CI/CD regression plan

Required Gates

Pull Request Gate

• Repository contract checks.
• Shell syntax checks for repo-owned scripts.
• Documentation site contract checks.
• Generated Docker stack smoke test with Postgres-backed login redirect.
• Future C format, compile, unit, sanitizer, and integration checks.

Main Branch Gate

• The pull request gate.
• Documentation deployment to GitHub Pages.
• Future release candidate smoke checks.

Regression Suites

• Repository contract: protects required files, docs, workflows, and product constraints.
• CLI scaffold: tests sealion new, sealion init, placeholder replacement, and empty-directory enforcement.
• C compile and ABI: protects public headers, examples, symbols, and release compatibility.
• Unit tests: protects router, request, response, middleware, config, and logging behavior.
• Sanitizers: exposes memory ownership, undefined behavior, and leaks.
• Postgres integration: tests readiness, pooling, migrations, transactions, and parameterized queries.
• Container and IaC: validates Compose generation, service separation, health checks, file-watch rebuilds for source and view files, external URL logs, auth redirects, and environment schemas.
• View templates: protects editable view/*.html files so generated apps do not require C string literals for page markup.
• CLI golden tests: protects scaffolding, deterministic generated files, and actionable command errors.
• Security regression: protects cookies, CSRF, upload limits, SQL parameterization, and secret handling.
• Documentation regression: keeps examples, links, and published docs aligned with framework behavior.

Implemented Now

bash -n scripts/*.sh bin/sealion install.sh
bash scripts/check_repo_contract.sh
bash scripts/test_cli_scaffold.sh
bash scripts/test_starter_docker_flow.sh

The source plan is maintained in docs/engineering/CI_CD_REGRESSION_TESTS.md.