-
Notifications
You must be signed in to change notification settings - Fork 0
Final Closeout Pilot Readiness Checklists
Huzefaaa2 edited this page Jun 28, 2026
·
1 revision
Use these checklists to decide whether a customer is ready to move from trial evaluation to a scoped CAVRA production pilot.
- Pilot repositories are named and owned.
- Protected branches and required checks are documented.
- AI coding agents, bot accounts, and CI runner identities are listed.
- MCP servers or local tools used by agents are listed.
- Block, warn, approval, and audit-only action classes are agreed.
- CI/CD platform and runner types are identified.
- CAVRA required-check placement is agreed.
- Evidence artifact upload location is agreed.
- Rollback or final closeout workflow to test is identified.
- Pilot failure behavior is agreed.
- Non-production SIEM, ITSM, ChatOps, GRC, or webhook route is available.
- Connector owners are identified.
- Connector delivery success criteria are documented.
- Redaction requirements are documented.
- Production connector credential handling is assigned to Enterprise, SaaS, or operator-owned systems.
- Identity provider is identified.
- Release manager, security architect, platform owner, and auditor groups are mapped.
- Approval permissions are scoped by repository or release workflow.
- Break-glass ownership and audit expectations are documented.
- Evidence retention window is documented.
- Legal hold expectations are documented.
- Retention exception owner is identified.
- Audit handoff destination is identified.
- Immutable archive requirement is documented.
| Rating | Meaning |
|---|---|
| Green | Ready for a scoped paid pilot. |
| Yellow | Pilot can start after named prerequisites are resolved. |
| Red | Discovery is incomplete or critical owners are missing. |
CAVRA Field Compass
Before the agent acts, CAVRA asks: who is acting, what will change, what policy applies, and what evidence will prove it?
Before the agent acts, CAVRA asks: who is acting, what will change, what policy applies, and what evidence will prove it?
| Start | Build | Operate | Assure |
|---|---|---|---|
| Quick Start | CLI | Enterprise Guide | AISPM |
| Reader Paths | Policy Syntax | Deployments | Evidence |
| Community | GUI | Troubleshooting | Conclusion |
Textbook home: Before the Agent Acts |
Development archive: development and testing artifacts |
Source repository: github.com/Huzefaaa2/cavra
- Foreword And Reader Paths
- Why CAVRA Exists
- Runtime Authority Model
- Architecture
- Editions
- Install And Deploy
- Community Guide
- Enterprise Guide
- CLI Reference
- GUI And Sandbox
- AISPM Guide
- Policy And Evidence
- Operations And Integrations
- Labs And Use Cases
- Appendices And FAQ
- Policy Language Reference
- Troubleshooting Playbook
- Conclusion