Open-core layer

CLI deploy plan dry-run

GitCaster now exposes gc deploy plan as a public-alpha local planning command. Builders can validate a local manifest and produce redacted evidence for review while runtime, custody, billing, native storage, native domain, rollback, and release claims stay blocked until proof exists.

CLI sourceManifest fixtureEvidence JSONStatus table

Public artifacts

These files let contributors inspect the command path without gaining managed runtime access.

public-alpha

CLI deploy command

Reads a local GitCaster deploy manifest and writes redacted plan evidence.

apps/cli/src/commands/deploy.ts

Manifest fixture

A local-only app release plan with stronger promotion gates blocked.

examples/deploy/local-deploy-manifest.example.json

Local evidence

Generated by the CLI command after manifest validation passes.

launch/evidence/cli-deploy-plan-local-dry-run.json

Strict checker

Verifies redaction, false production claims, blockers, and retired dependency markers.

scripts/cli/check-cli-deploy-plan-public-alpha.cjs

Public JSON

Website-readable summary for this public-alpha layer.

apps/web/public/gitcaster-cli-deploy-plan.json

Command flow

The command produces proof material, not runtime mutation.

dry-run

Read manifest

The CLI accepts a gitcaster.deploy-manifest.v1 file from the local workspace.

Validate safety

The deploy-manifest package rejects secret-like fields, non-local targets, and unsupported claims.

Write evidence

The CLI writes a redacted dry-run evidence file with explicit blockers for promotion.

Stop before runtime

No external infrastructure is touched by this public-alpha command.

Blocked gates

Each stronger capability still needs deterministic receipts before promotion.

blocked_external

Managed runtime

blocked_external

Needs deploy receipt, smoke proof, and rollback proof before any stronger label.

Native storage

blocked_external

Needs publish receipt, public read proof, and rollback proof.

Native domain

blocked_external

Needs registry receipt and browser smoke proof.

Custody

blocked_external

Needs signer reference and redacted custody receipt.

Billing

blocked_external

Needs subscription policy and abuse-control proof.

Release candidate

blocked_external

Needs audit, node health, runtime, storage, domain, and rollback evidence.

Verification command

The checker rebuilds CLI evidence, verifies claims remain false, and writes public proof JSON.

deterministic
pnpm run cli-deploy-plan:check