Production Hardening
Operational controls to reduce deployment and runtime risk.
Checklist
- Set and rotate `SDF_PLAN_TOKEN_SECRET`.
- Use strict mode for sensitive runtime paths.
- Persist token `jti` values if you need strict one-time confirmation semantics.
- Add regression tests for token, hashing, and policy behavior.