Production Hardening and Promotion (Optional)

Cluster is bootstrapped and healthy (OpenShift GitOps and Agentic Argo CD reachable)

Vault is initialized, unsealed, and you exported ROOT_TOKEN and UNSEAL_KEY

Secrets have been hydrated into Vault (Agentic Argo CD showing healthy secret integration)

Your fork is configured with PAT and webhook to Argo CD

Tools installed: oc, vault, jq, envsubst, python3

Optional: If using MaaS, export the MODEL_* environment variables

Add observability (logs/metrics/traces), readiness/liveness/startup probes

Apply configuration policies and security posture (image signing, NetworkPolicies, Secrets)

Define promotion flows (dev→stage→prod), environment parity checks, and rollback strategy

Introduce safer rollouts (blue/green or canary), capacity planning, and autoscaling