lindy-prod-checklist

Lindy Production Checklist

Overview

Comprehensive go-live checklist for Lindy AI agents entering production. Covers agent configuration, security, monitoring, error handling, and operational readiness.

Prerequisites

• Agents tested in development/staging environment
• Production Lindy workspace configured
• Team members assigned appropriate roles
• Credit budget approved for production usage

Production Checklist

Authentication & Security

• Production API keys generated (separate from dev/staging)
• API keys stored in secret manager (not environment files)
• Webhook secrets generated for all webhook triggers
• Webhook receivers verify Bearer token on every request
• .env files excluded from version control
• Key rotation schedule documented (90-day max)
• Enterprise: SSO enabled, SCIM configured

Agent Configuration

• Agent prompt reviewed for production quality
  • Clear identity and role definition
  • Numbered step-by-step instructions
  • Explicit constraints (no unauthorized promises, data limits)
  • Error handling instructions in prompt
  • Few-shot examples for consistent output format
• Model selection appropriate for each step:
  • Gemini Flash for simple routing/classification
  • Claude Sonnet/GPT-4o-mini for standard tasks
  • GPT-4/Claude Opus only where complex reasoning required
• Exit conditions defined with primary + fallback criteria
• Trigger filters configured to prevent over-firing
• Knowledge base sources current and synced

Integration Health

• All integration OAuth tokens current (not expired)
• Gmail: correct account authorized, label filters set
• Slack: bot invited to required channels
• Webhooks: endpoint URLs use production domains (not ngrok/dev)
• HTTP Request actions: target URLs are production endpoints
• Phone numbers: provisioned and tested ($10/month each)

Error Handling

• Agents have fallback behavior for common failures:
  • Integration auth expired -> notify admin
  • KB returns no results -> graceful fallback response
  • Condition matching fails -> default "other" branch
  • Agent step loops -> reasonable exit conditions
• Webhook receivers return 200 quickly (process async)
• HTTP Request action targets have health checks
• Credit usage alerts configured (50%, 80%, 95% thresholds)

Monitoring & Observability

• Regular review of agent Tasks tab scheduled
• Failed task alerts configured (email or Slack)
• Credit consumption tracked per agent
• Task completion rate monitored (failures should be <5%)
• Response time baseline established for each agent

Operational Readiness

• Runbook documented for common agent failures
• Escalation path defined (L1 -> L2 -> Lindy support)
• On-call schedule if agents are customer-facing
• Agent sharing configured (Edit/User/Template access)
• Team credit allocation set for team members ($19.99/seat on Pro)

Compliance & Documentation

• Data handling practices documented per agent
• Agent prompts include PII redaction instructions
• Knowledge base content reviewed for accuracy
• HIPAA: BAA in place if handling healthcare data
• GDPR: data retention policies defined
• Agent purpose and scope documented for team reference

Pre-Launch Validation Script

#!/bin/bash
echo "=== Lindy Production Validation ==="

# 1. API connectivity
echo "[1/4] Testing API connectivity..."
API_STATUS=$(curl -s -o /dev/null -w "%{http_code}" \
  -H "Authorization: Bearer $LINDY_API_KEY" \
  "https://public.lindy.ai/api/v1/webhooks/health" 2>/dev/null || echo "000")
[ "$API_STATUS" = "000" ] && echo "  WARN: Could not reach Lindy API" || echo "  OK: API reachable"

# 2. Webhook endpoint health
echo "[2/4] Testing webhook receiver..."
ENDPOINT_STATUS=$(curl -s -o /dev/null -w "%{http_code}" \
  "https://your-app.com/health" 2>/dev/null || echo "000")
[ "$ENDPOINT_STATUS" = "200" ] && echo "  OK: Webhook receiver healthy" || echo "  FAIL: Receiver returned $ENDPOINT_STATUS"

# 3. Environment variables
echo "[3/4] Checking environment..."
[ -n "$LINDY_API_KEY" ] && echo "  OK: LINDY_API_KEY set" || echo "  FAIL: LINDY_API_KEY missing"
[ -n "$LINDY_WEBHOOK_SECRET" ] && echo "  OK: LINDY_WEBHOOK_SECRET set" || echo "  FAIL: LINDY_WEBHOOK_SECRET missing"

# 4. Credit balance check
echo "[4/4] Credit status: Check at https://app.lindy.ai/settings/billing"

echo "=== Validation Complete ==="

Go/No-Go Criteria

Category	Go	No-Go
Security	All keys in secret manager	Any hardcoded credentials
Auth	All integrations authorized	Any expired OAuth tokens
Prompt	Reviewed with constraints	Generic/placeholder prompt
Monitoring	Alerts configured	No failure notification
Credits	Budget approved	No credit plan
Testing	Agent tested end-to-end	Untested workflow paths

Error Handling

Check Failure	Severity	Action
API key invalid	Critical	Block launch, regenerate key
Integration expired	High	Re-authorize before launch
No trigger filters	Medium	Add filters to prevent credit waste
No monitoring	Medium	Set up alerts before launch
Missing documentation	Low	Document within first week

Resources

• Lindy Documentation
• Lindy Pricing
• Lindy Security

Next Steps

Proceed to lindy-upgrade-migration for version management.