
[ ] Verify all services healthy
[ ] Check error rates
[ ] Monitor performance metrics
[ ] Notify team of successful deploy
Deployment Commands (Vercel):
1# Preview deployment (staging)
2vercel
3
4# Production deployment
5vercel --prod
6
7# Check deployment status
8vercel ls
9
10# Rollback if needed
11vercel rollbackDeployment Commands (Manual):
1# Build application
2npm run build
3
4# Run database migrations
5npx prisma migrate deploy
6
7# Start production server
8npm run start
9
10# Health check
11curl https://your-app.com/api/healthPhase 4: Monitoring (1 day)#
Agents: devops-expert, performance-expert
Set up comprehensive monitoring and alerting for production operations.
Tasks:
- Configure application monitoring (APM)
- Set up error tracking and alerting
- Configure uptime monitoring
- Create performance dashboards
- Set up log aggregation
- Document runbooks for common issues
Monitoring Architecture:
┌─────────────────────────────────────────────────────────────┐
│ Monitoring Stack │
├──────────────┬──────────────────────────────────────────────┤
│ APM │ Sentry, Datadog, New Relic │
├──────────────┼──────────────────────────────────────────────┤
│ Uptime │ Better Uptime, Pingdom, UptimeRobot │
├──────────────┼──────────────────────────────────────────────┤
│ Logs │ Vercel Logs, Datadog, Papertrail │
├──────────────┼──────────────────────────────────────────────┤
│ Analytics │ Vercel Analytics, PostHog, Mixpanel │
├──────────────┼──────────────────────────────────────────────┤
│ Alerts │ PagerDuty, Opsgenie, Slack │
└──────────────┴──────────────────────────────────────────────┘
Monitoring Setup:
1// sentry.client.config.ts
2import * as Sentry from '@sentry/nextjs';
3
4Sentry.init({
5 dsn: process.env.NEXT_PUBLIC_SENTRY_DSN,
6 tracesSampleRate: 1.0,
7 replaysSessionSampleRate: 0.1,
8 replaysOnErrorSampleRate: 1.0,
9 integrations: [
10 Sentry.replayIntegration(),
11 ],
12});Health Check Endpoint:
1// app/api/health/route.ts
2import { prisma } from '@/lib/prisma';
3import { NextResponse } from 'next/server';
4
5export async function GET() {
6 try {
7 // Check database connection
8 await prisma.$queryRaw`SELECT 1`;
9
10 return NextResponse.json({
11 status: 'healthy',
12 timestamp: new Date().toISOString(),
13 version: process.env.VERCEL_GIT_COMMIT_SHA || 'unknown',
14 checks: {
15 database: 'ok',
16 }
17 });
18 } catch (error) {
19 return NextResponse.json({
20 status: 'unhealthy',
21 timestamp: new Date().toISOString(),
22 error: 'Database connection failed'
23 }, { status: 503 });
24 }
25}Alert Configuration:
1# Example alerting rules
2alerts:
3 - name: High Error Rate
4 condition: error_rate > 5%
5 window: 5 minutes
6 severity: critical
7 notify: [pagerduty, slack]
8
9 - name: Slow Response Time
10 condition: p95_latency > 2000ms
11 window: 5 minutes
12 severity: warning
13 notify: [slack]
14
15 - name: Service Down
16 condition: uptime_check == failed
17 window: 1 minute
18 severity: critical
19 notify: [pagerduty, slack, email]Starting the Workflow#
1# Start the workflow
2bootspring workflow start launch-preparation
3
4# Check current status
5bootspring workflow status
6
7# Advance to next phase
8bootspring workflow next
9
10# Mark a checkpoint complete
11bootspring workflow checkpoint "Release checklist complete"Completion Signals#
Track progress with these checkpoints:
- Release checklist complete - All pre-launch items verified
- Monitoring configured - Alerting and dashboards active
- Rollback plan confirmed - Rollback procedure tested and documented
Launch Day Checklist#
1## 2 Hours Before Launch
2- [ ] Final staging verification complete
3- [ ] Team members available and on standby
4- [ ] Communication channels ready (Slack, etc.)
5- [ ] Rollback procedure reviewed
6- [ ] Monitoring dashboards open
7
8## Launch Execution
9- [ ] Deploy to production
10- [ ] Verify health checks pass
11- [ ] Test critical user journeys
12- [ ] Check error rates in monitoring
13- [ ] Verify analytics tracking
14
15## Post-Launch (First Hour)
16- [ ] Monitor error rates
17- [ ] Check performance metrics
18- [ ] Respond to any issues
19- [ ] Update status page if needed
20- [ ] Notify stakeholders of successful launch
21
22## Post-Launch (First Day)
23- [ ] Review all monitoring data
24- [ ] Address any reported issues
25- [ ] Document lessons learned
26- [ ] Plan any quick fixes needed
27- [ ] Celebrate with team!Rollback Procedure#
1# Vercel rollback (immediate)
2vercel rollback
3
4# Or specify a deployment
5vercel rollback [deployment-url]
6
7# Database rollback (if needed)
8# Restore from backup taken before migration
9pg_restore -d database_name backup_pre_launch.dumpTips for Success#
- Freeze features early - Stop adding features before launch
- Test in production-like environment - Use staging that mirrors prod
- Have a rollback plan - Know exactly how to revert if needed
- Communicate proactively - Keep stakeholders informed
- Monitor closely post-launch - Watch metrics for the first 24-48 hours