Lifecycle work
How it's done today
With sdlc.works
Environmentsper-branch, per-PR
A ticket to the platform team; 1–3 days of waiting; a shared staging env everyone steps on.
Declared once per branch. Provisioned on PR open, reconciled on drift, destroyed on merge.
Certificates & secretsrotation, expiry, ownership
A spreadsheet of expiry dates, a calendar reminder, and an outage the year someone leaves.
Lifecycle policy as declaration. Rotated ahead of expiry, attested on rotation, alert only on failure.
Artifacts & registriesbuilds, images, retention
Registries filling with untagged images; nobody sure which build is actually in prod.
Every artifact witnessed — hash, source commit, deploy targets — with retention enforced, not hoped for.
Deploy & release recordswho, what, when, where
Reconstructed from CI logs and chat threads when something breaks or an auditor asks.
Append-only deployment ledger. One query answers "what is running where and since when."
Scheduled jobscrons, syncs, batch runs
Crontabs on boxes nobody logs into; overlapping runs discovered via duplicate invoices.
Schedules declared on the branch — overlap-guarded, monitored, with every run in the run ledger.
Third-party integrationsauth, webhooks, re-consent
Webhooks that silently stop firing; OAuth tokens that expire on a Friday.
Integration health as managed state. Re-auth surfaced before failure, not after the data gap.
Audit & compliance evidenceSOC 2, ISO 27001, customer DDQs
A senior engineer's quarter, annually, assembling screenshots.
Evidence is a byproduct. The attestation ledger exports the full trail in one afternoon.