# Go / No-Go Decision Sheet - Zavvion Events Commercial Lite

## Current Recommendation

**Recommendation:** Conditional handover to human architect.  
**Commercial paid launch:** No-go until mandatory evidence below is supplied.  
**Staging/manual testing:** Go after environment setup and migrations.

## Decision Matrix

| Area | Status | Evidence required before commercial launch |
|---|---|---|
| Local demo | Go | Existing local checks and human review |
| Staging deployment | Conditional | Production-like `.env`, migrations, HTTPS, logs, backups |
| Public beta | Conditional | P0 human test pass, no critical/high open defects |
| Real paid events | No-go now | Stripe signed webhook checkout, connected account readiness, ledger/ticket/QR proof |
| Media upload | Conditional | GD active in web runtime and ClamAV/equivalent scanning |
| Mobile/tablet | Conditional | Real device evidence on deployed server |
| Security/roles | Conditional | Human/security retest of role boundaries and IDOR scenarios |

## Mandatory Launch Gates

- [ ] `APP_ENV=production` and `APP_DEBUG=false` on deployed server.
- [ ] Production secrets generated and stored outside Git.
- [ ] Stripe test keys configured.
- [ ] Stripe webhook signing secret configured.
- [ ] Connected organiser account ready.
- [ ] Signed webhook test proves order -> ticket -> QR -> ledger.
- [ ] Public checkout cash/counter methods blocked.
- [ ] Composer audit rerun on normal network.
- [ ] PHP GD active in Apache/PHP web runtime.
- [ ] ClamAV or approved equivalent scanning configured.
- [ ] Human tester P0 matrix passed.
- [ ] Real phone/tablet booking and organiser tests passed.
- [ ] Public role-review/showcase routes either removed, protected, or confirmed local-only before production.

## Architect Sign-Off

- Architect name:
- Date:
- Decision: Go / Conditional / No-go
- Accepted risks:
- Required fixes before launch: