# Deployment Checklist

This checklist converts the infrastructure-risk report into a concrete post-deploy gate. Do not treat the site as ready until these checks pass from an external network.

## 1. DNS and registration

- Registrar shows the domain as active and locked against unauthorized transfer.
- Authoritative nameservers are correct.
- `A` and optional `AAAA` records resolve globally.
- `www` either redirects cleanly or resolves intentionally.
- `CAA` records match the certificate authority in use.
- DNSSEC is either configured correctly or intentionally deferred.

## 2. Transport and headers

- `https://Runtime.MiRust.com/` returns HTTP 200 or the intended plain PHP front page.
- `https://Runtime.MiRust.com/` redirects to HTTPS.
- The certificate chain is valid.
- No mixed content is loaded.
- Security headers are present on front-end responses.

## 3. plain PHP content

- The homepage is no longer “Hello world!” or “Sample Page.”
- The seeded pages exist and have clean permalinks.
- Top navigation groups fit on desktop and wrap on smaller screens.
- The footer contains [Contact Mike Kappel](/contact-mike-kappel/).
- The contact page works without requiring external profile lookup.

## 4. Machine-readable routes

```bash
curl https://Runtime.MiRust.com/llms.txt
curl https://Runtime.MiRust.com/llms-full.txt
curl https://Runtime.MiRust.com/sitemap.xml
curl https://Runtime.MiRust.com/robots.txt
curl https://Runtime.MiRust.com/.uai/index.uai
curl https://Runtime.MiRust.com/.uai/docs-routing.uai
curl https://Runtime.MiRust.com/docs/index.md
curl https://Runtime.MiRust.com/docs/web-research/website-review-and-improvement-plan.md
curl https://Runtime.MiRust.com/.well-known/security.txt
```

## 5. Markdown negotiation

```bash
curl -H "Accept: text/markdown" https://Runtime.MiRust.com/project/
curl -H "Accept: text/markdown" https://Runtime.MiRust.com/site-infrastructure/
curl https://Runtime.MiRust.com/name-scope.md
```

Expected result: Markdown output with `Content-Type: text/markdown; charset=utf-8` and `Vary: Accept`.

## 6. Dependency policy

- No Bootstrap, Tailwind, Popper, jQuery front-end dependency, CDN CSS, CDN JavaScript, page builder, or framework hydration path is present.
- Core content renders server-side as HTML.
- Theme JavaScript is only small behavior around native dialog, navigation details, filtering, and copy buttons.

## 7. Claim boundary

- Homepage and metadata say TinyRustLM is current.
- Broad GGUF import remains roadmap language.
- Trained assistant quality remains unclaimed until eval evidence exists.
- Every major technical claim links to a page, `/docs` file, or `.uai` route.
