DOCS · OPERATIONS

Operations

Run Bailing AI as a self-hosted service next to your business systems. Production secrets should come from environment variables or a secret manager.

Production baseline

AreaBaseline
SecretsUse environment variables or a secret manager. Do not ship production passwords in config files.
DatabaseUse MySQL for real deployments. JSONL storage is for local smoke tests only.
SchedulingUse the DB-backed lease/claim model for multi-instance semantics.
Rate limitsUse centralized rate-limit ledgers, not per-process memory maps.
ShutdownUse graceful shutdown so claimed jobs and in-flight deliveries can be recovered.

Smoke checks

SHRemote smoke
BAILING_SMOKE_URL=https://your-hub.example.com \
BAILING_SMOKE_TOKEN=<admin-token> \
npm run smoke

Security rule

Treat all user input and page context as untrusted data. Business permissions must be checked inside the business system after verifying signatures.