Skip to content
Process Artifact
Change
Change
Release Management

Gated release process from planning through deployment, with rollback contracts, staged rollouts, and post-release validation. No surprise deployments.

Cadence
Per-release (weekly to monthly)
Timebox
1–2 days per release
Difficulty
High
Last Validated
1/27/2026

Release Storyboard

Plan Frame

Scope, risks, rollback criteria, communication plan

Pro-Owner perspective: This document frames your systems as a technical estate — an asset to be stewarded, documented, and bequeathed. Treat these steps as craftsmanship: protect the continuity, auditability, and transferability of your digital legacy.

What it is

A multi-phase process for shipping software changes to production: Plan (scope, risks, rollback criteria), Stage (deploy to test/staging), Release (staged rollout to production), Verify (post-release validation), Rollback (revert if gates fail). Each phase has explicit go/no-go gates and documented rollback contracts.

The process enforces staged rollouts (canary → 10% traffic → 50% → 100%) to limit blast radius, with automated rollback triggers (error rate, latency, customer reports).

Why it matters

Big-bang releases ("deploy everything to everyone simultaneously") create big-bang incidents. Staged rollouts contain failures to small user cohorts, allow early detection of issues, and make rollbacks surgical (not catastrophic).

Without release management, you're gambling: "Ship and pray." With release management, you're testing: "Ship to 1%, verify, then expand."

How we do it

  1. Plan phase:
    • Scope: What's changing? User-facing vs backend-only?
    • Risk assessment: High-risk changes (auth, payments, data migrations) require extra gates.
    • Rollback criteria: Explicit thresholds for auto-rollback (error rate > 1%, latency > 2x baseline, customer complaints > 3).
    • Communication plan: Who needs to know? When? (Internal teams, customers, compliance).
  2. Stage phase:
    • Deploy to staging environment.
    • Run automated tests (unit, integration, E2E).
    • Manual QA for high-risk changes.
    • Load testing if performance-sensitive.
  3. Release phase (staged rollout):
    • Canary (1% traffic, 30 min): Deploy to single canary system. Monitor error rate, latency, logs. If clean, proceed.
    • 10% rollout (2 hours): Expand to 10% of traffic. Monitor same metrics. If clean, proceed.
    • 50% rollout (4 hours): Expand to 50%. Monitor. If clean, proceed.
    • 100% rollout: Full deployment. Continue monitoring for 24 hours.
  4. Verify phase:
    • Post-release checks: Key user flows working? No error spikes? Customer reports normal?
    • Validation dashboard: Release success metrics (uptime, error rate, perf).
  5. Rollback phase (if triggered):
    • Automatic rollback if gates fail (error rate threshold).
    • Manual rollback if validation fails.
    • Rollback log: What triggered rollback, how long to revert, post-rollback status.

What you receive

  • Release plan: Scope, risk, gates, rollback criteria, communication plan.
  • Staged rollout schedule: Canary → 10% → 50% → 100% with monitoring checkpoints.
  • Post-release validation: Metrics dashboard, customer feedback, incident correlation.
  • Rollback log: If rollback occurred, full timeline and root cause.
  • Retrospective: Lessons learned, process improvements, success/failure analysis.

All artifacts stored in release management tool (GitHub Releases, GitLab, Jira) with immutable audit trail.

Evidence

Interactive release storyboard:

  • Plan frame: Shows scope definition, risk assessment, rollback contract.
  • Stage frame: Shows test execution, QA checklist, load test results.
  • Release frame: Shows staged rollout timeline (canary, 10%, 50%, 100%) with gates.
  • Verify frame: Shows validation checks, metrics dashboard.
  • Rollback frame: Shows rollback procedure, trigger thresholds, revert timeline.

Each frame clickable to see detailed checklists and sample artifacts.

Download release management package (templates + scripts + retrospective guide): [Link]

Failure modes & guardrails

Failure mode: Gates bypassed ("we'll fix it in production")
Guardrail: Gate failures require executive approval to override. Every override creates a post-mortem.

Failure mode: Rollback criteria unclear
Guardrail: Rollback contract required before staging. Must include specific thresholds (not "if it breaks").

Failure mode: Staged rollout skipped for "small changes"
Guardrail: No exceptions. Even one-line changes go through staged rollout (faster stages, but same process).

Failure mode: Post-release validation ignored
Guardrail: Release not considered complete until 24-hour validation period passes. Oncall required during validation.

📄

Release storyboard template

template

📘

Rollback contract example

policy

⚙️

Staged rollout script

script

📋

Sample release retrospective

sample

Related Process Artifacts

ChangeMedium

Change Windows & Freeze Periods

Scheduled maintenance windows with risk-tiered change approval and mandatory freeze periods during high-risk business periods (year-end, peak season).

Weekly windows, seasonal freezes·Varies by change tier
IncidentsMedium

Communication During Incidents

Structured incident communication with timeline-based templates, audience segmentation (internal vs customer), and draft message library. No improvisation under pressure.

Per-incident (as needed)·15 min per update
QualityMedium

Acceptance Testing

Explicit acceptance criteria with evidence artifacts (screenshots, logs, checklists) proving feature completeness before deployment approval.

Per-feature delivery·2–4 hours per feature