# Navi Release Gate V0.1

Date: 2026-05-04

## Current Decision

No-go for public production or app-store release.

Go for local foundation development and controlled internal demo only.

## Required Before Staging Beta

- Git repo of record is confirmed and all release files are tracked.
- `./bin/bootstrap.sh` passes from a clean checkout.
- CI runs Postgres, Redis, Prisma migrate deploy, seed, typecheck, lint, route audit, tests, and build.
- API uses Prisma migrations, not `db push`, for deployment.
- Dashboard route permissions deny unauthorized page content.
- Mobile auth uses server OTP verification and refresh-token rotation.
- Idempotency records persist across API restarts.
- Webhooks verify raw request body signatures and persist provider events.
- Website privacy and terms are reviewed or explicitly marked pre-legal internal-only.
- EAS build profiles are configured for mobile development, preview, and production.

## Required Before Public Launch

- Real payment provider is selected, configured, and tested in provider sandbox.
- Payment webhooks, refund controls, idempotency, and audit evidence are verified.
- Production secrets are stored in a managed secret system and rotated by owner.
- Monitoring, alerting, backup, and rollback runbooks are tested.
- App Store / Play Store metadata, privacy labels, screenshots, and review accounts are ready.
- Legal counsel approves privacy policy, terms, cancellation/refund policy, and partner agreements.

## Release Status Matrix

| Surface | Local demo | Staging beta | Public launch |
| --- | --- | --- | --- |
| API | Allowed with mock providers | Allowed after P0 gates | Blocked until real payment/security gates |
| Dashboard | Allowed for seeded roles | Allowed after route permission checks | Blocked until audit/PII/release gates |
| Website | Allowed | Allowed after SEO/legal review | Blocked until final legal copy |
| Mobile | Allowed in Expo/dev | Allowed after EAS preview build | Blocked until store/legal/payment readiness |