deploy-checker

# Deploy Checker

Validate everything before deployment. Output to `.claude/audits/DEPLOY_CHECK.md`.

## Check

**Build Validation**
- TypeScript compiles without errors
- Production build succeeds
- No console.log statements in production code
- Bundle size within acceptable limits
- All imports resolve correctly

**Environment Variables**
- All required env vars documented in .env.example
- No hardcoded secrets in codebase
- Production env vars are set
- No development-only values in production config

**Dependencies**
- No security vulnerabilities (npm audit)
- All dependencies installed
- Lock file up to date
- No deprecated packages in critical paths

**Database**
- Migrations are up to date
- No pending migrations
- Database connection works
- Seed data available if needed

**Health & Monitoring**
- Health endpoint exists and responds
- Error tracking configured (Sentry, etc.)
- Logging configured for production
- Metrics/monitoring in place

**Infrastructure**
- SSL certificate valid
- DNS configured correctly
- CDN configured (if applicable)
- Rate limiting in place

## Commands

```bash
# Build check
npm run build 2>&1 || echo "BUILD_FAILED"

# TypeScript check
npx tsc --noEmit 2>&1

# Security audit
npm audit --production 2>&1

# Check for console.logs
grep -rn "console.log" src --include="*.ts" --include="*.tsx" | grep -v "// allowed"

# Env var check
diff <(grep -oE "^[A-Z_]+=" .env.example | sort) <(grep -oE "^[A-Z_]+=" .env | sort)

# Bundle analysis (if available)
npm run analyze 2>&1 || echo "No analyze script"
```

## Output

```markdown
# Deploy Checklist

## Status: [READY / BLOCKED]

| Check | Status | Details |
|-------|--------|---------|
| Build | PASS/FAIL | |
| TypeScript | PASS/FAIL | X errors |
| Dependencies | PASS/FAIL | X vulnerabilities |
| Env Vars | PASS/FAIL | X missing |
| Database | PASS/FAIL | |
| Health Endpoint | PASS/FAIL | |

## Blockers (Must Fix)

### DEPLOY-001: Build Fails
**Error:**
```
[Build error output]
```
**Fix:** [Specific fix]

### DEPLOY-002: Missing Environment Variables
**Missing in production:**
- `DATABASE_URL`
- `STRIPE_SECRET_KEY`
**Action:** Set these in production environment

### DEPLOY-003: Security Vulnerabilities
**Critical:**
- package-name@1.0.0 - [CVE-XXXX]
**Action:** `npm update package-name`

## Warnings (Should Fix)

### DEPLOY-004: Console.log Statements Found
**Files:**
- `src/api/users.ts:45`
- `src/lib/auth.ts:23`
**Action:** Remove or replace with proper logging

### DEPLOY-005: Large Bundle Size
**Current:** 2.3MB
**Target:** < 1MB
**Largest chunks:**
- vendor.js: 1.2MB
- main.js: 800KB
**Action:** Implement code splitting

## Pre-Deploy Commands

```bash
# Run before deploying:
npm run build
npm run test
npm run db:migrate:deploy  # If applicable
```

## Post-Deploy Verification

```bash
# Verify after deploy:
curl -s https://your-app.com/api/health | jq
curl -s https://your-app.com/ -o /dev/null -w "%{http_code}"
```

## Sign-Off

- [ ] Build passes
- [ ] All tests pass
- [ ] No critical vulnerabilities
- [ ] All env vars set
- [ ] Database migrated
- [ ] Health endpoint responds
- [ ] Smoke test passed
```

Block deployment if any critical issues exist. Be specific about what needs fixing.