Ready
9
Manufacturing / 184 employees
Buckeye Fabrication Co.
Production Readiness
Local verification, environment readiness, and publish blockers for the Working Partners foundation.
Local Mode
9
Blocked
0
Environment Checks
Local-first fallbacks are acceptable until production hosting is selected.
| Check | Status | Detail |
|---|---|---|
| Purpose gate | ready | PURPOSE.md governs sprint planning, roadmap classification, plugin decisions, and anti-goal review. |
| Surface audit | local | 9 local-ready and 16 persistence-ready surfaces inventoried; none are marked production-ready before tenant, auth, billing, and QA gates. |
| Tenant-scope coverage | local | 30 AppData collections are tenant-scoped; 2 root object(s) are explicitly exempt before production Clerk enforcement. |
| Audit coverage | ready | 30 required mutation workflows are tracked in the audit coverage matrix. |
| Route access rules | local | 24 route families are mapped to server-side permission expectations for future Clerk middleware. |
| Plugin registry | ready | 5 governed plugin manifest(s), 9 extension point(s), and 5 passing guardrail validation. |
| Seed validation | ready | Demo tenant has 4 employees, 4 clauses, 1 client profile(s), and 3 courses. |
| Local reset | ready | db:reset:local runs migrations, explicit seed, and seed validation for the Buckeye Fabrication demo workspace. |
| Database | local | DATABASE_URL is absent; app uses seeded local fallback data. |
| Membership | local | enterprise / manual |
| Stripe | local | Stripe keys are absent; checkout and portal actions explain local manual mode. |
| MatterPulse bridge | local | Bridge URL is absent; approved sends stay in local validation mode. |
| Sally AI provider | local | Sally is using deterministic cited retrieval; no OpenAI call is made. |
| Clerk Organizations | local | Clerk keys are absent; local role-selection portal remains active. |
| Policy sources | ready | 5 modeled templates available. |
| Clause database | ready | 4 reusable policy clauses available for assembly. |
| Policy assembly | ready | 1 client policy profile(s) available. |
| Sally guardrails | ready | 6 deterministic policy knowledge chunks available. |
Route Smoke Targets
Standard routes for local `localhost:3006` checks after each sprint.
| Route | Expected |
|---|---|
| / | HTTP 200 Public landing page |
| /login | HTTP 200 Login entry |
| /portal | HTTP 307 Role redirect |
| /dashboard | HTTP 200 Dashboard |
| /policy-center | HTTP 200 Policy Center |
| /policy-center/create | HTTP 200 Guided policy creation |
| /policy-center/acknowledgments | HTTP 200 Acknowledgment rollout |
| /policy-center/templates | HTTP 200 Policy templates |
| /policy-center/clauses | HTTP 200 Clause database |
| /policy-center/clauses/candidates | HTTP 200 Clause candidates |
| /policy-center/clauses/clause-purpose | HTTP 200 Clause detail |
| /policy-center/intake | HTTP 200 Client intake |
| /policy-center/drafts/draft-tpl-premier-policy-non-accom-oh-emp-buckeye-fabrication | HTTP 200 Policy draft detail |
| /policy-center/assemblies/assembly-profile-buckeye-oh-manufacturing | HTTP 200 Policy assembly workspace |
| /sally | HTTP 200 Sally Workforce |
| /sally/interactions/generated-activity-aware-summary | HTTP 200 Sally interaction detail |
| /supervisor-academy | HTTP 200 Supervisor Academy |
| /supervisor-academy/courses/course-reasonable-suspicion | HTTP 200 Course detail |
| /supervisor-academy/courses/course-reasonable-suspicion/learn | HTTP 200 Learner course view |
| /conversation-training | HTTP 200 Conversation training |
| /incident-center | HTTP 200 Incident Center |
| /assessments | HTTP 200 Assessments |
| /news | HTTP 200 News Watch |
| /faq | HTTP 200 Client FAQ |
| /policy-chat | HTTP 200 Policy Chat |
| /command-center | HTTP 200 Command Center |
| /compliance-calendar | HTTP 200 Compliance Calendar |
| /matterpulse-outbox | HTTP 200 MatterPulse Outbox |
| /billing | HTTP 200 Billing |
| /settings | HTTP 200 Settings |
| /readiness | HTTP 200 Readiness |
Local Demo Reset
Restore and validate the Buckeye Fabrication workspace before persistence-heavy QA.
Command
npm run db:reset:local
prisma migrate reset --force --skip-seed && npm run prisma:seed && npm run seed:validate
| Step | Reason |
|---|---|
| Confirm local Postgres is available | Reset only applies to the local Prisma database; seeded fallback remains available when Postgres is absent. |
| Reset migrations without implicit seed | `--skip-seed` makes the seed phase explicit and easier to audit. |
| Run the Buckeye Fabrication seed | The demo tenant must include employer, members, employees, policies, clauses, courses, incidents, assessments, requirements, Sally data, and outbox data. |
| Validate the seed shape | `npm run seed:validate` prevents local reset from finishing with an incomplete demo workspace. |
Release Gate
11 required checks across data, delivery, extension, integration, purpose, quality, runtime before each local commit.
| Area | Check | Command Or Evidence |
|---|---|---|
| purpose | Purpose Gate completed and roadmap classification recorded | PURPOSE.md plus docs/product-governance.md |
| quality | Unit and integration tests pass | npm test |
| quality | Lint passes | npm run lint |
| quality | Production build passes | npm run build |
| data | Prisma schema validates against local Postgres target | DATABASE_URL='postgresql://postgres:postgres@localhost:5432/working_partners' npx prisma validate |
| quality | No whitespace or patch hygiene issues | git diff --check |
| runtime | Dedicated local route surface responds on port 3006 | npm run smoke:3006 |
| integration | MatterPulse remains approved-outbox-only | No direct MatterPulse table writes; bridge sends approved items only |
| integration | Sally remains cited and guardrailed | Deterministic retrieval, citations, guardrail classification, proposed actions only |
| extension | Plugin manifests pass governance validation | validatePluginManifest requires tenant scope, audit logging, citations, human approval, and approved-outbox-only bridge behavior |
| delivery | Remote availability checked before push, PR, or merge | git remote -v |
Governance Coverage
6 required controls across ai_guardrail, extension, integration, local_recovery, purpose, release.
| Area | Control | Evidence |
|---|---|---|
| purpose | Purpose Test before roadmap and feature work | PURPOSE.md and docs/product-governance.md |
| release | Standard verification bundle before local commit | lib/releaseChecklist.ts |
| extension | Plugin manifests validate tenant scope, audit, citations, entitlements, and human approval | lib/pluginRegistry.ts |
| local recovery | Local demo reset explicitly seeds and validates Buckeye Fabrication | lib/localReset.ts and docs/local-reset.md |
| ai guardrail | Sally, FAQ, and Policy Chat outputs remain cited and guardrailed | lib/sally.ts and lib/faqPolicyChat.ts |
| integration | MatterPulse uses approved outbox only | docs/matterpulse-outbox-contract.md and lib/matterpulse.ts |
Plugin Governance
5 governed plugin manifest(s) across 9 extension point(s). Plugins extend the platform only through declared scopes and guardrails.
| Plugin | Status | Extension Points | Entitlements | Guardrail |
|---|---|---|---|---|
| Ohio Drug-Free Workplace Pack | internal | policy clause pack, training course pack, assessment template pack, sally retrieval provider | essentials, professional, enterprise | Human approval required |
| OSHA And DOT Regulatory Watch | planned | news source adapter, compliance source, command center signal, sally retrieval provider | professional, enterprise | Human approval required |
| Supervisor Conversation Coaching Pack | internal | training course pack, command center signal, sally retrieval provider | professional, enterprise | Human approval required |
| MatterPulse Approved Outbox Bridge | internal | matterpulse bridge adapter | enterprise | Human approval required |
| Launch Law Article-To-Implementation Adapter | planned | launch law adapter, policy clause pack, training course pack, command center signal | professional, enterprise | Human approval required |
- Tenant scope is mandatory for tenant-owned data.
- Mutation-heavy plugin work must create audit records.
- Sally, FAQ, chat, and retrieval outputs must cite source records.
- Action-producing plugins may create proposals only until a human approves.
- MatterPulse plugins may use approved outbox only and must not write directly to MatterPulse tables.
- Plugins must not provide legal advice, employment decisions, or discipline recommendations.
Surface Audit
9 local-ready and 16 persistence-ready surfaces are tracked before any production-ready label is used.
| Surface | Area | Readiness | Next Hardening Step |
|---|---|---|---|
| / | public | local ready | Add conversion analytics and production request-demo delivery. |
| /login | portal | local ready | Replace local selection with Clerk organization login when production keys are configured. |
| /portal | portal | local ready | Bind Clerk organization membership to employer member role records. |
| /dashboard | operations | persistence ready | Complete tenant isolation tests for all dashboard source drilldowns. |
| /policy-center | policy | persistence ready | Complete policy publish audit coverage and production role checks. |
| /policy-center/clauses | policy | persistence ready | Expand clause versioning and reviewer history for production approvals. |
| /policy-center/clauses/candidates | policy | persistence ready | Add no-orphan extraction checks and reviewer assignment controls. |
| /policy-center/intake | policy | persistence ready | Add profile history comparison and production tenant enforcement. |
| /policy-center/assemblies/[id] | policy | persistence ready | Complete publish blockers for all unresolved conflicts and restricted clauses. |
| /policy-center/acknowledgments | policy | persistence ready | Add employee-facing acknowledgment completion flow. |
| /supervisor-academy | training | persistence ready | Harden course publish authorization and certification issuance persistence. |
| /supervisor-academy/courses/[id]/learn | training | local ready | Move simulation into durable learner enrollment completion records. |
| /conversation-training | training | local ready | Persist scenario attempts and coaching feedback by learner. |
| /incident-center | operations | persistence ready | Complete incident timeline and MatterPulse proposal audit coverage. |
| /assessments | operations | persistence ready | Add saved in-progress assessment resume tests. |
| /compliance-calendar | operations | persistence ready | Complete production source-link coverage for every generated requirement type. |
| /sally | intelligence | persistence ready | Complete queue-level review controls and guardrail evaluation reporting. |
| /policy-chat | intelligence | persistence ready | Add ranked retrieval explainability and role-specific source scopes. |
| /faq | intelligence | persistence ready | Add approval workflow for published employer FAQ changes. |
| /news | intelligence | local ready | Add source refresh adapters disabled by default with provider review. |
| /command-center | operations | persistence ready | Complete owner/due-date edits and daily digest persistence. |
| /matterpulse-outbox | operations | persistence ready | Add retry policy and bridge response observability. |
| /billing | platform | local ready | Wire Stripe product IDs, checkout, portal, and webhook lifecycle in production mode. |
| /settings | platform | local ready | Add durable member, role, integration, and employer-profile management. |
| /readiness | platform | local ready | Persist last verification results and surface route health timestamps. |
Publish status
No origin remote configured; push, PR, and merge remain blocked locally.
Launch Checklist
Provider decisions remain deferred, but the local foundation now has a clear production path.
| Area | Next Step |
|---|---|
| Policy corpus | Run npm run policies:import-owned-corpus and review generated clauses. |
| Auth | Replace local role selection with Clerk organization selection when keys are configured. |
| Billing | Map Stripe products to Essentials, Professional, and Enterprise entitlements. |
| MatterPulse | Configure bridge URL/token and keep approved-outbox-only sending. |
| Deployment | Pick hosting after local Postgres, seed, and verification bundle remain green. |