DHC
/
bmad-template
Suivre 4
Ajouter aux favoris 0
Bifurcation 0
Code Tickets 0 Demandes d'ajout 0 Versions 0 Wiki Activité
Vous ne pouvez pas sélectionner plus de 25 sujets Les noms de sujets doivent commencer par une lettre ou un nombre, peuvent contenir des tirets ('-') et peuvent comporter jusqu'à 35 caractères.
2 Révisions
2 Branches
Aborescence: 655383f713
Branches Tags
${ item.name }
Créer la branche ${ searchTerm }
de '655383f713'
${ noResults }
bmad-template/.codebuddy/skills/bmad-testarch-atdd/resources/knowledge/feature-flags.md

feature-flags.md 23KB
Vue normale Historique Brut

chore(repo): 初始化 BMAD 成品模板
il y a 5 jours
 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740741742743744745746747748749750 
  1. # Feature Flag Governance

  2. 

  3. ## Principle

  4. 

  5. Feature flags enable controlled rollouts and A/B testing, but require disciplined testing governance. Centralize flag definitions in a frozen enum, test both enabled and disabled states, clean up targeting after each spec, and maintain a comprehensive flag lifecycle checklist. For LaunchDarkly-style systems, script API helpers to seed variations programmatically rather than manual UI mutations.

  6. 

  7. ## Rationale

  8. 

  9. Poorly managed feature flags become technical debt: untested variations ship broken code, forgotten flags clutter the codebase, and shared environments become unstable from leftover targeting rules. Structured governance ensures flags are testable, traceable, temporary, and safe. Testing both states prevents surprises when flags flip in production.

  10. 

  11. ## Pattern Examples

  12. 

  13. ### Example 1: Feature Flag Enum Pattern with Type Safety

  14. 

  15. **Context**: Centralized flag management with TypeScript type safety and runtime validation.

  16. 

  17. **Implementation**:

  18. 

  19. ```typescript

  20. // src/utils/feature-flags.ts

  21. /**

  22.  * Centralized feature flag definitions

  23.  * - Object.freeze prevents runtime modifications

  24.  * - TypeScript ensures compile-time type safety

  25.  * - Single source of truth for all flag keys

  26.  */

  27. export const FLAGS = Object.freeze({

  28.   // User-facing features

  29.   NEW_CHECKOUT_FLOW: 'new-checkout-flow',

  30.   DARK_MODE: 'dark-mode',

  31.   ENHANCED_SEARCH: 'enhanced-search',

  32. 

  33.   // Experiments

  34.   PRICING_EXPERIMENT_A: 'pricing-experiment-a',

  35.   HOMEPAGE_VARIANT_B: 'homepage-variant-b',

  36. 

  37.   // Infrastructure

  38.   USE_NEW_API_ENDPOINT: 'use-new-api-endpoint',

  39.   ENABLE_ANALYTICS_V2: 'enable-analytics-v2',

  40. 

  41.   // Killswitches (emergency disables)

  42.   DISABLE_PAYMENT_PROCESSING: 'disable-payment-processing',

  43.   DISABLE_EMAIL_NOTIFICATIONS: 'disable-email-notifications',

  44. } as const);

  45. 

  46. /**

  47.  * Type-safe flag keys

  48.  * Prevents typos and ensures autocomplete in IDEs

  49.  */

  50. export type FlagKey = (typeof FLAGS)[keyof typeof FLAGS];

  51. 

  52. /**

  53.  * Flag metadata for governance

  54.  */

  55. type FlagMetadata = {

  56.   key: FlagKey;

  57.   name: string;

  58.   owner: string;

  59.   createdDate: string;

  60.   expiryDate?: string;

  61.   defaultState: boolean;

  62.   requiresCleanup: boolean;

  63.   dependencies?: FlagKey[];

  64.   telemetryEvents?: string[];

  65. };

  66. 

  67. /**

  68.  * Flag registry with governance metadata

  69.  * Used for flag lifecycle tracking and cleanup alerts

  70.  */

  71. export const FLAG_REGISTRY: Record<FlagKey, FlagMetadata> = {

  72.   [FLAGS.NEW_CHECKOUT_FLOW]: {

  73.     key: FLAGS.NEW_CHECKOUT_FLOW,

  74.     name: 'New Checkout Flow',

  75.     owner: 'payments-team',

  76.     createdDate: '2025-01-15',

  77.     expiryDate: '2025-03-15',

  78.     defaultState: false,

  79.     requiresCleanup: true,

  80.     dependencies: [FLAGS.USE_NEW_API_ENDPOINT],

  81.     telemetryEvents: ['checkout_started', 'checkout_completed'],

  82.   },

  83.   [FLAGS.DARK_MODE]: {

  84.     key: FLAGS.DARK_MODE,

  85.     name: 'Dark Mode UI',

  86.     owner: 'frontend-team',

  87.     createdDate: '2025-01-10',

  88.     defaultState: false,

  89.     requiresCleanup: false, // Permanent feature toggle

  90.   },

  91.   // ... rest of registry

  92. };

  93. 

  94. /**

  95.  * Validate flag exists in registry

  96.  * Throws at runtime if flag is unregistered

  97.  */

  98. export function validateFlag(flag: string): asserts flag is FlagKey {

  99.   if (!Object.values(FLAGS).includes(flag as FlagKey)) {

  100.     throw new Error(`Unregistered feature flag: ${flag}`);

  101.   }

  102. }

  103. 

  104. /**

  105.  * Check if flag is expired (needs removal)

  106.  */

  107. export function isFlagExpired(flag: FlagKey): boolean {

  108.   const metadata = FLAG_REGISTRY[flag];

  109.   if (!metadata.expiryDate) return false;

  110. 

  111.   const expiry = new Date(metadata.expiryDate);

  112.   return Date.now() > expiry.getTime();

  113. }

  114. 

  115. /**

  116.  * Get all expired flags requiring cleanup

  117.  */

  118. export function getExpiredFlags(): FlagMetadata[] {

  119.   return Object.values(FLAG_REGISTRY).filter((meta) => isFlagExpired(meta.key));

  120. }

  121. ```

  122. 

  123. **Usage in application code**:

  124. 

  125. ```typescript

  126. // components/Checkout.tsx

  127. import { FLAGS } from '@/utils/feature-flags';

  128. import { useFeatureFlag } from '@/hooks/useFeatureFlag';

  129. 

  130. export function Checkout() {

  131.   const isNewFlow = useFeatureFlag(FLAGS.NEW_CHECKOUT_FLOW);

  132. 

  133.   return isNewFlow ? <NewCheckoutFlow /> : <LegacyCheckoutFlow />;

  134. }

  135. ```

  136. 

  137. **Key Points**:

  138. 

  139. - **Type safety**: TypeScript catches typos at compile time

  140. - **Runtime validation**: validateFlag ensures only registered flags used

  141. - **Metadata tracking**: Owner, dates, dependencies documented

  142. - **Expiry alerts**: Automated detection of stale flags

  143. - **Single source of truth**: All flags defined in one place

  144. 

  145. ---

  146. 

  147. ### Example 2: Feature Flag Testing Pattern (Both States)

  148. 

  149. **Context**: Comprehensive testing of feature flag variations with proper cleanup.

  150. 

  151. **Implementation**:

  152. 

  153. ```typescript

  154. // tests/e2e/checkout-feature-flag.spec.ts

  155. import { test, expect } from '@playwright/test';

  156. import { FLAGS } from '@/utils/feature-flags';

  157. 

  158. /**

  159.  * Feature Flag Testing Strategy:

  160.  * 1. Test BOTH enabled and disabled states

  161.  * 2. Clean up targeting after each test

  162.  * 3. Use dedicated test users (not production data)

  163.  * 4. Verify telemetry events fire correctly

  164.  */

  165. 

  166. test.describe('Checkout Flow - Feature Flag Variations', () => {

  167.   let testUserId: string;

  168. 

  169.   test.beforeEach(async () => {

  170.     // Generate unique test user ID

  171.     testUserId = `test-user-${Date.now()}`;

  172.   });

  173. 

  174.   test.afterEach(async ({ request }) => {

  175.     // CRITICAL: Clean up flag targeting to prevent shared env pollution

  176.     await request.post('/api/feature-flags/cleanup', {

  177.       data: {

  178.         flagKey: FLAGS.NEW_CHECKOUT_FLOW,

  179.         userId: testUserId,

  180.       },

  181.     });

  182.   });

  183. 

  184.   test('should use NEW checkout flow when flag is ENABLED', async ({ page, request }) => {

  185.     // Arrange: Enable flag for test user

  186.     await request.post('/api/feature-flags/target', {

  187.       data: {

  188.         flagKey: FLAGS.NEW_CHECKOUT_FLOW,

  189.         userId: testUserId,

  190.         variation: true, // ENABLED

  191.       },

  192.     });

  193. 

  194.     // Act: Navigate as targeted user

  195.     await page.goto('/checkout', {

  196.       extraHTTPHeaders: {

  197.         'X-Test-User-ID': testUserId,

  198.       },

  199.     });

  200. 

  201.     // Assert: New flow UI elements visible

  202.     await expect(page.getByTestId('checkout-v2-container')).toBeVisible();

  203.     await expect(page.getByTestId('express-payment-options')).toBeVisible();

  204.     await expect(page.getByTestId('saved-addresses-dropdown')).toBeVisible();

  205. 

  206.     // Assert: Legacy flow NOT visible

  207.     await expect(page.getByTestId('checkout-v1-container')).not.toBeVisible();

  208. 

  209.     // Assert: Telemetry event fired

  210.     const analyticsEvents = await page.evaluate(() => (window as any).__ANALYTICS_EVENTS__ || []);

  211.     expect(analyticsEvents).toContainEqual(

  212.       expect.objectContaining({

  213.         event: 'checkout_started',

  214.         properties: expect.objectContaining({

  215.           variant: 'new_flow',

  216.         }),

  217.       }),

  218.     );

  219.   });

  220. 

  221.   test('should use LEGACY checkout flow when flag is DISABLED', async ({ page, request }) => {

  222.     // Arrange: Disable flag for test user (or don't target at all)

  223.     await request.post('/api/feature-flags/target', {

  224.       data: {

  225.         flagKey: FLAGS.NEW_CHECKOUT_FLOW,

  226.         userId: testUserId,

  227.         variation: false, // DISABLED

  228.       },

  229.     });

  230. 

  231.     // Act: Navigate as targeted user

  232.     await page.goto('/checkout', {

  233.       extraHTTPHeaders: {

  234.         'X-Test-User-ID': testUserId,

  235.       },

  236.     });

  237. 

  238.     // Assert: Legacy flow UI elements visible

  239.     await expect(page.getByTestId('checkout-v1-container')).toBeVisible();

  240.     await expect(page.getByTestId('legacy-payment-form')).toBeVisible();

  241. 

  242.     // Assert: New flow NOT visible

  243.     await expect(page.getByTestId('checkout-v2-container')).not.toBeVisible();

  244.     await expect(page.getByTestId('express-payment-options')).not.toBeVisible();

  245. 

  246.     // Assert: Telemetry event fired with correct variant

  247.     const analyticsEvents = await page.evaluate(() => (window as any).__ANALYTICS_EVENTS__ || []);

  248.     expect(analyticsEvents).toContainEqual(

  249.       expect.objectContaining({

  250.         event: 'checkout_started',

  251.         properties: expect.objectContaining({

  252.           variant: 'legacy_flow',

  253.         }),

  254.       }),

  255.     );

  256.   });

  257. 

  258.   test('should handle flag evaluation errors gracefully', async ({ page, request }) => {

  259.     // Arrange: Simulate flag service unavailable

  260.     await page.route('**/api/feature-flags/evaluate', (route) => route.fulfill({ status: 500, body: 'Service Unavailable' }));

  261. 

  262.     // Act: Navigate (should fallback to default state)

  263.     await page.goto('/checkout', {

  264.       extraHTTPHeaders: {

  265.         'X-Test-User-ID': testUserId,

  266.       },

  267.     });

  268. 

  269.     // Assert: Fallback to safe default (legacy flow)

  270.     await expect(page.getByTestId('checkout-v1-container')).toBeVisible();

  271. 

  272.     // Assert: Error logged but no user-facing error

  273.     const consoleErrors = [];

  274.     page.on('console', (msg) => {

  275.       if (msg.type() === 'error') consoleErrors.push(msg.text());

  276.     });

  277.     expect(consoleErrors).toContain(expect.stringContaining('Feature flag evaluation failed'));

  278.   });

  279. });

  280. ```

  281. 

  282. **Cypress equivalent**:

  283. 

  284. ```javascript

  285. // cypress/e2e/checkout-feature-flag.cy.ts

  286. import { FLAGS } from '@/utils/feature-flags';

  287. 

  288. describe('Checkout Flow - Feature Flag Variations', () => {

  289.   let testUserId;

  290. 

  291.   beforeEach(() => {

  292.     testUserId = `test-user-${Date.now()}`;

  293.   });

  294. 

  295.   afterEach(() => {

  296.     // Clean up targeting

  297.     cy.task('removeFeatureFlagTarget', {

  298.       flagKey: FLAGS.NEW_CHECKOUT_FLOW,

  299.       userId: testUserId,

  300.     });

  301.   });

  302. 

  303.   it('should use NEW checkout flow when flag is ENABLED', () => {

  304.     // Arrange: Enable flag via Cypress task

  305.     cy.task('setFeatureFlagVariation', {

  306.       flagKey: FLAGS.NEW_CHECKOUT_FLOW,

  307.       userId: testUserId,

  308.       variation: true,

  309.     });

  310. 

  311.     // Act

  312.     cy.visit('/checkout', {

  313.       headers: { 'X-Test-User-ID': testUserId },

  314.     });

  315. 

  316.     // Assert

  317.     cy.get('[data-testid="checkout-v2-container"]').should('be.visible');

  318.     cy.get('[data-testid="checkout-v1-container"]').should('not.exist');

  319.   });

  320. 

  321.   it('should use LEGACY checkout flow when flag is DISABLED', () => {

  322.     // Arrange: Disable flag

  323.     cy.task('setFeatureFlagVariation', {

  324.       flagKey: FLAGS.NEW_CHECKOUT_FLOW,

  325.       userId: testUserId,

  326.       variation: false,

  327.     });

  328. 

  329.     // Act

  330.     cy.visit('/checkout', {

  331.       headers: { 'X-Test-User-ID': testUserId },

  332.     });

  333. 

  334.     // Assert

  335.     cy.get('[data-testid="checkout-v1-container"]').should('be.visible');

  336.     cy.get('[data-testid="checkout-v2-container"]').should('not.exist');

  337.   });

  338. });

  339. ```

  340. 

  341. **Key Points**:

  342. 

  343. - **Test both states**: Enabled AND disabled variations

  344. - **Automatic cleanup**: afterEach removes targeting (prevent pollution)

  345. - **Unique test users**: Avoid conflicts with real user data

  346. - **Telemetry validation**: Verify analytics events fire correctly

  347. - **Graceful degradation**: Test fallback behavior on errors

  348. 

  349. ---

  350. 

  351. ### Example 3: Feature Flag Targeting Helper Pattern

  352. 

  353. **Context**: Reusable helpers for programmatic flag control via LaunchDarkly/Split.io API.

  354. 

  355. **Implementation**:

  356. 

  357. ```typescript

  358. // tests/support/feature-flag-helpers.ts

  359. import { request as playwrightRequest } from '@playwright/test';

  360. import { FLAGS, FlagKey } from '@/utils/feature-flags';

  361. 

  362. /**

  363.  * LaunchDarkly API client configuration

  364.  * Use test project SDK key (NOT production)

  365.  */

  366. const LD_SDK_KEY = process.env.LD_SDK_KEY_TEST;

  367. const LD_API_BASE = 'https://app.launchdarkly.com/api/v2';

  368. 

  369. type FlagVariation = boolean | string | number | object;

  370. 

  371. /**

  372.  * Set flag variation for specific user

  373.  * Uses LaunchDarkly API to create user target

  374.  */

  375. export async function setFlagForUser(flagKey: FlagKey, userId: string, variation: FlagVariation): Promise<void> {

  376.   const response = await playwrightRequest.newContext().then((ctx) =>

  377.     ctx.post(`${LD_API_BASE}/flags/${flagKey}/targeting`, {

  378.       headers: {

  379.         Authorization: LD_SDK_KEY!,

  380.         'Content-Type': 'application/json',

  381.       },

  382.       data: {

  383.         targets: [

  384.           {

  385.             values: [userId],

  386.             variation: variation ? 1 : 0, // 0 = off, 1 = on

  387.           },

  388.         ],

  389.       },

  390.     }),

  391.   );

  392. 

  393.   if (!response.ok()) {

  394.     throw new Error(`Failed to set flag ${flagKey} for user ${userId}: ${response.status()}`);

  395.   }

  396. }

  397. 

  398. /**

  399.  * Remove user from flag targeting

  400.  * CRITICAL for test cleanup

  401.  */

  402. export async function removeFlagTarget(flagKey: FlagKey, userId: string): Promise<void> {

  403.   const response = await playwrightRequest.newContext().then((ctx) =>

  404.     ctx.delete(`${LD_API_BASE}/flags/${flagKey}/targeting/users/${userId}`, {

  405.       headers: {

  406.         Authorization: LD_SDK_KEY!,

  407.       },

  408.     }),

  409.   );

  410. 

  411.   if (!response.ok() && response.status() !== 404) {

  412.     // 404 is acceptable (user wasn't targeted)

  413.     throw new Error(`Failed to remove flag ${flagKey} target for user ${userId}: ${response.status()}`);

  414.   }

  415. }

  416. 

  417. /**

  418.  * Percentage rollout helper

  419.  * Enable flag for N% of users

  420.  */

  421. export async function setFlagRolloutPercentage(flagKey: FlagKey, percentage: number): Promise<void> {

  422.   if (percentage < 0 || percentage > 100) {

  423.     throw new Error('Percentage must be between 0 and 100');

  424.   }

  425. 

  426.   const response = await playwrightRequest.newContext().then((ctx) =>

  427.     ctx.patch(`${LD_API_BASE}/flags/${flagKey}`, {

  428.       headers: {

  429.         Authorization: LD_SDK_KEY!,

  430.         'Content-Type': 'application/json',

  431.       },

  432.       data: {

  433.         rollout: {

  434.           variations: [

  435.             { variation: 0, weight: 100 - percentage }, // off

  436.             { variation: 1, weight: percentage }, // on

  437.           ],

  438.         },

  439.       },

  440.     }),

  441.   );

  442. 

  443.   if (!response.ok()) {

  444.     throw new Error(`Failed to set rollout for flag ${flagKey}: ${response.status()}`);

  445.   }

  446. }

  447. 

  448. /**

  449.  * Enable flag globally (100% rollout)

  450.  */

  451. export async function enableFlagGlobally(flagKey: FlagKey): Promise<void> {

  452.   await setFlagRolloutPercentage(flagKey, 100);

  453. }

  454. 

  455. /**

  456.  * Disable flag globally (0% rollout)

  457.  */

  458. export async function disableFlagGlobally(flagKey: FlagKey): Promise<void> {

  459.   await setFlagRolloutPercentage(flagKey, 0);

  460. }

  461. 

  462. /**

  463.  * Stub feature flags in local/test environments

  464.  * Bypasses LaunchDarkly entirely

  465.  */

  466. export function stubFeatureFlags(flags: Record<FlagKey, FlagVariation>): void {

  467.   // Set flags in localStorage or inject into window

  468.   if (typeof window !== 'undefined') {

  469.     (window as any).__STUBBED_FLAGS__ = flags;

  470.   }

  471. }

  472. ```

  473. 

  474. **Usage in Playwright fixture**:

  475. 

  476. ```typescript

  477. // playwright/fixtures/feature-flag-fixture.ts

  478. import { test as base } from '@playwright/test';

  479. import { setFlagForUser, removeFlagTarget } from '../support/feature-flag-helpers';

  480. import { FlagKey } from '@/utils/feature-flags';

  481. 

  482. type FeatureFlagFixture = {

  483.   featureFlags: {

  484.     enable: (flag: FlagKey, userId: string) => Promise<void>;

  485.     disable: (flag: FlagKey, userId: string) => Promise<void>;

  486.     cleanup: (flag: FlagKey, userId: string) => Promise<void>;

  487.   };

  488. };

  489. 

  490. export const test = base.extend<FeatureFlagFixture>({

  491.   featureFlags: async ({}, use) => {

  492.     const cleanupQueue: Array<{ flag: FlagKey; userId: string }> = [];

  493. 

  494.     await use({

  495.       enable: async (flag, userId) => {

  496.         await setFlagForUser(flag, userId, true);

  497.         cleanupQueue.push({ flag, userId });

  498.       },

  499.       disable: async (flag, userId) => {

  500.         await setFlagForUser(flag, userId, false);

  501.         cleanupQueue.push({ flag, userId });

  502.       },

  503.       cleanup: async (flag, userId) => {

  504.         await removeFlagTarget(flag, userId);

  505.       },

  506.     });

  507. 

  508.     // Auto-cleanup after test

  509.     for (const { flag, userId } of cleanupQueue) {

  510.       await removeFlagTarget(flag, userId);

  511.     }

  512.   },

  513. });

  514. ```

  515. 

  516. **Key Points**:

  517. 

  518. - **API-driven control**: No manual UI clicks required

  519. - **Auto-cleanup**: Fixture tracks and removes targeting

  520. - **Percentage rollouts**: Test gradual feature releases

  521. - **Stubbing option**: Local development without LaunchDarkly

  522. - **Type-safe**: FlagKey prevents typos

  523. 

  524. ---

  525. 

  526. ### Example 4: Feature Flag Lifecycle Checklist & Cleanup Strategy

  527. 

  528. **Context**: Governance checklist and automated cleanup detection for stale flags.

  529. 

  530. **Implementation**:

  531. 

  532. ```typescript

  533. // scripts/feature-flag-audit.ts

  534. /**

  535.  * Feature Flag Lifecycle Audit Script

  536.  * Run weekly to detect stale flags requiring cleanup

  537.  */

  538. 

  539. import { FLAG_REGISTRY, FLAGS, getExpiredFlags, FlagKey } from '../src/utils/feature-flags';

  540. import * as fs from 'fs';

  541. import * as path from 'path';

  542. 

  543. type AuditResult = {

  544.   totalFlags: number;

  545.   expiredFlags: FlagKey[];

  546.   missingOwners: FlagKey[];

  547.   missingDates: FlagKey[];

  548.   permanentFlags: FlagKey[];

  549.   flagsNearingExpiry: FlagKey[];

  550. };

  551. 

  552. /**

  553.  * Audit all feature flags for governance compliance

  554.  */

  555. function auditFeatureFlags(): AuditResult {

  556.   const allFlags = Object.keys(FLAG_REGISTRY) as FlagKey[];

  557.   const expiredFlags = getExpiredFlags().map((meta) => meta.key);

  558. 

  559.   // Flags expiring in next 30 days

  560.   const thirtyDaysFromNow = Date.now() + 30 * 24 * 60 * 60 * 1000;

  561.   const flagsNearingExpiry = allFlags.filter((flag) => {

  562.     const meta = FLAG_REGISTRY[flag];

  563.     if (!meta.expiryDate) return false;

  564.     const expiry = new Date(meta.expiryDate).getTime();

  565.     return expiry > Date.now() && expiry < thirtyDaysFromNow;

  566.   });

  567. 

  568.   // Missing metadata

  569.   const missingOwners = allFlags.filter((flag) => !FLAG_REGISTRY[flag].owner);

  570.   const missingDates = allFlags.filter((flag) => !FLAG_REGISTRY[flag].createdDate);

  571. 

  572.   // Permanent flags (no expiry, requiresCleanup = false)

  573.   const permanentFlags = allFlags.filter((flag) => {

  574.     const meta = FLAG_REGISTRY[flag];

  575.     return !meta.expiryDate && !meta.requiresCleanup;

  576.   });

  577. 

  578.   return {

  579.     totalFlags: allFlags.length,

  580.     expiredFlags,

  581.     missingOwners,

  582.     missingDates,

  583.     permanentFlags,

  584.     flagsNearingExpiry,

  585.   };

  586. }

  587. 

  588. /**

  589.  * Generate markdown report

  590.  */

  591. function generateReport(audit: AuditResult): string {

  592.   let report = `# Feature Flag Audit Report\n\n`;

  593.   report += `**Date**: ${new Date().toISOString()}\n`;

  594.   report += `**Total Flags**: ${audit.totalFlags}\n\n`;

  595. 

  596.   if (audit.expiredFlags.length > 0) {

  597.     report += `## ⚠️ EXPIRED FLAGS - IMMEDIATE CLEANUP REQUIRED\n\n`;

  598.     audit.expiredFlags.forEach((flag) => {

  599.       const meta = FLAG_REGISTRY[flag];

  600.       report += `- **${meta.name}** (\`${flag}\`)\n`;

  601.       report += `  - Owner: ${meta.owner}\n`;

  602.       report += `  - Expired: ${meta.expiryDate}\n`;

  603.       report += `  - Action: Remove flag code, update tests, deploy\n\n`;

  604.     });

  605.   }

  606. 

  607.   if (audit.flagsNearingExpiry.length > 0) {

  608.     report += `## ⏰ FLAGS EXPIRING SOON (Next 30 Days)\n\n`;

  609.     audit.flagsNearingExpiry.forEach((flag) => {

  610.       const meta = FLAG_REGISTRY[flag];

  611.       report += `- **${meta.name}** (\`${flag}\`)\n`;

  612.       report += `  - Owner: ${meta.owner}\n`;

  613.       report += `  - Expires: ${meta.expiryDate}\n`;

  614.       report += `  - Action: Plan cleanup or extend expiry\n\n`;

  615.     });

  616.   }

  617. 

  618.   if (audit.permanentFlags.length > 0) {

  619.     report += `## 🔄 PERMANENT FLAGS (No Expiry)\n\n`;

  620.     audit.permanentFlags.forEach((flag) => {

  621.       const meta = FLAG_REGISTRY[flag];

  622.       report += `- **${meta.name}** (\`${flag}\`) - Owner: ${meta.owner}\n`;

  623.     });

  624.     report += `\n`;

  625.   }

  626. 

  627.   if (audit.missingOwners.length > 0 || audit.missingDates.length > 0) {

  628.     report += `## ❌ GOVERNANCE ISSUES\n\n`;

  629.     if (audit.missingOwners.length > 0) {

  630.       report += `**Missing Owners**: ${audit.missingOwners.join(', ')}\n`;

  631.     }

  632.     if (audit.missingDates.length > 0) {

  633.       report += `**Missing Created Dates**: ${audit.missingDates.join(', ')}\n`;

  634.     }

  635.     report += `\n`;

  636.   }

  637. 

  638.   return report;

  639. }

  640. 

  641. /**

  642.  * Feature Flag Lifecycle Checklist

  643.  */

  644. const FLAG_LIFECYCLE_CHECKLIST = `

  645. # Feature Flag Lifecycle Checklist

  646. 

  647. ## Before Creating a New Flag

  648. 

  649. - [ ] **Name**: Follow naming convention (kebab-case, descriptive)

  650. - [ ] **Owner**: Assign team/individual responsible

  651. - [ ] **Default State**: Determine safe default (usually false)

  652. - [ ] **Expiry Date**: Set removal date (30-90 days typical)

  653. - [ ] **Dependencies**: Document related flags

  654. - [ ] **Telemetry**: Plan analytics events to track

  655. - [ ] **Rollback Plan**: Define how to disable quickly

  656. 

  657. ## During Development

  658. 

  659. - [ ] **Code Paths**: Both enabled/disabled states implemented

  660. - [ ] **Tests**: Both variations tested in CI

  661. - [ ] **Documentation**: Flag purpose documented in code/PR

  662. - [ ] **Telemetry**: Analytics events instrumented

  663. - [ ] **Error Handling**: Graceful degradation on flag service failure

  664. 

  665. ## Before Launch

  666. 

  667. - [ ] **QA**: Both states tested in staging

  668. - [ ] **Rollout Plan**: Gradual rollout percentage defined

  669. - [ ] **Monitoring**: Dashboards/alerts for flag-related metrics

  670. - [ ] **Stakeholder Communication**: Product/design aligned

  671. 

  672. ## After Launch (Monitoring)

  673. 

  674. - [ ] **Metrics**: Success criteria tracked

  675. - [ ] **Error Rates**: No increase in errors

  676. - [ ] **Performance**: No degradation

  677. - [ ] **User Feedback**: Qualitative data collected

  678. 

  679. ## Cleanup (Post-Launch)

  680. 

  681. - [ ] **Remove Flag Code**: Delete if/else branches

  682. - [ ] **Update Tests**: Remove flag-specific tests

  683. - [ ] **Remove Targeting**: Clear all user targets

  684. - [ ] **Delete Flag Config**: Remove from LaunchDarkly/registry

  685. - [ ] **Update Documentation**: Remove references

  686. - [ ] **Deploy**: Ship cleanup changes

  687. `;

  688. 

  689. // Run audit

  690. const audit = auditFeatureFlags();

  691. const report = generateReport(audit);

  692. 

  693. // Save report

  694. const outputPath = path.join(__dirname, '../feature-flag-audit-report.md');

  695. fs.writeFileSync(outputPath, report);

  696. fs.writeFileSync(path.join(__dirname, '../FEATURE-FLAG-CHECKLIST.md'), FLAG_LIFECYCLE_CHECKLIST);

  697. 

  698. console.log(`✅ Audit complete. Report saved to: ${outputPath}`);

  699. console.log(`Total flags: ${audit.totalFlags}`);

  700. console.log(`Expired flags: ${audit.expiredFlags.length}`);

  701. console.log(`Flags expiring soon: ${audit.flagsNearingExpiry.length}`);

  702. 

  703. // Exit with error if expired flags exist

  704. if (audit.expiredFlags.length > 0) {

  705.   console.error(`\n❌ EXPIRED FLAGS DETECTED - CLEANUP REQUIRED`);

  706.   process.exit(1);

  707. }

  708. ```

  709. 

  710. **package.json scripts**:

  711. 

  712. ```json

  713. {

  714.   "scripts": {

  715.     "feature-flags:audit": "ts-node scripts/feature-flag-audit.ts",

  716.     "feature-flags:audit:ci": "npm run feature-flags:audit || true"

  717.   }

  718. }

  719. ```

  720. 

  721. **Key Points**:

  722. 

  723. - **Automated detection**: Weekly audit catches stale flags

  724. - **Lifecycle checklist**: Comprehensive governance guide

  725. - **Expiry tracking**: Flags auto-expire after defined date

  726. - **CI integration**: Audit runs in pipeline, warns on expiry

  727. - **Ownership clarity**: Every flag has assigned owner

  728. 

  729. ---

  730. 

  731. ## Feature Flag Testing Checklist

  732. 

  733. Before merging flag-related code, verify:

  734. 

  735. - [ ] **Both states tested**: Enabled AND disabled variations covered

  736. - [ ] **Cleanup automated**: afterEach removes targeting (no manual cleanup)

  737. - [ ] **Unique test data**: Test users don't collide with production

  738. - [ ] **Telemetry validated**: Analytics events fire for both variations

  739. - [ ] **Error handling**: Graceful fallback when flag service unavailable

  740. - [ ] **Flag metadata**: Owner, dates, dependencies documented in registry

  741. - [ ] **Rollback plan**: Clear steps to disable flag in production

  742. - [ ] **Expiry date set**: Removal date defined (or marked permanent)

  743. 

  744. ## Integration Points

  745. 

  746. - Used in workflows: `*automate` (test generation), `*framework` (flag setup)

  747. - Related fragments: `test-quality.md`, `selective-testing.md`

  748. - Flag services: LaunchDarkly, Split.io, Unleash, custom implementations

  749. 

  750. _Source: LaunchDarkly strategy blog, Murat test architecture notes, enterprise feature flag governance_