A practitioner framework for turning evaluation, control, operational, and risk evidence into an accountable AI release decision.
The repository is deliberately broader than a checklist and narrower than an enterprise governance operating model. It focuses on the release boundary: what proposition is being approved, which evidence supports it, what remains uncertain, and who owns the decision, conditions, exceptions, residual risks, and rollback.
| Artifact | Use it for |
|---|---|
docs/release-decision-record.md |
decision outcomes, evidence fields, finding dispositions, conditions, exceptions, and residual-risk acceptance |
docs/nist-rmf-mapping.md |
cautious practitioner cross-reference to NIST AI RMF functions |
release-checklist |
executable YAML validation for a narrower set of release-readiness fields |
governance-playbook |
broader organizational operating model and recurring governance forums |
“Release” should always identify:
Approval of one configuration should not be interpreted as approval of future model, prompt, data, tool, permission, or population changes.
purpose and risk context
↓
release proposition and scope
↓
evidence plan and hard gates
↓
evaluation and control verification
↓
operational / containment readiness
↓
release decision and dispositions
↓
staged rollout and verification
↓
monitoring, incident, change, and retirement
Release governance begins before the final review. The evidence plan, owners, hard gates, and invalidation triggers should be agreed before teams optimize against a convenient metric set.
A gate should ask a decision-relevant question, identify the evidence needed, and define the possible dispositions.
Evidence should establish:
Evidence should establish:
Do not rely on an aggregate score without reviewing critical failures and non-compensable conditions.
Evidence should establish that relevant controls are:
Avoid prescribing a particular tool or explanation technique as universally required. The evidence method should fit the system, decision, and risk.
Evidence should cover:
A rollback test should verify the resulting state, not only demonstrate that an earlier software version can be redeployed.
The review should distinguish:
| Term | Meaning |
|---|---|
| Hard gate | non-compensable requirement |
| Blocker | unresolved condition preventing the current decision |
| Evidence gap | missing or unreliable support for a proposition |
| Required action | follow-up work accepted under a bounded conditional release |
| Condition | enforceable limit on scope or operation |
| Exception | authorized deviation with compensating controls and expiry |
| Residual risk | remaining risk accepted by an authorized owner |
| Observation | improvement that does not currently change the decision |
See docs/release-decision-record.md for a template and review questions.
| Outcome | Use when |
|---|---|
| Release | required hard gates pass and no conditions remain |
| Release with conditions | no blocker remains, but enforceable constraints or required actions limit the release |
| Hold | evidence, remediation, or control readiness is insufficient |
| Do not release | critical failure, prohibited condition, or unacceptable residual risk remains |
| Defer decision | the owner postpones judgment until specified evidence or dependency is available |
A conditional release must not relabel an unresolved blocker as a future action. Conditions should state scope, owner, measurement, stop trigger, and expiry.
For each material conclusion, record:
A current document can contain stale evidence. Freshness depends on whether the reviewed system and operating conditions have changed, not only the file date.
A staged rollout is a control only when it has:
“Pilot” should not become an indefinite production state without renewed evidence and an accountable decision.
Re-evaluate when material changes occur to:
The prior decision record should state which changes invalidate it.
This is a practitioner framework for planning and reviewing AI releases. It is not a certified release process, safety case, regulatory approval, legal determination, or substitute for qualified security, privacy, safety, compliance, operational, and domain review.
References to NIST AI RMF and other governance concepts are practitioner mappings. Verify official sources and adapt the framework to the actual authority, population, risk, and jurisdiction.
| Repository | Distinct role |
|---|---|
release-checklist |
working config validator |
agent-eval |
evaluation validity and decision semantics |
accountability-patterns |
decision rights, human review, provenance, and redress |
regulated-ai |
starter repository structure and templates |
Maintained by Sima Bagheri.