--- name: agent-deployment-checklist description: "Canonical go-live checklist for Agentforce deployments with rehearsed rollback and stakeholder sign-off records. NOT for general Salesforce release management (see release-management)." category: agentforce salesforce-version: "Spring '25+" well-architected-pillars: - Operational Excellence - Reliability triggers: - "is my agent ready for production" - "agentforce go-live checklist" - "what sign-offs does agent deploy need" - "agent rollback rehearsal" tags: - agentforce - deployment - checklist - go-live inputs: - "Agent configuration export" - "test results" - "runbooks" outputs: - "Signed checklist" - "activation record" dependencies: [] version: 1.0.0 author: Pranav Nagrecha updated: 2026-04-28 --- # Agent Deployment Checklist A single checklist is the artifact that prevents post-deployment incidents. Organized into five blocks: functional tests green, adversarial tests green, observability live, rollback rehearsed, stakeholders signed-off. ## Adoption Signals Every production activation; every material config change (new Invocable, new channel, new persona). Use this skill any time someone asks whether the agent is ready for production. - Required for any change that adds a new tool to the agent's toolbox or expands record-access scope. - Run before enabling a new channel (Service Cloud, Slack, Experience Cloud) — channel context changes the prompt-injection threat model. ## Recommended Workflow 1. Functional: ≥20 fixture conversations pass in Testing Center; per-reason-code coverage verified. 2. Security: adversarial test suite green; data classification + Trust Layer policy match the signed review. 3. Observability: dashboard deployed; alert rules active; on-call rota updated. 4. Rollback: the inverse CMDT flip has been rehearsed in staging; documented runbook exists with named owner. 5. Stakeholders: business owner, security, and SRE have signed the checklist row in the activation record (`Agent_Activation__c`). ## Key Considerations - The checklist is an artifact, not a ritual — missing rows block activation. - Rollback rehearsal is the most-skipped item; it's also the one that matters most in an incident. - Stakeholder sign-off must be async-recorded (no verbal). ## Worked Examples (see `references/examples.md`) - *Rollback rehearsal* — Agent v2 activation. - *Stakeholder sign-off record* — Quarterly audit. ## Common Gotchas (see `references/gotchas.md`) - **Staging differs from prod** — Rehearsal green, prod rollback fails. - **Alert rules not enabled until after go-live** — First incident is observed by a customer. - **Sign-off via Slack, no record** — Post-mortem cannot reconstruct the decision chain. ## Top LLM Anti-Patterns (full list in `references/llm-anti-patterns.md`) - Verbal sign-offs. - Skipping rollback rehearsal because 'the change is small'. - Dashboards deployed post-activation. ## Official Sources Used - Agentforce Developer Guide — https://developer.salesforce.com/docs/einstein/genai/guide/agentforce.html - Einstein Trust Layer — https://help.salesforce.com/s/articleView?id=sf.generative_ai_trust_layer.htm - Invocable Actions (Apex) — https://developer.salesforce.com/docs/atlas.en-us.apexref.meta/apexref/apex_classes_invocable_action.htm - Agentforce Testing Center — https://help.salesforce.com/s/articleView?id=sf.agentforce_testing_center.htm