Deploy

Deployment is about controlled movement of a verified artifact to runtime environments. The goal is safe rollout, fast rollback, and predictable operations.

Deployment starts after the artifact has been built and verified. The main principle is that the same artifact is promoted across environments without rebuilding in between.

This article focuses on rollout to environments. Overall pipeline management is covered in CI/CD, and details about safe artifact production in Building.

Principles for safe deployment

To reduce operational and security risk, the deployment process should be built on:

  • Promotion of the same artifact: Don’t rebuild for each environment.
  • Verification before rollout: Deployment should stop if required checks don’t pass.
  • Automated and idempotent rollout: Same deployment command should produce the same result.
  • Traceability: Each deployment should be traceable to artifact, commit, and approval.

What a deployment process should cover

A mature deployment process should cover at minimum:

  • Environment promotion (dev-test-prod): Clear gates between environments.
  • Approval and change control: Requirements for approval before production.
  • Release strategy: Support for blue/green, canary, or rolling deployment where appropriate.
  • Rollback: Defined and tested procedure for fast reversal.
  • Smoke tests after deployment: Verify that the solution actually works in the target environment.
  • Observability: Monitoring and alerting that catch errors early after rollout.

Access management and environment security

Deployment access must be treated as a privileged operation:

  • Least privilege for deployment identities: Give only access needed for deployment.
  • Separate roles: Separate roles for development and production deployment where possible.
  • Limit production deployment triggers: Restrict who can start deployment to production.
  • Traceability on deployments: Log who deployed what, when, and to which environment.

Deployment of AI systems

For AI solutions, the deployment process must also handle model behavior and data-driven risk:

  • Model rollout with control: Use gradual rollout (for example canary) to reduce impact if model behavior is wrong.
  • Clear version linkage: Your running solution should be traceable to the exact model version, code version, and configuration.
  • Verification in target environment: Run relevant quality and security checks in the target environment after deployment, not just during the build phase.
  • Operational monitoring: Watch model quality, response time, and signs of data or output drift.
  • Fast rollback: Have clear procedure to switch back to previous model version if issues occur.

Further reading

Last modified May 13, 2026: Merge pull request #258 from bouvet/iso-42001-implementation (a1f6421)