Thesmios

Status

Service status.

Operational status for public surfaces and customer rollout readiness. The public site is live; production customer tenants still require customer-specific configuration and external secret setup.

Service state

Operational

Public website

Marketing, trust, legal, pricing, implementation, and developer pages are served from the production domain.

Operational

App preview

The app preview uses fixture data and seeded credentials inside the authenticated product.

Live

Health checks

Public liveness and sanitized readiness endpoints are available at /api/health and /api/ready for monitoring.

Private beta

Production platform

Customer tenant rollout depends on order-form scope, billing route, access checks, and data setup.

Broadcast-ready

Incident updates

Subscribers are recorded by scope, and a secret-protected operator route can dry-run or send incident, maintenance, security, and availability notices.

Published

Security assurance

Procurement review bundles split live evidence from managed-beta, operator-required, and external-required proof.

Published

Managed beta readiness

Invoice-led private or paid beta can be scoped with customer acceptance, operator proof, manual billing, and explicit self-serve/enterprise exclusions.

Published

Vendor readiness

Support, billing, enterprise identity, HRIS, official issuer, and evidence-operation vendor boundaries are published without exposing secret values.

Published

Launch gap register

Strict readiness blockers, production proof work, vendor dependencies, and customer acceptance gates are mapped to owners and launch-mode claims.

Published

Operator launch console

Operator secret groups, mutating proof phases, command order, and launch evidence outputs are published without exposing secret values.

Published

Launch claims guard

Buyer-safe wording, blocked wording, order-form treatment, and capability evidence are generated from live launch readiness.

Published

Launch evidence ledger

Open launch blockers are mapped to proof artifacts, attachment targets, acceptance rules, and blocked claim boundaries.

Published

Launch unblock plan

The current blockers are converted into ordered operator, vendor, customer, finance, and enterprise workstreams.

Live

Managed beta readiness

10 managed launch gates define the invoice-led launch path, required customer/operator evidence, and self-serve or enterprise claims that remain gated.

Live

Launch evidence

8 controls, 4 proof bundles define what must be captured before a customer tenant moves from setup into live private beta.

Live

Security assurance

8 controls, 4 review bundles give procurement reviewers a bounded view of live controls, managed-beta controls, and external proof still required for enterprise rollout.

Live

Operations evidence

6 controls, 5 SLO targets define how liveness, readiness, incident communications, rollback and restore proof are captured before paid production rollout.

Notifications

Subscribe to status updates.

Procurement, security, and tenant owners can opt into operational notices. Broadcast delivery is operator-controlled and requires the production email sender before live customer traffic.

Status subscriptions

Receive incident, maintenance, security, and product availability notices for customer rollout planning.

Updates

Readiness gates

GateStateNotes
Procurement documentsLiveDPA, SLA, subprocessors, privacy, terms, security, and trust pages are published.
Public API protectionLiveMutating public routes are guarded by auth, secrets, or durable rate limiting.
Operational readiness APILiveThe running deployment reports liveness, dependency configuration, database connectivity, and strict launch readiness without exposing secret values.
Launch evidence packLiveCustomer acceptance, operator run evidence, security/privacy evidence, and commercial proof bundles are published for tenant rollout records.
Security assurance packLiveVendor risk, technical security, business-continuity, privacy, and AI-governance review bundles are published without claiming external certifications.
Operations evidence packLiveHealth/readiness checks, SLO targets, incident dry-run requirements, rollback evidence, and restore rehearsal requirements are published.
Vendor readiness packLiveExternal dependency states are separated into ready, configured-unproven, manual-fallback, and blocked launch claims.
Launch gap registerLiveOpen launch gaps are prioritized by severity, owner, blocked launch mode, proof command, and disallowed claim.
Operator launch consoleLiveOperator execution phases, env groups, mutation boundaries, and evidence outputs are tied to the live launch gap register.
Launch claims guardLiveCapability maturity, launch clearance, open gaps, and order-form defaults are converted into buyer-safe claim wording.
Launch evidence ledgerLiveEvery open launch gap is mapped to the proof artifact, launch-room attachment target, acceptance rule, and blocked claim.
Launch unblock planLiveThe live ledger and clearance state are aggregated into the next proof commands, owners, and claim locks.
Managed beta readinessLiveThe launchable-with-evidence path is published separately from strict self-serve paid readiness.
Evidence controlsLiveUploaded evidence is hash-checked, screened for active content and EICAR signatures, quarantined on risk, and queued for retention cleanup.
BillingExternal requiredStripe products, secret key, and webhook secret must be configured before self-serve paid checkout.
Production seedExternal requiredPrivileged Supabase service-role access is required to apply production seed data.
Authenticated E2EExternal requiredSeeded owner, granted-employer, and denied-employer fixtures need production credentials for full smoke coverage.
Implementation runbookLiveRollout phases, order-form checklist, launch gates, and timeline are published.
Incident broadcastsManaged betaThe status page records subscriber preferences and the operator broadcast route logs dry runs, delivery counts, and setup-required email state.